Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 29.12.2013, 20:41   #1
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Hey,

Nachdem es mir hier ein wenig zu bunt wurde, habe ich vorhin einmal AntiVir durch Sophos ersetzt. Anschließend habe Ich meinerseits ein paar Sachen deinstalliert und mit Sophos 4 Objekte bereinigt.
Interessanterweise sind bei Neustart Nummer 2 und 3 (Beim 1. Neustart waren Sie allerdings noch vorhanden. Und beim Abruf der "Registrier-Email" habe ich das 1. mal einen BlueScreen auf meinem LapTop gesehen. Kann Zufall sein), nachdem besagte Objekte mit Sophos bereinigt wurden, die Probleme nicht mehr aufgetreten. Ich wäre euch aber dennoch sehr verbunden, einmal einen Blick drauf zu werfen.

Eigentliches Problem:
wisersearch und search.fbdownloader.com werden andauernd eingetragen.
Desweiteren habe ich manchmal "komische" Fenster die sich im Hintergrund für nen Sekundenbruchteil öffnen und irgendwann war einmal meine Universitätsseite mit rotlicht-Werbung verseucht (Nur bei mir. Habe meinen Kollegen direkt gefragt, ob er das Problem auch hat und es eventuell an den Universitätsservern liegt.)

DEFOGGER:
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 21:20 on 29/12/2013 (Sheradil)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
FRST:
Ist im Anhang. War zu lang.

ADDITION:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013 01
Ran by Sheradil at 2013-12-29 21:25:26
Running from C:\Users\Sheradil\Desktop\SysCheck
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Sophos Anti-Virus (Enabled - Up to date) {65FBD860-96D8-75EF-C7ED-7BE27E6C498A}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Sophos Anti-Virus (Enabled - Up to date) {DE9A3984-B0E2-7A61-FD5D-409005EB0337}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (x32 Version: 10.1.3 - Adobe Systems Incorporated)
Advanced Audio FX Engine (x32 Version: 1.12.05 - Creative Technology Ltd)
ANNO 2070 (x32 Version: 1.0.0.0 - Ubisoft)
Apple Application Support (x32 Version: 2.1.7 - Apple Inc.)
Apple Mobile Device Support (Version: 5.1.1.4 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Astah Professional 6.6.3 (Version:  - Change Vision, Inc.)
Battle.net (x32 Version:  - Blizzard Entertainment)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (Version:  - Microsoft)
Dell Edoc Viewer (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (x32 Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (x32 Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (x32 Version: 1.5.0.65 - ArcSoft)
Dell Stage (x32 Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (x32 Version: 2.0.0.43 - ArcSoft)
Dell VideoStage  (x32 Version: 1.2.0.1712 - CyberLink Corp.)
Dell Webcam Central (x32 Version: 2.00.44 - Creative Technology Ltd)
Divinity II - Ego Draconis (x32 Version:  - dtp)
DivX-Setup (x32 Version: 2.6.1.8 - DivX, LLC)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4357.28718 - PreEmptive Solutions)
Dotfuscator Software Services - Community Edition - DEU (x32 Version: 5.0.2300.0 - PreEmptive Solutions)
Dotfuscator Software Services - Community Edition (x32 Version: 5.0.2500.0 - PreEmptive Solutions)
Dropbox (HKCU Version: 2.0.22 - Dropbox, Inc.)
eBay (x32 Version: 1.4.0 - eBay Inc.)
Flash Decompiler Trillix (x32 Version: 5.3 - Eltima Software)
FMOD Designer (x32 Version:  - )
FMOD Programmers API Win64 (x32 Version:  - )
FMOD Sandbox (remove only) (x32 Version:  - )
GIMP 2.8.8 (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU Version: 31.0.1650.63 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.)
Hearthstone (x32 Version:  - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2135068) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2160831) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2278944) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2293451) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2303365) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2376419) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2387011) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2401992) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2402012) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2402815) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2425130) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2434700) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983504) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983537) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983578) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2529927) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2548139) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2549864) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2603917) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2635973) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2603917) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
HP Photo Creations (x32 Version: 1.0.0.5192 - HP Photo Creations)
HP Photosmart 5510d series - Grundlegende Software für das Gerät (Version: 25.0.607.0 - Hewlett-Packard Co.)
HP Photosmart 5510d series Hilfe (x32 Version: 140.0.2.2 - Hewlett Packard)
HP Product Detection (x32 Version: 11.14.0001 - HP)
HP Update (x32 Version: 5.003.001.001 - Hewlett-Packard)
ICQ7.6 (x32 Version: 7.6 - ICQ)
IIS 7.5 Express (x32 Version: 7.5.1190 - Microsoft Corporation)
Inkscape 0.48.4 (x32 Version: 0.48.4 - )
Intel PROSet Wireless (Version:  - )
Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2342 - Intel Corporation)
Intel(R) Programm für die Prozessorerkennung (x32 Version: 4.41.0000 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.00.1000 - Intel Corporation)
Intel(R) WiDi (x32 Version: 2.1.39.0 - Intel Corporation)
Intel(R) Wireless Display (Version:  - )
iTunes (Version: 10.6.1.7 - Apple Inc.)
JabRef 2.9.2 (x32 Version: 2.9.2 - JabRef Team)
Java 7 Update 40 (x32 Version: 7.0.400 - Oracle)
Java 7 Update 9 (64-bit) (Version: 7.0.90 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.)
Java SE Development Kit 7 Update 9 (64-bit) (Version: 1.7.0.90 - Oracle)
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
LocalESPC (x32 Version: 8.37.0 - Microsoft Corporation)
LocalESPCui for en-us (x32 Version: 8.37.0 - Microsoft)
LyX 2.0.6 (x32 Version: 2.0.6 - LyX Team)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta (Version: 4.5.50131 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta Multi-Targeting Pack (x32 Version: 4.5.50131 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta SDK (x32 Version: 4.5.50131 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - DEU (x32 Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU (x32 Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - Visual Studio 11 Tools Update (x32 Version: 3.0.30118.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (x32 Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 - Visual Studio 11 Tools (x32 Version: 4.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 (x32 Version: 4.0.20126.16343 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - Visual Studio 11 Tools (x32 Version: 1.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (x32 Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages 2 - Visual Studio 11 Tools (x32 Version: 2.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages 2 (x32 Version: 2.0.20126.16343 - Microsoft Corporation)
Microsoft Blend for Visual Studio (x32 Version: 5.0.30129.0 - Microsoft Corporation)
Microsoft Blend for Visual Studio ENU resources (x32 Version: 5.0.30129.0 - Microsoft Corporation)
Microsoft DirectX SDK (June 2010) (x32 Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (x32 Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 Screen Capture Codec (x32 Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.2.3.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Beta (x32 Version: 2.0.50214 - Microsoft Corporation)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Project MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Visio MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 11.0.50214.01 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (x32 Version: 11.0.50214.01 - Microsoft Corporation)
Microsoft Project 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Project Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Report Viewer Add-On for Visual Studio 11 - Beta (x32 Version: 11.0.1750.32 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK - Deutsch (x32 Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (x32 Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (x32 Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL-Sprachdienst (x32 Version: 10.50.1752.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Projekt (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.0.2100.55 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x32 Version: 11.0.2100.55 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects RC0 (x64) (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU CTP1 (Version: 4.0.8854.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities Mar 2012 (x32 Version: 11.1.20204.01 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (x32 Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) de (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 de (x32 Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) de (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) de (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 RC0 (x64) (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model for Lightswitch 2011 - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010-Objektmodell - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visio 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Visio Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Visual C++  Compilers 2010 Standard - enu - x64 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++  Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 11  Beta x64 Designtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Additional Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Debug Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Minimum Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Additional Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Debug Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Minimum Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ Compilers 11 - ENU Resources (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Compilers 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Core Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Extended Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Microsoft Foundation Class Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime Language Pack - DEU (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 11 Beta Tools for .Net 3.5 (x32 Version: 3.5.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Developer Preview Language Pack - ENU (x32 Version: 11.0.50214 - )
Microsoft Visual Studio 11 Developer Preview Pre-Clean Tool (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Core amd64 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Core x86 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Front End x86 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 LightSwitch Beta Core (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 LightSwitch Beta CoreRes - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Performance Collection Tools Beta - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Performance Collection Tools Beta (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Premium Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Premium Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Professional Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Professional Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 SharePoint Developer Tools Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 SharePoint Developer Tools Beta enu Language Pack (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Tools for SQL Server Compact 4.0 SP1 Beta ENU (x32 Version: 4.0.8854.1 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta XAML UI Designer Core (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta XAML UI Designer enu Resources (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio LightSwitch 2011 - DEU (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio LightSwitch 2011 Deployment Prerequisites (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools - DEU Language Pack (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Object Model (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Object Model Language Pack - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Storyboarding (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Storyboarding Language Pack - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Team Explorer (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Team Explorer Language Pack - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Web Deploy 3.0 (Version: 3.1236.1310 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider Nov 2011 (x32 Version: 10.3.20116.0 - Microsoft Corporation)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1307 - Microsoft Corporation)
Microsoft Web Tooling Extensions - Visual Studio 11 (x32 Version: 1.0.30123.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (ARP entry) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Redists) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Shared Components) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Visual Studio) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (XnaLiveProxy) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 Documentation (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (x32 Version: 1.3.0.0 - Microsoft Corporation)
Microsoft(R) SQL Server Data Tools, RC0 - enu (x32 Version: 11.1.20204.01 - Microsoft Corporation)
MiKTeX 2.9 (x32 Version: 2.9 - MiKTeX.org)
Mouse Recorder Pro 2.0.7.0 (x32 Version:  - Nemex Studios)
Mozilla Firefox 10.0.2 (x86 de) (x32 Version: 10.0.2 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA CUDA Toolkit v5.0 (64 bit) (Version: 5.0.35.3 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 3.0.0.13079 (Version: 3.0.0.13079 - NVIDIA Corporation)
NVIDIA Optimus 1.12.12 (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1407 - NVIDIA Corporation)
NVIDIA Systemsteuerung 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA Update 1.12.12 (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation)
OpenVPN 2.1_rc19 (x32 Version: 2.1_rc19 - )
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.0.0 - PreEmptive Solutions, LLC)
Prerequisites for SSDT RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Quickset64 (Version: 11.0.10 - Dell Inc.)
RAR Password Recovery v1.1 RC17 (remove only) (x32 Version:  - )
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6312 - Realtek Semiconductor Corp.)
Service Pack 1 für SQL Server 2008 (KB 968369) (64-bit) (Version: 10.1.2531.0 - Microsoft Corporation)
Sicherheitsupdate für Microsoft Visual Studio 2010 Ultimate - DEU (KB2645410) (x32 Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2645410) (x32 Version: 1 - Microsoft Corporation)
Skype Toolbars (x32 Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 6.6 (x32 Version: 6.6.106 - Skype Technologies S.A.)
Sophos Anti-Virus (x32 Version: 10.3.1 - Sophos Limited)
Sophos AutoUpdate (x32 Version: 2.9.0.344 - Sophos Limited)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation)
SQL Server Data Framework Tools (x32 Version: 11.1.20204.01 - Microsoft Corporation)
StarCraft II (x32 Version:  - Blizzard Entertainment)
StarCraft II Beta (x32 Version: 2.0.0.24247 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (Version: 15.2.6.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKCU Version: 3.0.10 - TeamSpeak Systems GmbH)
TeamViewer 8 (x32 Version: 8.0.22298 - TeamViewer)
TERA (x32 Version: 19.04.02.03.hf3 - Gameforge Productions GmbH)
TortoiseSVN 1.7.1.22161 (64 bit) (Version: 1.7.22161 - TortoiseSVN)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (Version: 2.1.23.0 - Intel)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
ultimate_finalizer (x32 Version: 11.0.50214 - Microsoft Corporation)
Unity Web Player (HKCU Version:  - Unity Technologies ApS)
Unreal Development Kit: 2011-09 (Version:  - Epic Games, Inc.)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup  (Version: 10.1.2731.0 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc)
Visual Studio 11 Prerequisites - ENU Language Pack (Version: 11.0.50214 - Microsoft Corporation)
Visual Studio 11 Prerequisites (Version: 11.0.50214 - Microsoft Corporation)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (x32 Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 0.6.8229.0 - Microsoft Corporation)
VisualSVN 2.5.1 (x32 Version: 2.5.1.0 - VisualSVN Ltd.)
VLC media player 1.1.11 (x32 Version: 1.1.11 - VideoLAN)
vs_devenv (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_devenvLP (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_lightswitchserverprereqsmsi (Version: 11.0.50214 - Microsoft Corporation)
vs_minshellcore (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_minshellinterop (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_minshellres (x32 Version: 11.0.50214 - Microsoft Corporation)
vslp_finalizer (x32 Version: 11.0.50214 - Microsoft Corporation)
WCF RIA Services V1.0 SP2 (x32 Version: 4.1.61406.0 - Microsoft Corporation)
Web Deployment Tool (Version: 1.1.0618 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30 - Microsoft Corporation)
Windows App Certification Kit (Version: 8.37.0 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation)
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Runtime Intellisense Content - English (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit DirectX x64 Remote (Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps DirectX x64 Remote (Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps DirectX x86 Remote (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit Redistributables (x32 Version: 8.37.0 - Microsoft Corporation)
WinRAR 4.01 (64-Bit) (Version: 4.01.0 - win.rar GmbH)

==================== Restore Points  =========================

24-11-2013 02:00:14 Windows Update
26-11-2013 10:08:38 Windows Update
27-11-2013 16:31:33 Windows Update
30-11-2013 20:31:41 Windows Update
30-11-2013 23:08:12 Windows Update
01-12-2013 23:17:35 Windows Update
08-12-2013 10:19:16 Windows Update
08-12-2013 23:21:05 Windows Update
15-12-2013 10:43:55 Windows Update
16-12-2013 02:00:15 Windows Update
28-12-2013 10:17:24 Windows Update
29-12-2013 17:01:50 Entfernt AccelerometerP11
29-12-2013 17:02:35 Installed Sophos Anti-Virus
29-12-2013 17:03:46 Installed Sophos AutoUpdate
29-12-2013 17:08:27 Removed Skype Toolbars
29-12-2013 17:31:47 Entfernt Risen

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {37FCC9B3-E81D-4C8D-BBAA-0539FF24F60D} - System32\Tasks\Toolbox.exe_{DD931C4C-EC2B-4EDF-A0C2-41A53D10E197} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\Toolbox.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {412A8CCA-28A9-438A-BFA9-F7A6F6436CB0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4373168D-F564-4E8E-9EEF-76DA3A55D54B} - System32\Tasks\PCDoctorBackgroundMonitorTask-Delay => C:\Program Files\Dell Support Center\uaclauncher.exe
Task: {63C04871-C979-47D4-8924-54AB9C04FB6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {6B34BCFC-2909-4055-94E8-222878F67505} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-02] (Adobe Systems Incorporated)
Task: {79A0EF24-827F-4AF1-814B-5379126D4758} - System32\Tasks\ScanToPCActivationApp.exe_{DBAC5657-10E3-4878-AE27-B04482DBBEAE} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {BA61ED7D-7851-4413-8F99-F7AE71870960} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] ()
Task: {D303D40E-715D-44C4-A47A-BD12048AA1DA} - System32\Tasks\hpUrlLauncher.exe_{FBB11078-9BBD-44B0-896F-C4A7AC63EC87} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\utils\hpUrlLauncher.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {F3F77F43-805F-4DD7-8E64-98467F125EDC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2413547846-88302400-1937470424-1001Core1cef924e88ae842.job => C:\Users\Sheradil\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe
Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job => C:\Program Files\Dell Support Center\uaclauncher.exe

==================== Loaded Modules (whitelisted) =============

2010-12-17 19:53 - 2010-12-17 19:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2011-10-22 11:11 - 2011-10-22 11:11 - 00088856 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-09-30 19:38 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\libcef.dll
2011-10-22 10:16 - 2011-10-22 10:16 - 00070424 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2013-12-08 11:15 - 2013-12-04 03:47 - 00702416 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-08 11:15 - 2013-12-04 03:47 - 00099792 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-08 11:15 - 2013-12-04 03:48 - 04055504 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-08 11:15 - 2013-12-04 03:48 - 00399312 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-08 11:15 - 2013-12-04 03:47 - 01619408 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/29/2013 08:46:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:42:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:02:44 PM) (Source: MsiInstaller) (User: SHERADIL)
Description: Product: Google Chrome Frame -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/29/2013 08:01:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 06:08:50 PM) (Source: MsiInstaller) (User: SHERADIL)
Description: Product: Skype Toolbars -- Uninstallation is cancelled.

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/28/2013 04:04:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11450

Error: (12/28/2013 04:04:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11450


System errors:
=============
Error: (12/29/2013 09:02:07 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/29/2013 08:49:27 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (12/29/2013 08:48:33 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (12/29/2013 08:48:33 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (12/29/2013 08:47:30 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (12/29/2013 08:46:05 PM) (Source: Microsoft-Windows-TaskScheduler) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147549183.

Error: (12/29/2013 08:45:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Update" wurde mit folgendem Fehler beendet: 
%%-2147467243

Error: (12/29/2013 08:44:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (12/29/2013 08:44:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (12/29/2013 08:43:13 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)


Microsoft Office Sessions:
=========================
Error: (12/29/2013 08:46:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:42:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:02:44 PM) (Source: MsiInstaller)(User: SHERADIL)
Description: Product: Google Chrome Frame -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/29/2013 08:01:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 06:08:50 PM) (Source: MsiInstaller)(User: SHERADIL)
Description: Product: Skype Toolbars -- Uninstallation is cancelled.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/28/2013 04:04:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11450

Error: (12/28/2013 04:04:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11450


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 8086.17 MB
Available physical RAM: 5686.38 MB
Total Pagefile: 16170.52 MB
Available Pagefile: 13604.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:679 GB) (Free:381.58 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=679 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
GMER:
Code:
ATTFilter
GMER Logfile:
Code:
ATTFilter
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-12-29 21:33:59
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD75 rev.01.0 698,64GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Sheradil\AppData\Local\Temp\uwliypob.sys


---- User code sections - GMER 2.1 ----

.text  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[884] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                 0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[884] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe[1144] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                     0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe[1144] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                    00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                            0000000076c7efe0 5 bytes JMP 000000016fff0148
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                          0000000076ca99b0 7 bytes JMP 000000016fff00d8
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                          0000000076cb94d0 5 bytes JMP 000000016fff0180
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                          0000000076cb9640 5 bytes JMP 000000016fff0110
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\kernel32.dll!RegSetValueExA                                   0000000076cda500 7 bytes JMP 000000016fff01b8
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                    000007fefccc2db0 5 bytes JMP 000007fffccb0180
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                               000007fefccc37d0 7 bytes JMP 000007fffccb00d8
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                 000007fefccc8ef0 6 bytes JMP 000007fffccb0148
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                             000007fefccdaf60 5 bytes JMP 000007fffccb0110
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                              000007fefd5389e0 8 bytes JMP 000007fffccb01f0
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                            000007fefd53be40 8 bytes JMP 000007fffccb01b8
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\ole32.dll!CoCreateInstance                                    000007fefd1e7490 11 bytes JMP 000007fffccb0228
.text  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1376] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                   000007fefd1fbf00 7 bytes JMP 000007fffccb0260
.text  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe[1220] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                       0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe[1220] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                      00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe[2648] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69   0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe[2648] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155  00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2772] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                  0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2772] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                 00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe[1920] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69     0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe[1920] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155    00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[2044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69     0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[2044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155    00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                         0000000076c7efe0 5 bytes JMP 000000016fff0148
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                                       0000000076ca99b0 7 bytes JMP 000000016fff00d8
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                                       0000000076cb94d0 5 bytes JMP 000000016fff0180
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                                       0000000076cb9640 5 bytes JMP 000000016fff0110
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                                0000000076cda500 7 bytes JMP 000000016fff01b8
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                 000007fefccc2db0 5 bytes JMP 000007fffccb0180
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                            000007fefccc37d0 7 bytes JMP 000007fffccb00d8
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                              000007fefccc8ef0 6 bytes JMP 000007fffccb0148
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                          000007fefccdaf60 5 bytes JMP 000007fffccb0110
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                           000007fefd5389e0 8 bytes JMP 000007fffccb01f0
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                         000007fefd53be40 8 bytes JMP 000007fffccb01b8
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\dxgi.dll!CreateDXGIFactory                                                                 000007fefa5fdc88 5 bytes JMP 000007fffa5d00d8
.text  C:\Windows\system32\Dwm.exe[3492] C:\Windows\system32\dxgi.dll!CreateDXGIFactory1                                                                000007fefa5fde10 5 bytes JMP 000007fffa5d0110
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                  00000000758913e1 7 bytes JMP 0000000173f812ad
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                         00000000758ab1d3 5 bytes JMP 0000000173f815be
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                         00000000759288b4 7 bytes JMP 0000000173f81357
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                         0000000075928939 5 bytes JMP 0000000173f816e0
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                           0000000075928c8f 5 bytes JMP 0000000173f81028
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                              0000000074ba1d1b 5 bytes JMP 0000000173f811ef
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                            0000000074ba1dc9 5 bytes JMP 0000000173f81023
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                0000000074ba2aa4 5 bytes JMP 0000000173f8156e
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                   0000000074ba2d0a 5 bytes JMP 0000000173f81294
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                   0000000075bd8a29 5 bytes JMP 0000000173f81050
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                               0000000075be4572 5 bytes JMP 0000000173f810d2
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                           0000000074aee96b 5 bytes JMP 0000000173f815d7
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                             0000000074aeeba5 5 bytes JMP 0000000173f811b8
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                  0000000074bf5ea5 5 bytes JMP 0000000173f81609
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                   0000000074c29d0b 5 bytes JMP 0000000173f81249
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                          0000000075981465 2 bytes [98, 75]
.text  C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe[3168] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                         00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                      0000000076c7efe0 5 bytes JMP 000000016fff0148
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                    0000000076ca99b0 7 bytes JMP 000000016fff00d8
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                    0000000076cb94d0 5 bytes JMP 000000016fff0180
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                    0000000076cb9640 5 bytes JMP 000000016fff0110
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\kernel32.dll!RegSetValueExA                                             0000000076cda500 7 bytes JMP 000000016fff01b8
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                              000007fefccc2db0 5 bytes JMP 000007fffcca0180
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                         000007fefccc37d0 7 bytes JMP 000007fffcca00d8
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                           000007fefccc8ef0 6 bytes JMP 000007fffcca0148
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                       000007fefccdaf60 5 bytes JMP 000007fffcca0110
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                        000007fefd5389e0 8 bytes JMP 000007fffcca01f0
.text  C:\Program Files\TortoiseSVN\bin\TSVNCache.exe[2060] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                      000007fefd53be40 8 bytes JMP 000007fffcca01b8
.text  C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe[788] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                          00000000758913e1 7 bytes JMP 0000000173f812ad
.text  C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe[788] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                                 00000000758ab1d3 5 bytes JMP 0000000173f815be
.text  C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe[788] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                                 00000000759288b4 7 bytes JMP 0000000173f81357
.text  C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe[788] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                                 0000000075928939 5 bytes JMP 0000000173f816e0
.text  C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe[788] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                   0000000075928c8f 5 bytes JMP 0000000173f81028
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                              0000000076c7efe0 5 bytes JMP 000000016fff0148
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                            0000000076ca99b0 7 bytes JMP 000000016fff00d8
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                            0000000076cb94d0 5 bytes JMP 000000016fff0180
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                            0000000076cb9640 5 bytes JMP 000000016fff0110
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\kernel32.dll!RegSetValueExA                                     0000000076cda500 7 bytes JMP 000000016fff01b8
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                      000007fefccc2db0 5 bytes JMP 000007fffccb0180
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                 000007fefccc37d0 7 bytes JMP 000007fffccb00d8
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                   000007fefccc8ef0 6 bytes JMP 000007fffccb0148
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                               000007fefccdaf60 5 bytes JMP 000007fffccb0110
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                000007fefd5389e0 8 bytes JMP 000007fffccb01f0
.text  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[4636] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                              000007fefd53be40 8 bytes JMP 000007fffccb01b8
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                            00000000758913e1 7 bytes JMP 0000000173f812ad
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                   00000000758ab1d3 5 bytes JMP 0000000173f815be
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                   00000000759288b4 7 bytes JMP 0000000173f81357
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                   0000000075928939 5 bytes JMP 0000000173f816e0
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                     0000000075928c8f 5 bytes JMP 0000000173f81028
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                        0000000074ba1d1b 5 bytes JMP 0000000173f811ef
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                      0000000074ba1dc9 5 bytes JMP 0000000173f81023
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                          0000000074ba2aa4 5 bytes JMP 0000000173f8156e
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                             0000000074ba2d0a 5 bytes JMP 0000000173f81294
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\USER32.dll!CreateWindowExW                             0000000075bd8a29 5 bytes JMP 0000000173f81050
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                         0000000075be4572 5 bytes JMP 0000000173f810d2
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                     0000000074aee96b 5 bytes JMP 0000000173f815d7
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                       0000000074aeeba5 5 bytes JMP 0000000173f811b8
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\ole32.DLL!CoSetProxyBlanket                            0000000074bf5ea5 5 bytes JMP 0000000173f81609
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\ole32.DLL!CoCreateInstance                             0000000074c29d0b 5 bytes JMP 0000000173f81249
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                    0000000075981465 2 bytes [98, 75]
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe[864] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                   00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                     0000000076c7efe0 5 bytes JMP 000000016fff0148
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                                   0000000076ca99b0 7 bytes JMP 000000016fff00d8
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                                   0000000076cb94d0 5 bytes JMP 000000016fff0180
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                                   0000000076cb9640 5 bytes JMP 000000016fff0110
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                            0000000076cda500 7 bytes JMP 000000016fff01b8
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                             000007fefccc2db0 5 bytes JMP 000007fffccb0180
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                        000007fefccc37d0 7 bytes JMP 000007fffccb00d8
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                          000007fefccc8ef0 6 bytes JMP 000007fffccb0148
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                      000007fefccdaf60 5 bytes JMP 000007fffccb0110
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\ole32.dll!CoCreateInstance                                                             000007fefd1e7490 11 bytes JMP 000007fffccb0228
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                            000007fefd1fbf00 7 bytes JMP 000007fffccb0260
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                       000007fefd5389e0 8 bytes JMP 000007fffccb01f0
.text  C:\Windows\system32\wuauclt.exe[4272] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                     000007fefd53be40 8 bytes JMP 000007fffccb01b8
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                      00000000758913e1 7 bytes JMP 0000000173f812ad
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                             00000000758ab1d3 5 bytes JMP 0000000173f815be
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                             00000000759288b4 7 bytes JMP 0000000173f81357
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                             0000000075928939 5 bytes JMP 0000000173f816e0
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                               0000000075928c8f 5 bytes JMP 0000000173f81028
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                  0000000074ba1d1b 5 bytes JMP 0000000173f811ef
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                0000000074ba1dc9 5 bytes JMP 0000000173f81023
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                    0000000074ba2aa4 5 bytes JMP 0000000173f8156e
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                       0000000074ba2d0a 5 bytes JMP 0000000173f81294
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                               0000000074aee96b 5 bytes JMP 0000000173f815d7
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                 0000000074aeeba5 5 bytes JMP 0000000173f811b8
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                       0000000075bd8a29 5 bytes JMP 0000000173f81050
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                   0000000075be4572 5 bytes JMP 0000000173f810d2
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                      0000000074bf5ea5 5 bytes JMP 0000000173f81609
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                       0000000074c29d0b 5 bytes JMP 0000000173f81249
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                              0000000075981465 2 bytes [98, 75]
.text  C:\Users\Sheradil\Desktop\SysCheck\gmer_2.1.19163.exe[2160] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                             00000000759814bb 2 bytes [98, 75]
.text  ...                                                                                                                                              * 2

---- EOF - GMER 2.1 ----
         
--- --- ---
Bei weiteren Fragen, stehe ich logischerweise zur Verfügung.
Wie Sophos kurzfristig ausgestellt wird, ist mir irgendwie nicht in den Sinn gekommen.

Danke für Eure Hilfe,
Shera

Alt 29.12.2013, 20:53   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Hallo und

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________

__________________

Alt 30.12.2013, 15:57   #3
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Keine MalWare gefunden

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1008
www.malwarebytes.org

Database version: v2013.12.30.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Sheradil :: SHERADIL [administrator]

30.12.2013 15:36:24
mbar-log-2013-12-30 (15-36-24).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 313362
Time elapsed: 25 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
__________________

Alt 30.12.2013, 17:30   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Adware/Junkware/Toolbars entfernen


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




3. Schritt: Shortcut Cleaner

Downloade dir bitte Shortcut Cleaner (by Grinler) auf deinen Desktop.

  • Starte die sc-cleaner.exe mit einem Doppelclick.
  • Bestätige die Meldung Shortcut Cleaner Finished am Ende des Suchlaufs mit Ok.
  • Eine Logdatei wird sich öffnen (sc-cleaner.txt).
  • Poste den Inhalt mit deiner nächsten Antwort.



4. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.12.2013, 18:57   #5
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



So, wie gewünscht
Allerdings tut JRT.exe bei mir nicht wirklich viel.
Es öffnet nen Fenster im Hintergrund und schließt es wieder und Ende.
Kein Log.

Adw-Cleaner
AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 30/12/2013 um 19:43:54
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Sheradil - SHERADIL
# Gestartet von : C:\Users\Sheradil\Desktop\SysCheck\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
Ordner Gelöscht : C:\Program Files (x86)\ICQ6Toolbar
Ordner Gelöscht : C:\Users\Sheradil\AppData\Local\Temp\apn
Ordner Gelöscht : C:\Users\Sheradil\AppData\LocalLow\boost_interprocess
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\Common\LuaRT
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\DataMgr
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\Intermediate
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\loadtbs
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\SCheck
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\Snz
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\SSync
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\ICQToolbarData
Ordner Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\ffxtlbra@softonic.com
Ordner Gelöscht : C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk
Datei Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\om@offermosquito.com.xpi
Datei Gelöscht : C:\Users\Sheradil\AppData\Local\omesuperv.exe
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\plugins\npmieze.dll
Datei Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\searchplugins\fbdownloader_search.xml
Datei Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\searchplugins\icqplugin.xml
Datei Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\searchplugins\icqplugin-1.xml
Datei Gelöscht : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [DataMgr]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Intermediate]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [OMESupervisor]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [scheck]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Snoozer]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ssync]
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_mouse-recorder_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_mouse-recorder_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{DFEFCDEE-CF1A-4FC8-88AD-129872198372}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{DFEFCDEE-CF1A-4FC8-88AD-129872198372}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKCU\Software\1ClickDownload
Schlüssel Gelöscht : HKCU\Software\httogroup
Schlüssel Gelöscht : HKCU\Software\OfferMosquito
Schlüssel Gelöscht : HKCU\Software\piccshare
Schlüssel Gelöscht : HKCU\Software\Protector
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\StartSearch
Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v10.0.2 (de)

[ Datei : C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultenginename", "FBDownloader Search");
Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q=");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "FBDownloader Search");
Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://search.fbdownloader.com/?channel=sfde203fbdgy21");
Zeile gelöscht : user_pref("extensions.softonic_i.aflt", "SD");
Zeile gelöscht : user_pref("extensions.softonic_i.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.softonic_i.excTlbr", false);
Zeile gelöscht : user_pref("extensions.softonic_i.id", "b845716800000000000074e50b2ec3f9");
Zeile gelöscht : user_pref("extensions.softonic_i.instlDay", "15395");
Zeile gelöscht : user_pref("extensions.softonic_i.instlRef", "MON00015");
Zeile gelöscht : user_pref("extensions.softonic_i.newTab", false);
Zeile gelöscht : user_pref("extensions.softonic_i.prdct", "softonic");
Zeile gelöscht : user_pref("extensions.softonic_i.prtnrId", "softonic");
Zeile gelöscht : user_pref("extensions.softonic_i.smplGrp", "eng7");
Zeile gelöscht : user_pref("extensions.softonic_i.tlbrId", "de12JANdefault");
Zeile gelöscht : user_pref("extensions.softonic_i.tlbrSrchUrl", "hxxp://search.softonic.com/MON00015/tb_v1?SearchSource=1&cc=&q=");
Zeile gelöscht : user_pref("extensions.softonic_i.vrsn", "1.5.11.5");
Zeile gelöscht : user_pref("extensions.softonic_i.vrsnTs", "1.5.11.517:45:20");
Zeile gelöscht : user_pref("extensions.softonic_i.vrsni", "1.5.11.5");
Zeile gelöscht : user_pref("icqtoolbar.allowSendURL", false);
Zeile gelöscht : user_pref("icqtoolbar.engineVerified", true);
Zeile gelöscht : user_pref("icqtoolbar.geolastmodified", 1323543748);
Zeile gelöscht : user_pref("icqtoolbar.hiddenElements", "itb_options");
Zeile gelöscht : user_pref("icqtoolbar.history", "ib||Choclait%20Chips||yout");
Zeile gelöscht : user_pref("icqtoolbar.icqgeo", 49);
Zeile gelöscht : user_pref("icqtoolbar.installTime", "1322587893");
Zeile gelöscht : user_pref("icqtoolbar.newtab_state", "1");
Zeile gelöscht : user_pref("icqtoolbar.numberOfSearches", 0);
Zeile gelöscht : user_pref("icqtoolbar.previousFFVersion", "8.0");
Zeile gelöscht : user_pref("icqtoolbar.skip_default_search", "no");
Zeile gelöscht : user_pref("icqtoolbar.suggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.uninstStatSent", true);
Zeile gelöscht : user_pref("icqtoolbar.uniqueID", "132065683313206567131320657115325");
Zeile gelöscht : user_pref("icqtoolbar.usageStatstTimestamp", 1323975079);
Zeile gelöscht : user_pref("icqtoolbar.voucherHideClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherRedeemClicks", 0);
Zeile gelöscht : user_pref("icqtoolbar.voucherWasShown", 10);
Zeile gelöscht : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.xmlLanguage", "de");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q=");
Zeile gelöscht : user_pref("simplenewtab.url", "hxxp://wisersearch.com/?channel=de_nt");

-\\ Google Chrome v

[ Datei : C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage

*************************

AdwCleaner[R0].txt - [10074 octets] - [30/12/2013 19:43:17]
AdwCleaner[S0].txt - [9292 octets] - [30/12/2013 19:43:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9352 octets] ##########
         
--- --- ---


SC-Cleaner
Code:
ATTFilter
Shortcut Cleaner 1.2.6 by Lawrence Abrams (Grinler)
hxxp://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
 hxxp://www.bleepingcomputer.com/download/shortcut-cleaner/

Windows Version: Windows 7 Home Premium Service Pack 1
Program started at: 12/30/2013 07:51:32 PM.

Scanning for registry hijacks:

 * No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\Sheradil\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\Sheradil\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching C:\Users\Sheradil\Desktop


0 bad shortcuts found.

Program finished at: 12/30/2013 07:51:38 PM
Execution time: 0 hours(s), 0 minute(s), and 6 seconds(s)
         
FRST

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Sheradil (administrator) on SHERADIL on 30-12-2013 19:53:52
Running from C:\Users\Sheradil\Desktop\SysCheck
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Update\GoogleUpdate.exe
(Dropbox, Inc.) C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe

==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] - C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe [929272 2013-01-11] (Sophos Limited)
Winlogon\Notify\igfxcui: C:\Windows\SysWOW64\explorer.exe (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Sheradil\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-02-04] (Google Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
MountPoints2: {8d5b193b-e45d-11e0-b7b9-806e6f6e6963} - D:\StartUp.exe
AppInit_DLLs: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured_x64.dll [217672 2013-09-17] (Sophos Limited)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll,C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL [275352 2013-09-17] (Sophos Limited)
Startup: C:\Users\Sheradil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/USCON/8
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {8E84537C-EC1C-435D-82BE-9AD755C8A8A7} URL = 
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Webtestaufzeichnung 10.0-Hilfsprogramm - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - C:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
Winsock: Catalog9 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9 19 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp.dll [89592] (Sophos Limited)
Winsock: Catalog9-x64 01 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 02 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 03 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 04 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 05 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 06 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 07 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 08 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Winsock: Catalog9-x64 19 C:\ProgramData\Sophos\Web Intelligence\swi_ifslsp_64.dll [132904] (Sophos Limited)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default
FF NetworkProxy: "http", "162.216.3.208"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 1
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/wpi,version=1.5 - C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll (Microsoft Corp)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/wpi,version=1.5 - C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll (Microsoft Corp)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Sheradil\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Sheradil\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Sheradil\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\ich@maltegoetz.de
FF Extension: Cooliris - C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\piclens@cooliris.com
FF Extension: Simple New Tab - C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\snt@dotlabs.co.xpi
FF Extension: YouTube Unblocker - C:\Users\Sheradil\AppData\Roaming\Mozilla\Firefox\Profiles\3xaoh0uy.default\Extensions\youtubeunblocker@unblocker.yt.xpi
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://google.de/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Bing Bar) - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (WPI Detector 1.5) - C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll (Microsoft Corp)
CHR Plugin: (Google Update) - C:\Users\Sheradil\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.2_0
CHR Extension: (Google Search) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0
CHR Extension: (Gmail) - C:\Users\Sheradil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

S3 fussvc; C:\Program Files\Windows Kits\8.0\App Certification Kit\fussvc.exe [137728 2012-02-09] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-12-17] ()
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [36352 2009-07-16] ()
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [290296 2013-09-17] (Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [206328 2013-09-17] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [237048 2013-01-11] (Sophos Limited)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [3109880 2013-09-17] (Sophos Limited)
S2 swi_update_64; C:\ProgramData\Sophos\Web Intelligence\swi_update_64.exe [2012152 2013-09-17] (Sophos Limited)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2012-12-22] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2012-12-22] ()
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284448 2013-02-10] (NVIDIA Corporation)
S3 NvStUSB; C:\Windows\system32\drivers\nvstusb.sys [121960 2010-12-12] ()
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [154952 2013-09-17] (Sophos Limited)
S4 SophosBootDriver; C:\Windows\System32\DRIVERS\SophosBootDriver.sys [25608 2013-09-17] (Sophos Plc)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [67920 2011-12-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-30 19:51 - 2013-12-30 19:51 - 00001814 _____ C:\sc-cleaner.txt
2013-12-30 19:47 - 2013-12-30 19:47 - 00001362 _____ C:\Users\Sheradil\AppData\Local\recently-used.xbel
2013-12-30 19:43 - 2013-12-30 19:44 - 00000000 ____D C:\AdwCleaner
2013-12-30 15:36 - 2013-12-30 16:56 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-30 15:36 - 2013-12-30 15:36 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-30 15:36 - 2013-12-30 15:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-30 15:34 - 2013-12-30 15:35 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-30 15:34 - 2013-12-30 15:34 - 00000000 ____D C:\Users\Sheradil\Desktop\MBAR
2013-12-30 15:31 - 2013-12-30 15:32 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Sheradil\Desktop\mbar-1.07.0.1008.exe
2013-12-29 21:45 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-29 21:45 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-29 21:45 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-29 21:45 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-29 21:45 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-29 21:45 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-29 21:45 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-29 21:45 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-29 21:45 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-29 21:45 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-29 21:45 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-29 21:45 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-29 21:45 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-29 21:45 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-29 21:45 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-29 21:45 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-29 21:45 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-29 21:45 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-29 21:45 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-29 21:45 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-29 21:45 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-29 21:45 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-29 21:45 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-29 21:45 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-29 21:45 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-29 21:45 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-29 21:45 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-29 21:45 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-29 21:45 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-29 21:45 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-29 21:45 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-29 20:40 - 2013-12-29 20:41 - 00262144 _____ C:\Windows\Minidump\122913-26161-01.dmp
2013-12-29 20:37 - 2013-12-29 20:37 - 00000000 _____ C:\Users\Sheradil\defogger_reenable
2013-12-29 20:20 - 2013-12-29 20:20 - 00000000 ____D C:\FRST
2013-12-29 20:19 - 2013-12-30 19:53 - 00000000 ____D C:\Users\Sheradil\Desktop\SysCheck
2013-12-29 18:12 - 2013-12-29 18:12 - 00000000 ____D C:\Users\Sheradil\AppData\Local\Sophos
2013-12-29 18:03 - 2013-12-29 18:04 - 00000000 ____D C:\ProgramData\Sophos
2013-12-29 18:03 - 2013-12-29 18:04 - 00000000 ____D C:\Program Files (x86)\Sophos
2013-12-29 18:03 - 2013-09-17 13:41 - 00037880 _____ (Sophos Limited) C:\Windows\system32\sophosboottasks.exe
2013-12-29 17:58 - 2013-12-29 17:58 - 00000000 _____ C:\ProgramData\rebootpending.txt
2013-12-29 17:55 - 2013-12-29 18:02 - 00000000 ____D C:\savw_103_sa
2013-12-29 17:55 - 2013-09-17 13:41 - 00154952 _____ (Sophos Limited) C:\Windows\system32\Drivers\savonaccess.sys
2013-12-29 17:55 - 2013-09-17 13:41 - 00025608 _____ (Sophos Plc) C:\Windows\system32\Drivers\SophosBootDriver.sys
2013-12-29 17:52 - 2013-12-29 17:54 - 97267184 _____ C:\Users\Sheradil\Downloads\savw_103_sa_sfx.exe
2013-12-28 13:54 - 2013-12-28 10:58 - 00000000 ____D C:\Users\Sheradil\Desktop\Vocable trainer
2013-12-28 11:16 - 2013-09-04 02:37 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-28 11:16 - 2013-09-04 02:37 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-16 03:09 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-16 03:09 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-16 03:09 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-16 03:09 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-16 03:09 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-16 03:05 - 2013-12-16 03:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-16 03:05 - 2013-12-16 03:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-16 03:05 - 2013-12-16 03:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-16 03:05 - 2013-12-16 03:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-16 03:05 - 2013-12-16 03:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-16 03:05 - 2013-12-16 03:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-16 03:04 - 2013-12-16 03:09 - 00009768 _____ C:\Windows\IE11_main.log
2013-12-15 16:50 - 2013-12-15 16:50 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\dvdcss
2013-12-15 12:06 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-15 12:06 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-15 12:06 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-15 12:06 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-15 12:06 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-15 12:04 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-15 12:04 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-15 12:04 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-15 12:04 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-15 11:59 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-15 11:59 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-15 11:49 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-15 11:49 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-15 11:49 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-15 11:49 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-15 11:49 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-15 11:49 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-15 11:49 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-15 11:49 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-15 00:33 - 2013-12-15 00:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2413547846-88302400-1937470424-1001Core1cef924e88ae842.job
2013-12-08 12:04 - 2013-12-08 12:32 - 00000000 ____D C:\Benni
2013-11-30 22:18 - 2013-11-30 21:49 - 00000000 ____D C:\Users\Sheradil\Desktop\Bin
2013-11-30 22:15 - 2013-11-30 22:15 - 04253306 _____ C:\Users\Sheradil\Downloads\Bin.zip

==================== One Month Modified Files and Folders =======

2013-12-30 19:53 - 2013-12-29 20:19 - 00000000 ____D C:\Users\Sheradil\Desktop\SysCheck
2013-12-30 19:53 - 2009-07-14 05:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-30 19:53 - 2009-07-14 05:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-30 19:51 - 2013-12-30 19:51 - 00001814 _____ C:\sc-cleaner.txt
2013-12-30 19:49 - 2011-09-21 15:30 - 01618196 _____ C:\Windows\WindowsUpdate.log
2013-12-30 19:47 - 2013-12-30 19:47 - 00001362 _____ C:\Users\Sheradil\AppData\Local\recently-used.xbel
2013-12-30 19:46 - 2013-09-01 17:15 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-30 19:46 - 2012-09-24 09:20 - 00000000 ___RD C:\Users\Sheradil\Dropbox
2013-12-30 19:46 - 2012-09-24 09:19 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\Dropbox
2013-12-30 19:46 - 2012-01-14 12:50 - 00000436 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-12-30 19:45 - 2013-07-13 20:23 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-30 19:45 - 2011-09-21 15:27 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-30 19:45 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-30 19:45 - 2009-07-14 05:51 - 00063774 _____ C:\Windows\setupact.log
2013-12-30 19:44 - 2013-12-30 19:43 - 00000000 ____D C:\AdwCleaner
2013-12-30 19:43 - 2013-07-13 20:19 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\Common
2013-12-30 19:43 - 2011-09-30 19:52 - 00000000 ____D C:\ProgramData\ICQ
2013-12-30 16:56 - 2013-12-30 15:36 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-30 15:36 - 2013-12-30 15:36 - 00117464 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-30 15:36 - 2013-12-30 15:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-30 15:35 - 2013-12-30 15:34 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-30 15:34 - 2013-12-30 15:34 - 00000000 ____D C:\Users\Sheradil\Desktop\MBAR
2013-12-30 15:32 - 2013-12-30 15:31 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Sheradil\Desktop\mbar-1.07.0.1008.exe
2013-12-30 15:29 - 2011-10-08 17:41 - 00000000 ____D C:\Users\Sheradil\AppData\Local\TSVNCache
2013-12-29 20:41 - 2013-12-29 20:40 - 00262144 _____ C:\Windows\Minidump\122913-26161-01.dmp
2013-12-29 20:40 - 2013-05-21 12:16 - 772042565 _____ C:\Windows\MEMORY.DMP
2013-12-29 20:40 - 2013-05-21 12:16 - 00000000 ____D C:\Windows\Minidump
2013-12-29 20:37 - 2013-12-29 20:37 - 00000000 _____ C:\Users\Sheradil\defogger_reenable
2013-12-29 20:37 - 2011-09-30 19:21 - 00000000 ____D C:\Users\Sheradil
2013-12-29 20:20 - 2013-12-29 20:20 - 00000000 ____D C:\FRST
2013-12-29 20:17 - 2011-09-30 19:22 - 00117696 _____ C:\Users\Sheradil\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-29 20:00 - 2010-11-21 04:47 - 00481656 _____ C:\Windows\PFRO.log
2013-12-29 20:00 - 2009-07-14 05:45 - 00432648 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-29 18:35 - 2012-11-18 16:49 - 00000000 ____D C:\Program Files (x86)\Ghdl
2013-12-29 18:34 - 2011-09-30 20:50 - 00000000 ____D C:\Program Files (x86)\Heroes of Newerth
2013-12-29 18:32 - 2011-09-21 22:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-29 18:17 - 2011-09-21 23:21 - 00000000 ____D C:\ProgramData\Sonic
2013-12-29 18:17 - 2011-09-21 23:21 - 00000000 ____D C:\ProgramData\Roxio
2013-12-29 18:17 - 2011-09-21 23:20 - 00000000 ____D C:\Program Files (x86)\Roxio
2013-12-29 18:12 - 2013-12-29 18:12 - 00000000 ____D C:\Users\Sheradil\AppData\Local\Sophos
2013-12-29 18:11 - 2011-09-30 19:31 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\Roxio
2013-12-29 18:05 - 2012-01-04 18:04 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-29 18:04 - 2013-12-29 18:03 - 00000000 ____D C:\ProgramData\Sophos
2013-12-29 18:04 - 2013-12-29 18:03 - 00000000 ____D C:\Program Files (x86)\Sophos
2013-12-29 18:02 - 2013-12-29 17:55 - 00000000 ____D C:\savw_103_sa
2013-12-29 18:02 - 2011-09-21 22:45 - 00002480 _____ C:\freefallprotection.log
2013-12-29 17:58 - 2013-12-29 17:58 - 00000000 _____ C:\ProgramData\rebootpending.txt
2013-12-29 17:54 - 2013-12-29 17:52 - 97267184 _____ C:\Users\Sheradil\Downloads\savw_103_sa_sfx.exe
2013-12-28 10:58 - 2013-12-28 13:54 - 00000000 ____D C:\Users\Sheradil\Desktop\Vocable trainer
2013-12-28 10:25 - 2010-11-21 07:50 - 00764372 _____ C:\Windows\system32\perfh007.dat
2013-12-28 10:25 - 2010-11-21 07:50 - 00174170 _____ C:\Windows\system32\perfc007.dat
2013-12-28 10:25 - 2009-07-14 06:13 - 01803376 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-28 10:19 - 2011-09-30 19:30 - 00001383 _____ C:\Users\Sheradil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-28 10:19 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-16 04:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-16 03:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-16 03:24 - 2013-08-16 23:10 - 00000000 ____D C:\Users\Sheradil\AppData\Local\Battle.net
2013-12-16 03:09 - 2013-12-16 03:04 - 00009768 _____ C:\Windows\IE11_main.log
2013-12-16 03:05 - 2013-12-16 03:05 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-16 03:05 - 2013-12-16 03:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-16 03:05 - 2013-12-16 03:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-16 03:05 - 2013-12-16 03:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-16 03:05 - 2013-12-16 03:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-16 03:05 - 2013-12-16 03:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-16 03:05 - 2013-12-16 03:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-16 03:05 - 2013-12-16 03:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-16 03:05 - 2013-12-16 03:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-16 03:03 - 2011-10-09 13:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-16 03:02 - 2013-08-14 22:56 - 00000000 ____D C:\Windows\system32\MRT
2013-12-16 03:01 - 2011-10-02 15:29 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 19:45 - 2013-10-19 15:09 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2013-12-15 16:50 - 2013-12-15 16:50 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\dvdcss
2013-12-15 00:38 - 2013-07-13 20:23 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-15 00:33 - 2013-12-15 00:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2413547846-88302400-1937470424-1001Core1cef924e88ae842.job
2013-12-15 00:33 - 2013-07-13 20:23 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-15 00:33 - 2013-07-13 20:23 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-08 13:06 - 2013-11-17 15:20 - 00000000 ____D C:\Users\Sheradil\.gimp-2.8
2013-12-08 12:54 - 2013-11-17 15:21 - 00000000 ____D C:\Users\Sheradil\AppData\Local\gtk-2.0
2013-12-08 12:32 - 2013-12-08 12:04 - 00000000 ____D C:\Benni
2013-12-08 11:16 - 2013-10-19 15:35 - 00000000 ____D C:\Program Files (x86)\Battle.net
2013-12-01 00:08 - 2011-09-30 19:51 - 00000000 ____D C:\Users\Sheradil\AppData\Roaming\ICQ
2013-11-30 22:15 - 2013-11-30 22:15 - 04253306 _____ C:\Users\Sheradil\Downloads\Bin.zip
2013-11-30 21:49 - 2013-11-30 22:18 - 00000000 ____D C:\Users\Sheradil\Desktop\Bin

Some content of TEMP:
====================
C:\Users\Sheradil\AppData\Local\Temp\-juzctb_.dll
C:\Users\Sheradil\AppData\Local\Temp\8wbh9ihl.dll
C:\Users\Sheradil\AppData\Local\Temp\APNSetup.exe
C:\Users\Sheradil\AppData\Local\Temp\AskSLib.dll
C:\Users\Sheradil\AppData\Local\Temp\avgnt.exe
C:\Users\Sheradil\AppData\Local\Temp\e8x9ydpd.dll
C:\Users\Sheradil\AppData\Local\Temp\FP_PL_PFS_INSTALLER-1.exe
C:\Users\Sheradil\AppData\Local\Temp\FP_PL_PFS_INSTALLER-2.exe
C:\Users\Sheradil\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
C:\Users\Sheradil\AppData\Local\Temp\j9cdxm8b.dll
C:\Users\Sheradil\AppData\Local\Temp\jre-6u30-windows-i586-iftw-rv.exe
C:\Users\Sheradil\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Sheradil\AppData\Local\Temp\MSNA052.exe
C:\Users\Sheradil\AppData\Local\Temp\nvStInst.exe
C:\Users\Sheradil\AppData\Local\Temp\Quarantine.exe
C:\Users\Sheradil\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sheradil\AppData\Local\Temp\suzpwr7c.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2012-05-09 22:24

==================== End Of Log ============================
         
--- --- ---


Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013 01
Ran by Sheradil at 2013-12-30 19:55:17
Running from C:\Users\Sheradil\Desktop\SysCheck
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Sophos Anti-Virus (Enabled - Up to date) {65FBD860-96D8-75EF-C7ED-7BE27E6C498A}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Sophos Anti-Virus (Enabled - Up to date) {DE9A3984-B0E2-7A61-FD5D-409005EB0337}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (x32 Version: 10.1.3 - Adobe Systems Incorporated)
Advanced Audio FX Engine (x32 Version: 1.12.05 - Creative Technology Ltd)
ANNO 2070 (x32 Version: 1.0.0.0 - Ubisoft)
Apple Application Support (x32 Version: 2.1.7 - Apple Inc.)
Apple Mobile Device Support (Version: 5.1.1.4 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Astah Professional 6.6.3 (Version:  - Change Vision, Inc.)
Battle.net (x32 Version:  - Blizzard Entertainment)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (Version:  - Microsoft)
Dell Edoc Viewer (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (x32 Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (x32 Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (x32 Version: 1.5.0.65 - ArcSoft)
Dell Stage (x32 Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (x32 Version: 2.0.0.43 - ArcSoft)
Dell VideoStage  (x32 Version: 1.2.0.1712 - CyberLink Corp.)
Dell Webcam Central (x32 Version: 2.00.44 - Creative Technology Ltd)
Divinity II - Ego Draconis (x32 Version:  - dtp)
DivX-Setup (x32 Version: 2.6.1.8 - DivX, LLC)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4357.28718 - PreEmptive Solutions)
Dotfuscator Software Services - Community Edition - DEU (x32 Version: 5.0.2300.0 - PreEmptive Solutions)
Dotfuscator Software Services - Community Edition (x32 Version: 5.0.2500.0 - PreEmptive Solutions)
Dropbox (HKCU Version: 2.0.22 - Dropbox, Inc.)
eBay (x32 Version: 1.4.0 - eBay Inc.)
Flash Decompiler Trillix (x32 Version: 5.3 - Eltima Software)
FMOD Designer (x32 Version:  - )
FMOD Programmers API Win64 (x32 Version:  - )
FMOD Sandbox (remove only) (x32 Version:  - )
GIMP 2.8.8 (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKCU Version: 31.0.1650.63 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.)
Hearthstone (x32 Version:  - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2135068) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2160831) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2278944) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2293451) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2303365) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2376419) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2387011) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2401992) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2402012) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2402815) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2425130) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2434700) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983504) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983537) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (KB983578) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Team Foundation Server 2010-Objektmodell - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2529927) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2548139) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2549864) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2603917) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2635973) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2736182) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2010 Ultimate - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2603917) (x32 Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2890573) (x32 Version: 1 - Microsoft Corporation)
HP Photo Creations (x32 Version: 1.0.0.5192 - HP Photo Creations)
HP Photosmart 5510d series - Grundlegende Software für das Gerät (Version: 25.0.607.0 - Hewlett-Packard Co.)
HP Photosmart 5510d series Hilfe (x32 Version: 140.0.2.2 - Hewlett Packard)
HP Product Detection (x32 Version: 11.14.0001 - HP)
HP Update (x32 Version: 5.003.001.001 - Hewlett-Packard)
ICQ7.6 (x32 Version: 7.6 - ICQ)
IIS 7.5 Express (x32 Version: 7.5.1190 - Microsoft Corporation)
Inkscape 0.48.4 (x32 Version: 0.48.4 - )
Intel PROSet Wireless (Version:  - )
Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2342 - Intel Corporation)
Intel(R) Programm für die Prozessorerkennung (x32 Version: 4.41.0000 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.00.1000 - Intel Corporation)
Intel(R) WiDi (x32 Version: 2.1.39.0 - Intel Corporation)
Intel(R) Wireless Display (Version:  - )
iTunes (Version: 10.6.1.7 - Apple Inc.)
JabRef 2.9.2 (x32 Version: 2.9.2 - JabRef Team)
Java 7 Update 40 (x32 Version: 7.0.400 - Oracle)
Java 7 Update 9 (64-bit) (Version: 7.0.90 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.)
Java SE Development Kit 7 Update 9 (64-bit) (Version: 1.7.0.90 - Oracle)
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
LocalESPC (x32 Version: 8.37.0 - Microsoft Corporation)
LocalESPCui for en-us (x32 Version: 8.37.0 - Microsoft)
LyX 2.0.6 (x32 Version: 2.0.6 - LyX Team)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta (Version: 4.5.50131 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta Multi-Targeting Pack (x32 Version: 4.5.50131 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Beta SDK (x32 Version: 4.5.50131 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - DEU (x32 Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU (x32 Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - Visual Studio 11 Tools Update (x32 Version: 3.0.30118.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (x32 Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 - Visual Studio 11 Tools (x32 Version: 4.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 (x32 Version: 4.0.20126.16343 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - Visual Studio 11 Tools (x32 Version: 1.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (x32 Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages 2 - Visual Studio 11 Tools (x32 Version: 2.0.20126.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages 2 (x32 Version: 2.0.20126.16343 - Microsoft Corporation)
Microsoft Blend for Visual Studio (x32 Version: 5.0.30129.0 - Microsoft Corporation)
Microsoft Blend for Visual Studio ENU resources (x32 Version: 5.0.30129.0 - Microsoft Corporation)
Microsoft DirectX SDK (June 2010) (x32 Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (x32 Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 Screen Capture Codec (x32 Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.2.3.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Beta (x32 Version: 2.0.50214 - Microsoft Corporation)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Project MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Visio MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (x32 Version: 11.0.50214.01 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (x32 Version: 11.0.50214.01 - Microsoft Corporation)
Microsoft Project 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Project Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Report Viewer Add-On for Visual Studio 11 - Beta (x32 Version: 11.0.1750.32 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK - Deutsch (x32 Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (x32 Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (x32 Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL-Sprachdienst (x32 Version: 10.50.1752.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Projekt (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (Version: 11.0.2100.55 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x32 Version: 11.0.2100.55 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects RC0 (x64) (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom RC0 (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU CTP1 (Version: 4.0.8854.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities Mar 2012 (x32 Version: 11.1.20204.01 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (x32 Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) de (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 de (x32 Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) de (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) de (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 RC0 (x64) (Version: 11.0.1913.38 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model (VSLS) - ENU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model for Lightswitch 2011 - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010-Objektmodell - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visio 2010 Service Pack 1 (SP1) (Version:  - Microsoft)
Microsoft Visio Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Visual C++  Compilers 2010 Standard - enu - x64 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++  Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 11  Beta x64 Designtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Additional Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Debug Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x64 Minimum Runtime - 11.0.50214 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Additional Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Debug Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 11 x86 Minimum Runtime - 11.0.50214 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ Compilers 11 - ENU Resources (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Compilers 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Core Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Extended Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual C++ Microsoft Foundation Class Libraries 11 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime Language Pack - DEU (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 11 Beta Tools for .Net 3.5 (x32 Version: 3.5.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Developer Preview Language Pack - ENU (x32 Version: 11.0.50214 - )
Microsoft Visual Studio 11 Developer Preview Pre-Clean Tool (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Core amd64 (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Core x86 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 IntelliTrace Front End x86 (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 LightSwitch Beta Core (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 LightSwitch Beta CoreRes - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Performance Collection Tools Beta - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Performance Collection Tools Beta (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Premium Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Premium Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Professional Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Professional Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 SharePoint Developer Tools Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 SharePoint Developer Tools Beta enu Language Pack (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Tools for SQL Server Compact 4.0 SP1 Beta ENU (x32 Version: 4.0.8854.1 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta XAML UI Designer Core (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 11 Ultimate Beta XAML UI Designer enu Resources (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) Language Pack - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - DEU (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio LightSwitch 2011 - DEU (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio LightSwitch 2011 Deployment Prerequisites (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools - DEU Language Pack (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Object Model (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Object Model Language Pack - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Storyboarding (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Storyboarding Language Pack - ENU (Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Team Explorer (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Visual Studio Team Foundation Server 11 Beta Team Explorer Language Pack - ENU (x32 Version: 11.0.50214 - Microsoft Corporation)
Microsoft Web Deploy 3.0 (Version: 3.1236.1310 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider Nov 2011 (x32 Version: 10.3.20116.0 - Microsoft Corporation)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1307 - Microsoft Corporation)
Microsoft Web Tooling Extensions - Visual Studio 11 (x32 Version: 1.0.30123.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (ARP entry) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Redists) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Shared Components) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (Visual Studio) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 (XnaLiveProxy) (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio 4.0 Documentation (x32 Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (x32 Version: 1.3.0.0 - Microsoft Corporation)
Microsoft(R) SQL Server Data Tools, RC0 - enu (x32 Version: 11.1.20204.01 - Microsoft Corporation)
MiKTeX 2.9 (x32 Version: 2.9 - MiKTeX.org)
Mouse Recorder Pro 2.0.7.0 (x32 Version:  - Nemex Studios)
Mozilla Firefox 10.0.2 (x86 de) (x32 Version: 10.0.2 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA CUDA Toolkit v5.0 (64 bit) (Version: 5.0.35.3 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 3.0.0.13079 (Version: 3.0.0.13079 - NVIDIA Corporation)
NVIDIA Optimus 1.12.12 (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1407 - NVIDIA Corporation)
NVIDIA Systemsteuerung 314.07 (Version: 314.07 - NVIDIA Corporation)
NVIDIA Update 1.12.12 (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation)
OpenVPN 2.1_rc19 (x32 Version: 2.1_rc19 - )
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.0.0 - PreEmptive Solutions, LLC)
Prerequisites for SSDT RC0 (x32 Version: 11.0.1913.38 - Microsoft Corporation)
Quickset64 (Version: 11.0.10 - Dell Inc.)
RAR Password Recovery v1.1 RC17 (remove only) (x32 Version:  - )
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6312 - Realtek Semiconductor Corp.)
Service Pack 1 für SQL Server 2008 (KB 968369) (64-bit) (Version: 10.1.2531.0 - Microsoft Corporation)
Sicherheitsupdate für Microsoft Visual Studio 2010 Ultimate - DEU (KB2645410) (x32 Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Microsoft Visual Studio LightSwitch 2011 - DEU (KB2645410) (x32 Version: 1 - Microsoft Corporation)
Skype Toolbars (x32 Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 6.6 (x32 Version: 6.6.106 - Skype Technologies S.A.)
Sophos Anti-Virus (x32 Version: 10.3.1 - Sophos Limited)
Sophos AutoUpdate (x32 Version: 2.9.0.344 - Sophos Limited)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation)
SQL Server Data Framework Tools (x32 Version: 11.1.20204.01 - Microsoft Corporation)
StarCraft II (x32 Version:  - Blizzard Entertainment)
StarCraft II Beta (x32 Version: 2.0.0.24247 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (Version: 15.2.6.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKCU Version: 3.0.10 - TeamSpeak Systems GmbH)
TeamViewer 8 (x32 Version: 8.0.22298 - TeamViewer)
TERA (x32 Version: 19.04.02.03.hf3 - Gameforge Productions GmbH)
TortoiseSVN 1.7.1.22161 (64 bit) (Version: 1.7.22161 - TortoiseSVN)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (Version: 2.1.23.0 - Intel)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
ultimate_finalizer (x32 Version: 11.0.50214 - Microsoft Corporation)
Unity Web Player (HKCU Version:  - Unity Technologies ApS)
Unreal Development Kit: 2011-09 (Version:  - Epic Games, Inc.)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup  (Version: 10.1.2731.0 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc)
Visual Studio 11 Prerequisites - ENU Language Pack (Version: 11.0.50214 - Microsoft Corporation)
Visual Studio 11 Prerequisites (Version: 11.0.50214 - Microsoft Corporation)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (x32 Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio Extensions for Windows Library for JavaScript (x32 Version: 0.6.8229.0 - Microsoft Corporation)
VisualSVN 2.5.1 (x32 Version: 2.5.1.0 - VisualSVN Ltd.)
VLC media player 1.1.11 (x32 Version: 1.1.11 - VideoLAN)
vs_devenv (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_devenvLP (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_lightswitchserverprereqsmsi (Version: 11.0.50214 - Microsoft Corporation)
vs_minshellcore (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_minshellinterop (x32 Version: 11.0.50214 - Microsoft Corporation)
vs_minshellres (x32 Version: 11.0.50214 - Microsoft Corporation)
vslp_finalizer (x32 Version: 11.0.50214 - Microsoft Corporation)
WCF RIA Services V1.0 SP2 (x32 Version: 4.1.61406.0 - Microsoft Corporation)
Web Deployment Tool (Version: 1.1.0618 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30 - Microsoft Corporation)
Windows App Certification Kit (Version: 8.37.0 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation)
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Runtime Intellisense Content - English (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit DirectX x64 Remote (Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps DirectX x64 Remote (Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit for Metro style Apps DirectX x86 Remote (x32 Version: 8.37.0 - Microsoft Corporation)
Windows Software Development Kit Redistributables (x32 Version: 8.37.0 - Microsoft Corporation)
WinRAR 4.01 (64-Bit) (Version: 4.01.0 - win.rar GmbH)

==================== Restore Points  =========================

29-12-2013 17:08:27 Removed Skype Toolbars
29-12-2013 17:31:47 Entfernt Risen
29-12-2013 20:44:32 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {37FCC9B3-E81D-4C8D-BBAA-0539FF24F60D} - System32\Tasks\Toolbox.exe_{DD931C4C-EC2B-4EDF-A0C2-41A53D10E197} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\Toolbox.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {412A8CCA-28A9-438A-BFA9-F7A6F6436CB0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4373168D-F564-4E8E-9EEF-76DA3A55D54B} - System32\Tasks\PCDoctorBackgroundMonitorTask-Delay => C:\Program Files\Dell Support Center\uaclauncher.exe
Task: {63C04871-C979-47D4-8924-54AB9C04FB6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: {6B34BCFC-2909-4055-94E8-222878F67505} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-02] (Adobe Systems Incorporated)
Task: {79A0EF24-827F-4AF1-814B-5379126D4758} - System32\Tasks\ScanToPCActivationApp.exe_{DBAC5657-10E3-4878-AE27-B04482DBBEAE} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {BA61ED7D-7851-4413-8F99-F7AE71870960} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] ()
Task: {D303D40E-715D-44C4-A47A-BD12048AA1DA} - System32\Tasks\hpUrlLauncher.exe_{FBB11078-9BBD-44B0-896F-C4A7AC63EC87} => C:\Program Files\HP\HP Photosmart 5510d series\Bin\utils\hpUrlLauncher.exe [2011-08-16] (Hewlett-Packard Co.)
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {F3F77F43-805F-4DD7-8E64-98467F125EDC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-13] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2413547846-88302400-1937470424-1001Core1cef924e88ae842.job => C:\Users\Sheradil\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe
Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask-Delay.job => C:\Program Files\Dell Support Center\uaclauncher.exe

==================== Loaded Modules (whitelisted) =============

2011-10-22 11:11 - 2011-10-22 11:11 - 00088856 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-09-30 19:38 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Sheradil\AppData\Roaming\Dropbox\bin\libcef.dll
2011-10-22 10:16 - 2011-10-22 10:16 - 00070424 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2011-03-17 00:11 - 2011-03-17 00:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-12-08 11:15 - 2013-12-04 03:47 - 00702416 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-08 11:15 - 2013-12-04 03:47 - 00099792 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-08 11:15 - 2013-12-04 03:48 - 04055504 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-08 11:15 - 2013-12-04 03:48 - 00399312 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-08 11:15 - 2013-12-04 03:47 - 01619408 _____ () C:\Users\Sheradil\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/30/2013 07:46:21 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 03:27:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 03:25:01 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:46:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:42:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:02:44 PM) (Source: MsiInstaller) (User: SHERADIL)
Description: Product: Google Chrome Frame -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.

Error: (12/29/2013 08:01:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 06:08:50 PM) (Source: MsiInstaller) (User: SHERADIL)
Description: Product: Skype Toolbars -- Uninstallation is cancelled.

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620


System errors:
=============
Error: (12/30/2013 07:48:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (12/30/2013 07:48:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (12/30/2013 07:47:23 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (12/30/2013 07:45:44 PM) (Source: Microsoft-Windows-TaskScheduler) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147549183.

Error: (12/30/2013 03:30:20 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (12/30/2013 03:30:20 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (12/30/2013 03:29:02 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (12/30/2013 03:27:28 PM) (Source: Microsoft-Windows-TaskScheduler) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147549183.

Error: (12/30/2013 03:24:26 PM) (Source: Microsoft-Windows-TaskScheduler) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147549183.

Error: (12/29/2013 09:45:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070663 fehlgeschlagen: Update für Microsoft OneNote 2010 (KB2553290) 64-Bit-Edition


Microsoft Office Sessions:
=========================
Error: (12/30/2013 07:46:21 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 03:27:59 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/30/2013 03:25:01 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:46:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:42:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 08:02:44 PM) (Source: MsiInstaller)(User: SHERADIL)
Description: Product: Google Chrome Frame -- Error 1925. You do not have sufficient privileges to complete this installation for all users of the machine.  Log on as administrator and then retry this installation.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/29/2013 08:01:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/29/2013 06:08:50 PM) (Source: MsiInstaller)(User: SHERADIL)
Description: Product: Skype Toolbars -- Uninstallation is cancelled.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12620

Error: (12/28/2013 04:04:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12620


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 8086.17 MB
Available physical RAM: 5684.09 MB
Total Pagefile: 16170.52 MB
Available Pagefile: 13605.44 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:679 GB) (Free:381.89 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=679 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         


Alt 30.12.2013, 19:06   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



JRT öffnet sich in einer Textconsole. Du musst den Disclaimer mit der Eingabetaste abnicken, damit JRT auch loslegt
__________________
--> Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme

Alt 01.01.2014, 23:52   #7
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Eben nicht
Doppelklick dadrauf, bzw. "Als Administrator ausführen" öffnet ein Fenster und schließt es direkt wieder.
Daraufhin dachte ich mir, ich navigiere über die Konsole bis zu dem Speicherort der JRT.exe
Aber auch wenn ich die Exe direkt über die Konsole aufrufe, klappt es nicht.
Ich kann zu keinem Zeitpunkt irgendetwas bestätigen.

JRT.exe schmiert mit dem Fehler "Der Befehl fsutil ist entweder falsch geschrieben oder konnte nicht gefunden werden" ab

Hat nen bisschen gedauert, das herauszufinden. Die Fehlermeldung war immer zu schnell weg, musste erst Bildschirmaufnahme starten und Video ansehen

Geändert von Sheradil (02.01.2014 um 00:01 Uhr)

Alt 02.01.2014, 00:04   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Versteh ich nicht, JRT hat immer funktioniert. Lad JRT nochmals neu runter und probier es wieder.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 03.01.2014, 18:04   #9
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Naja, also keine Ahnung, ich verstehe es nicht so ganz

Ich studiere Informatik. Bin von da aus nicht so ganz unwissend.
Hab mal versucht die JRT.exe an den Speicherort von fsutil.exe zu kopieren, aber das geht leider nicht. (War allerdings zu erwarten)

Ich nehme mal stark an, das JRT.exe die fsutil.exe an einem falschen Ort sucht. Also entweder waren die Entwickler so "dumm" und haben einen festen Pfad angegeben (Der bei mir leider nicht funktioniert) oder aber bei mir stimmt was mit meinen "PATH"-Variablen nicht (Das schaut wahrscheinlicher aus). Allerdings liegt die fsutil.exe in den beiden wichtigsten Verzeichnissen, die man mit "PATH" abfragen würde:
system32
SysWoW64

Von da aus, habe ich keine Ahnung wie ich das zum laufen bekommen soll.
Außer ich öffne mir die Exe mit nem Disassembler und den Suchort manuell zu ändern, aber das ist sehr umständlich ...

Vielleicht kann man den Schritt ja einfach überspringen

Alt 04.01.2014, 11:44   #10
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 05.01.2014, 08:36   #11
Sheradil
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



MBAM
Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.04.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Sheradil :: SHERADIL [Administrator]

04.01.2014 20:22:40
mbam-log-2014-01-04 (20-22-40).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 249561
Laufzeit: 9 Minute(n), 47 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 2
C:\Users\Sheradil\Downloads\cossacks_setup (1).exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Sheradil\Downloads\cossacks_setup.exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
ESET
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=65fe42e7d8ed884891aa1360dfa5e506
# engine=16523
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-05 12:28:30
# local_time=2014-01-05 01:28:30 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 110172 140511560 0 0
# compatibility_mode=8449 16775165 50 93 545092 9460053 14799 0
# scanned=356852
# found=0
# cleaned=0
# scan_time=18159
         

Alt 05.01.2014, 18:50   #12
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Standard

Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme



TFC - Temp File Cleaner

Lade dir TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.
  • Öffne die TFC.exe.
    Vista und Win 7 User mit Rechtsklick "als Administrator starten".
  • Schließe alle anderen Programme.
  • Drücke auf den Button Start.
  • Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.




Sieht soweit ok aus

Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Antwort

Themen zu Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme
4d36e972-e325-11ce-bfc1-08002be10318, administrator, antivir, bluescreen, browser, defender, desktop, device driver, error, excel, explorer, firefox, flash player, frage, helper, installation, msiinstaller, neustart, object, performance, scan, search.fbdownloader.com, security, software, suchmaschine, temp, vista, win64, windows, wuauclt.exe



Ähnliche Themen: Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme


  1. Link Klick öffnet zunächst eine Link Fremde Seite " Casino Werbung " " Siele Werbung " "Erotik Seiten " oder ähnliches!
    Plagegeister aller Art und deren Bekämpfung - 26.08.2015 (17)
  2. neuer PC auf einmal sehr langsam, Firefox-Meldungen "Skript beschäftigt oder antwortet nicht", "keine Rückmeldung"
    Plagegeister aller Art und deren Bekämpfung - 20.05.2015 (26)
  3. win 7 firefox langsam "keine Rückmeldung" immer wieder Meldung "ein skript auf dieser Seite ist eventuell beschädigt...."
    Plagegeister aller Art und deren Bekämpfung - 14.01.2015 (11)
  4. Diverse Malware ("CoolSaleCoupon", "ddownlloaditkeep", "omiga-plus", "SaveSense", "SaleItCoupon"); lahmer PC & viel Werbung!
    Plagegeister aller Art und deren Bekämpfung - 11.01.2015 (16)
  5. "monstermarketplace.com" Infektion und ihre Folgen; "Anti-Virus-Blocker"," unsichtbare Toolbars" + "Browser-Hijacker" von selbst installiert
    Log-Analyse und Auswertung - 16.11.2013 (21)
  6. Windows XP Nach Installation von HP Player immer zwei Startseiten beim Öffnen von Google chrome "start.iminent.com" und "Search gol"
    Log-Analyse und Auswertung - 08.10.2013 (5)
  7. Browser/Werbe popup, "AppsHat", MBAM Funde, nach "Schrift-Download"
    Plagegeister aller Art und deren Bekämpfung - 26.08.2013 (31)
  8. Windows 8 / IE 10.0.9 : alte "dieStartseite" ist gegen "sm.de" - die Suchmaschine getauscht-Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 01.05.2013 (1)
  9. "Deutsche Post(eMail-Anhang)" Alle "EXE(Programme)" werden blockiert "WIN 7 Defender"
    Plagegeister aller Art und deren Bekämpfung - 27.12.2012 (3)
  10. Diverse Fehlermeldungen bei Start des Systems nach "Entfernen" des "Polizei-Virus"
    Log-Analyse und Auswertung - 27.10.2012 (10)
  11. "The document has moved. Redirecting"+"Popup unten rechts"+"Nicht alle Links anklickbar"
    Plagegeister aller Art und deren Bekämpfung - 24.10.2012 (38)
  12. Win XP Start " Net Reactor 10 Fenster"danach "Firefox Problem 2 Fenster" danach "Blue Screen"
    Log-Analyse und Auswertung - 09.07.2011 (3)
  13. Öffentliches Netzwerk: Opera sendet/empfängt Daten an/von "Dani-PC", "Anne-PC", "PAULA-HP"...
    Netzwerk und Hardware - 02.05.2011 (14)
  14. Fehlalarme bei Escan - betreffend "gain.gator" und "SmitFraud Browser Hijacker"
    Log-Analyse und Auswertung - 16.12.2008 (2)
  15. "Adware.Virtumonde"/"Downloader.MisleadApp"/"TR/VB.agt.4"/"NewDotNet.A.1350"/"Fakerec
    Plagegeister aller Art und deren Bekämpfung - 22.08.2008 (6)
  16. Beheben des Problems "kein Internet"/"rsvp32_2.dll"/"Can't load library from memory"
    Plagegeister aller Art und deren Bekämpfung - 25.03.2007 (22)
  17. ">"">><meta http-equiv="Refresh" content="0;url=http://askimizsonsuza.com/code/">"">
    Plagegeister aller Art und deren Bekämpfung - 04.09.2006 (4)

Zum Thema Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme - Hey, Nachdem es mir hier ein wenig zu bunt wurde, habe ich vorhin einmal AntiVir durch Sophos ersetzt. Anschließend habe Ich meinerseits ein paar Sachen deinstalliert und mit Sophos 4 - Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme...
Archiv
Du betrachtest: Browser: Suchmaschine und "Start" / "Neuer Tab" - Seite und kurze Hintergrundprogramme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.