| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: CPU Andauernt auf 100%!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.01.2014, 01:19
| #1 |
| |  CPU Andauernt auf 100%! Hallo, Also wie im Titel schon beschrieben läuft mein CPU meines Sony Vaio Laptop´s dauernt auf 100%. Ich hatte im Taskmanager mal geschaut welches Programm am meisten die Prozente hoch steigen lässt es ist Diensthost: Lokaler Dienst. Aber ich glaube das nur der Diensthost alleine schuld ist. Habe auch schon einen OTL Scan gemacht und die log files unten eingefügt Bitte um Hilfe.  Code:
ATTFilter OTL logfile created on: 16.01.2014 00:55:52 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rezer\Downloads 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16476) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,95 Gb Total Physical Memory | 1,47 Gb Available Physical Memory | 37,24% Memory free 15,95 Gb Paging File | 10,97 Gb Available in Paging File | 68,80% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 428,71 Gb Total Space | 324,00 Gb Free Space | 75,58% Space Free | Partition Type: NTFS Drive E: | 465,76 Gb Total Space | 48,64 Gb Free Space | 10,44% Space Free | Partition Type: NTFS Computer Name: REZER_PC | User Name: Rezer | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Rezer\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe (APN LLC.) PRC - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN) PRC - C:\ProgramData\WPM\wprotectmanager.exe (Cherished Technololgy LIMITED) PRC - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe () PRC - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe (Microsoft Corporation.) PRC - C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe () PRC - C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe (Opera Software) PRC - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe (Smartbar) PRC - C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\bclient.exe (SSL) PRC - C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe (Bake Cake) PRC - C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe (cake bake) PRC - C:\Programme\McAfeeEx\MOCP\core\OcpTray.exe (McAfee, Inc.) PRC - C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe (Aeria Games & Entertainment) PRC - C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) PRC - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros) PRC - C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation) PRC - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation) PRC - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) PRC - C:\Programme\Sony\VAIO Care\listener.exe () PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation) PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) PRC - C:\Users\Rezer\Desktop\virtualdj_pro.exe (Atomix Productions) ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe () MOD - C:\Program Files (x86)\Opera\18.0.1284.68\libglesv2.dll () MOD - C:\Program Files (x86)\Opera\18.0.1284.68\libegl.dll () MOD - C:\Program Files (x86)\Opera\18.0.1284.68\ffmpegsumo.dll () MOD - C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe () MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsForm0b574481#\afb23fbeab3f42a296d2267ff818226b\WindowsFormsIntegration.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\dce9de99d0b6d6951b3e4bb96cdf8eb2\UIAutomationTypes.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\e6dc080a4287b7bd34a8df7bc3060287\System.Web.Services.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\1b66c3a9184d6f58a4ea4c9fda959ae1\System.Configuration.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\9e55130078215e51257977a651b0696b\System.Xml.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\eac55000ab752ad6469e74bc2031a3ef\System.Windows.Forms.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\e846f72e7c00312a5d9c04e7f70fa4a8\System.Drawing.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\5a86b00da9227fe7c9a1f6ca95c1850c\System.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\0cc1da9cd31b490f4ec04cb6c2aa0519\mscorlib.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\7c74d7aeea0b6338a41a568338ac0d44\System.Xml.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\38576feb5219017651ccabc47d762721\System.Xaml.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5bfb986816df97dad53f0f8805034c13\System.Windows.Forms.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\236909def26d8a0afa1e3a3c1a565029\System.Transactions.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\bcf96bb3f336510eb9cb0528246b6286\System.Runtime.Serialization.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\f81d9811e7e3e49c6368eae04b82821e\System.Management.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\7fc996267c8fdbf5f4a99648b2b4a764\System.Drawing.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\a91958b0b36fad1117db357453c678e6\System.Data.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\4de0819b5866a864a353b401accbe99f\System.Configuration.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\09a79e2680eb455c3bd86986a1a3ebc6\PresentationFramework.Aero2.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\43edf387058448969f5b045416e7a61f\PresentationFramework.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\cd8b0635d40858825092519b467e2051\PresentationCore.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\360aceaa71f85cd70876356d6f4a5019\WindowsBase.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\c4998b0a19973793e409d92b5ffb39de\System.Core.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\7fb8b50f254a60f46417d8698735943a\System.ni.dll () MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\f53cfbc3ae73aedfcdab4e4cfe531a4b\mscorlib.ni.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srut.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srsbs.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srpdm.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srns.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srau.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\spbl.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sppsm.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\siem.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sgml.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\MACTrackBarLib.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sgmu.dll () MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll () MOD - C:\Programme\McAfeeEx\MOCP\core\OCP_LD.dll () MOD - C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll () MOD - C:\WINDOWS\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_de_b77a5c561934e089\System.Xml.resources.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll () MOD - C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll () MOD - C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\zlib1.dll () MOD - C:\Program Files (x86)\Aeria Games\Ignite\AGAkamai.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll () MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll () MOD - C:\Programme\Sony\VAIO Care\listener.exe () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\dsp_Phaser.dll () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\VideoTransition\satelliteboom.dll () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\brake.dll () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\backspin.dll () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\VideoEffect\Sonique.dll () MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\BeatGrid.dll () ========== Services (SafeList) ========== SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation) SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation) SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation) SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation) SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation) SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation) SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation) SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation) SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation) SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation) SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation) SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation) SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation) SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation) SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation) SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation) SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation) SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation) SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation) SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation) SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation) SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation) SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation) SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation) SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation) SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation) SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation) SRV:64bit: - (SampleCollector) -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe () SRV - (APNMCP) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe (APN LLC.) SRV - (Wpm) -- C:\ProgramData\WPM\wprotectmanager.exe (Cherished Technololgy LIMITED) SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe (Microsoft Corporation.) SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe (Microsoft Corporation.) SRV - (SProtection) -- C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (OverwolfUpdaterService) -- C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirWebService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (BRSptSvc) -- C:\ProgramData\BitRaider\BRSptSvc.exe (BitRaider, LLC) SRV - (lfsvc) -- C:\Windows\SysWOW64\GeofenceMonitorService.dll (Microsoft Corporation) SRV - (NetworkSupport) -- C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe (Sony Corporation) SRV - (BackupStack) -- C:\Program Files (x86)\MyPC Backup\BackupStack.exe (Just Develop It) SRV - (PrintNotify) -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation) SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation) SRV - (Update WL) -- C:\Program Files (x86)\Web Layers\updateWebLayers.exe () SRV - (WebCakeUpdater) -- C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe (cake bake) SRV - (mfeicfcoreocp) -- C:\Programme\McAfeeEx\MOCP\core\mfeicfcore.exe (McAfee, Inc.) SRV - (VUAgent) -- C:\Programme\Sony\VAIO Update\VUAgent.exe (Sony Corporation) SRV - (AtherosSvc) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Qualcomm Atheros Commnucations) SRV - (ZAtheros Bt and Wlan Coex Agent) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros) SRV - (SOHDms) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe (Sony Corporation) SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation) SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation) SRV - (VCService) -- C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation) SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.) SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation) SRV - (AdobeARMservice) -- c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (VAIO Event Service) -- C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation) SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation) SRV - (VAIO Power Management) -- C:\Programme\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) SRV - (SpfService) -- C:\Programme\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (Sony Corporation) SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.) ========== Driver Services (SafeList) ========== DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation) DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avnetflt) -- C:\Windows\SysNative\drivers\avnetflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation) DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation) DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation) DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation) DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation) DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation) DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation) DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation) DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation) DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation) DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation) DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.) DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation) DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (LSI_SAS3) -- C:\Windows\SysNative\drivers\lsi_sas3.sys (LSI Corporation) DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation) DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation) DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\drivers\UCX01000.SYS (Microsoft Corporation) DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation) DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.) DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation) DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation) DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation) DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation) DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation) DRV:64bit: - (ReFS) -- C:\WINDOWS\SysNative\drivers\refs.sys (Microsoft Corporation) DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation) DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation) DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation) DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation) DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation) DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation) DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation) DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation) DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation) DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation) DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation) DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation) DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation) DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation) DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation) DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation) DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation) DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation) DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation) DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation) DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation) DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation) DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc63.sys (Microsoft Corporation) DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\drivers\BthLEEnum.sys (Microsoft Corporation) DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation) DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation) DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation) DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation) DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation) DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\drivers\fxppm.sys (Microsoft Corporation) DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation) DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation) DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation) DRV:64bit: - (RTL8168) -- C:\Windows\SysNative\drivers\Rt630x64.sys (Realtek ) DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athw8x.sys (Qualcomm Atheros Communications, Inc.) DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.) DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation) DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\drivers\btfilter.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_VDP) -- C:\Windows\SysNative\drivers\btath_vdp.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_RCP) -- C:\Windows\SysNative\drivers\btath_rcp.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_LWFLT) -- C:\Windows\SysNative\drivers\btath_lwflt.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_HCRP) -- C:\Windows\SysNative\drivers\btath_hcrp.sys (Qualcomm Atheros) DRV:64bit: - (AthBTPort) -- C:\Windows\SysNative\drivers\btath_flt.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_A2DP) -- C:\Windows\SysNative\drivers\btath_a2dp.sys (Qualcomm Atheros) DRV:64bit: - (btath_avdt) -- C:\Windows\SysNative\drivers\btath_avdt.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_BUS) -- C:\Windows\SysNative\drivers\btath_bus.sys (Qualcomm Atheros) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys (Synaptics Incorporated) DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW86.sys (Advanced Micro Devices) DRV:64bit: - (RSPCIESTOR) -- C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.) DRV:64bit: - (SFEP) -- C:\Windows\SysNative\drivers\SFEP.sys (Sony Corporation) DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation) DRV:64bit: - (CLVirtualDrive) -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys (CyberLink) DRV:64bit: - (SOWS) -- C:\Windows\SysNative\drivers\sows.sys (Sony Corporation) DRV:64bit: - (HipShieldK) -- C:\Windows\SysNative\drivers\HipShieldK.sys (McAfee, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T IE - HKLM\..\URLSearchHook: {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86} IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN21121999732636817&UM=2&ctid=CT3312331 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKCU\..\SearchScopes,DefaultScope = {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB} IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013 IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR IE - HKCU\..\SearchScopes\{1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2 IE - HKCU\..\SearchScopes\{248E7D94-A51C-47C2-A4E2-3B9A7A1E9F54}: "URL" = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms} IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms} IE - HKCU\..\SearchScopes\{98D8DE1A-26F3-41F6-9D9E-A488FDF1975A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS IE - HKCU\..\SearchScopes\{EEC7FB7A-1844-4173-83DC-C6B09E0A6DB2}: "URL" = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=0ebbb5bf000000000000161731e9add1&r=812 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\mcafee\msc\npMcSnFFPl64.dll File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll File not found FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () FF - HKLM\Software\MozillaPlugins\Adobe Reader: c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\seesimilar02@SeeSimilar.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedtestanalysis@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com [2013.12.31 14:52:57 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\seesimilar02@SeeSimilar.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedtestanalysis@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com [2013.12.31 14:52:57 | 000,000,000 | ---D | M] [2013.12.31 14:52:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions [2013.09.28 20:52:16 | 000,000,000 | ---D | M] (SeeSimilar02) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\seesimilar02@SeeSimilar.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] (Speed Analysis 2) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013.12.31 14:52:57 | 000,000,000 | ---D | M] (Speed Test Analysis) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M] (Zula Games) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\zulagames@ZulaGames.com [2013.08.20 01:42:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions O1 HOSTS File: ([2013.08.22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Plus-HD-4.9) - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho64.dll (Plus HD) O2:64bit: - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.) O2:64bit: - BHO: (Speed Test Analysis) - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files (x86)\Speed Test Analysis\ScriptHost64.dll (SpeedAnalysis.com) O2:64bit: - BHO: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.) O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Plus-HD-4.9) - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho.dll (Plus HD) O2 - BHO: (Speed Analysis 2) - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll (SpeedAnalysis.com) O2 - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.) O2 - BHO: (Speed Test Analysis) - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files (x86)\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com) O2 - BHO: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.) O2 - BHO: (appbarioDE Toolbar) - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (SeeSimilar02) - {93488930-185C-4CED-AFEB-0FD4930F8423} - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll (SeeSimilar.com) O2 - BHO: (Web Layers) - {976d7863-9e6c-4066-8c67-0993db9de35f} - C:\Program Files (x86)\Web Layers\WebLayersbho.dll (Web Layers) O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN) O2 - BHO: (Zula Games) - {A9337080-7CBF-4E3E-80C1-3867BEDD88E0} - C:\Program Files (x86)\Zula Games\ScriptHost.dll (ZulaGames.com) O2 - BHO: (delta Helper Object) - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.5\bh\delta.dll (Delta-search.com) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com) O3:64bit: - HKLM\..\Toolbar: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.) O3:64bit: - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.) O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com) O3 - HKLM\..\Toolbar: (appbarioDE Toolbar) - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Delta Toolbar) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.5\deltaTlbr.dll (Delta-search.com) O3 - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.) O3 - HKCU\..\Toolbar\WebBrowser: (appbarioDE Toolbar) - {525BA996-1CE4-4677-91C5-9FC4EAD2D245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.) O4:64bit: - HKLM..\Run: [BtTray] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe (Qualcomm Atheros) O4:64bit: - HKLM..\Run: [BtvStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Communications) O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Aeria Ignite] C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe (Aeria Games & Entertainment) O4 - HKLM..\Run: [ApnTBMon] C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe (Iminent) O4 - HKLM..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (Iminent) O4 - HKLM..\Run: [Intel AppUp(R) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey File not found O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe () O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) O4 - HKCU..\Run: [BackgroundContainer] C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (Conduit Ltd.) O4 - HKCU..\Run: [Browser Infrastructure Helper] C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe (Smartbar) O4 - HKCU..\Run: [HP Deskjet 3520 series (NET)] C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.) O4 - HKCU..\Run: [NextLive] C:\Users\Rezer\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe) O4 - HKCU..\Run: [NTRedirect] C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll () O4 - HKCU..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe (Overwolf) O4 - HKCU..\Run: [WebCake Desktop] C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe (Bake Cake) O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe (Adobe Systems Incorporated) O4 - Startup: C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O15 - HKCU\..Trusted Domains: aeriagames.com ([]http in Trusted sites) O15 - HKCU\..Trusted Domains: aeriagames.com ([]https in Trusted sites) O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites) O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1A0A1E4C-842E-4469-B497-F2B174B1A3C7}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E60843F7-BC1D-4A43-93B3-C9627732CE7A}: DhcpNameServer = 192.54.112.29 O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{482c464e-5b0b-11e3-824f-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{482c464e-5b0b-11e3-824f-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\setup.exe" O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2014.01.14 00:42:48 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Sony Online Entertainment [2014.01.11 21:04:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2014.01.11 01:49:36 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Desktop\Ordner vom 11.01 [2014.01.11 00:07:13 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org [2014.01.11 00:06:34 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup [2014.01.11 00:06:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyPC Backup [2014.01.11 00:05:57 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Deployment [2014.01.11 00:05:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector [2014.01.11 00:05:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak [2014.01.11 00:05:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced System Protector [2014.01.11 00:05:22 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM [2014.01.11 00:04:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro [2014.01.11 00:04:43 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\systweak [2014.01.11 00:04:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RegClean Pro [2014.01.10 23:54:51 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Iggels [2014.01.10 23:51:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Plus-HD-4.9 [2014.01.10 19:49:16 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Desktop\Bilder [2014.01.09 15:50:58 | 000,000,000 | ---D | C] -- C:\Crash [2014.01.09 14:28:46 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\SCE [2014.01.09 14:28:36 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll [2014.01.09 14:28:36 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll [2014.01.09 14:28:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll [2014.01.09 14:28:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll [2014.01.09 14:28:35 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll [2014.01.09 14:28:35 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll [2014.01.09 14:28:34 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll [2014.01.09 14:28:34 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll [2014.01.09 14:28:34 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll [2014.01.09 14:28:34 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll [2014.01.09 14:28:32 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll [2014.01.09 14:28:32 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll [2014.01.09 14:28:31 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll [2014.01.09 14:28:31 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll [2014.01.09 14:28:30 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll [2014.01.09 14:28:30 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll [2014.01.05 08:46:57 | 000,246,784 | ---- | C] (DelphiZip) -- C:\WINDOWS\SysWow64\DelZip179.dll [2014.01.05 08:46:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Berichtsheft Pro 3 [2014.01.05 08:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Berichtsheft Pro 3 [2013.12.31 15:42:53 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ [2013.12.31 15:42:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ [2013.12.31 15:41:29 | 038,445,769 | ---- | C] (ChattChitto RG©) -- C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe [2013.12.31 14:53:36 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ [2013.12.31 14:53:35 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Documents\VirtualDJ [2013.12.31 14:53:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VirtualDJ [2013.12.31 14:52:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Speed Test Analysis [2013.12.31 14:52:54 | 000,000,000 | ---D | C] -- C:\Users\Rezer\.android [2013.12.31 14:52:53 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis [2013.12.31 14:52:52 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\cache [2013.12.31 14:52:51 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\newnext.me [2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Documents\Mobogenie [2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Mobogenie [2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\genienext [2013.12.31 14:52:14 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie [2013.12.31 14:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobogenie [2013.12.26 20:46:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle [2013.12.26 20:45:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2013.12.26 20:45:36 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe [2013.12.26 20:45:32 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe [2013.12.26 20:45:32 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe [2013.12.26 20:45:32 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll [2013.12.26 20:44:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java [2013.12.25 09:47:54 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Google [2013.12.25 09:47:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Softonic [2013.12.25 04:56:47 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Youtube Downloader HD [2013.12.25 04:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD [2013.12.25 04:56:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Youtube Downloader HD [2013.12.25 04:56:26 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\OpenCandy [2013.12.23 13:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2013.12.22 05:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced Micro Devices, Inc [2013.12.22 05:13:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center [2013.12.22 05:12:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies [2013.12.22 05:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013.12.22 05:08:54 | 000,000,000 | ---D | C] -- C:\AMD [2013.12.22 05:05:13 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2013.12.17 16:29:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.12.17 16:29:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Overwolf ========== Files - Modified Within 30 Days ========== [2014.01.16 00:15:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2014.01.15 23:52:00 | 000,001,346 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-updater.job [2014.01.15 23:52:00 | 000,001,298 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-codedownloader.job [2014.01.15 23:52:00 | 000,001,170 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-enabler.job [2014.01.15 23:51:02 | 000,002,014 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-chromeinstaller.job [2014.01.15 23:51:01 | 000,002,144 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-firefoxinstaller.job [2014.01.15 23:10:36 | 001,776,918 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2014.01.15 23:10:36 | 000,765,582 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat [2014.01.15 23:10:36 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2014.01.15 23:10:36 | 000,159,366 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat [2014.01.15 23:10:36 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2014.01.15 22:48:01 | 001,370,833 | ---- | M] () -- C:\Users\Rezer\Desktop\Planetside-2-Wallpaper.jpg [2014.01.15 17:48:50 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2014.01.15 17:46:48 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2014.01.15 17:46:46 | 3391,741,952 | -HS- | M] () -- C:\hiberfil.sys [2014.01.15 15:02:13 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job [2014.01.15 00:58:13 | 000,000,503 | ---- | M] () -- C:\Users\Rezer\Desktop\Neues RTF-Dokument.rtf [2014.01.15 00:05:20 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RegClean Pro_UPDATES.job [2014.01.11 02:05:13 | 000,831,315 | ---- | M] () -- C:\Users\Rezer\Desktop\24008-video_games_planetside_2_wallpaper.jpg [2014.01.11 02:03:00 | 000,378,868 | ---- | M] () -- C:\Users\Rezer\Desktop\mario-mario-wallpaper-hd-games.jpg [2014.01.11 00:06:34 | 000,001,109 | ---- | M] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2014.01.10 20:18:58 | 002,180,938 | ---- | M] () -- C:\Users\Rezer\Desktop\20140108_200421.jpg [2014.01.09 18:54:30 | 000,001,029 | ---- | M] () -- C:\Users\Rezer\Desktop\Prüfungsmenü Steven Schulz.rtf [2014.01.09 14:27:29 | 000,002,545 | ---- | M] () -- C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk [2014.01.09 12:12:01 | 000,007,607 | ---- | M] () -- C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg [2014.01.06 23:31:05 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe [2014.01.06 23:31:05 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl [2014.01.05 08:46:58 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Berichtsheft Pro 3.lnk [2014.01.03 07:43:10 | 000,357,888 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2013.12.31 15:42:25 | 038,445,769 | ---- | M] (ChattChitto RG©) -- C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe [2013.12.27 18:10:50 | 000,020,312 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\WINDOWS\SysNative\roboot64.exe [2013.12.23 14:07:47 | 000,145,688 | ---- | M] () -- C:\WINDOWS\hpoins18.dat ========== Files Created - No Company Name ========== [2014.01.15 22:48:00 | 001,370,833 | ---- | C] () -- C:\Users\Rezer\Desktop\Planetside-2-Wallpaper.jpg [2014.01.15 00:00:04 | 000,000,503 | ---- | C] () -- C:\Users\Rezer\Desktop\Neues RTF-Dokument.rtf [2014.01.11 02:05:13 | 000,831,315 | ---- | C] () -- C:\Users\Rezer\Desktop\24008-video_games_planetside_2_wallpaper.jpg [2014.01.11 02:02:59 | 000,378,868 | ---- | C] () -- C:\Users\Rezer\Desktop\mario-mario-wallpaper-hd-games.jpg [2014.01.11 01:16:52 | 000,001,108 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk [2014.01.11 00:06:34 | 000,001,109 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2014.01.11 00:05:38 | 000,016,896 | ---- | C] () -- C:\WINDOWS\SysNative\sasnative64.exe [2014.01.11 00:05:19 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job [2014.01.11 00:05:17 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\RegClean Pro_UPDATES.job [2014.01.10 23:52:15 | 000,001,346 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-updater.job [2014.01.10 23:52:11 | 000,001,170 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-enabler.job [2014.01.10 23:52:02 | 000,001,298 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-codedownloader.job [2014.01.10 23:51:51 | 000,002,144 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-firefoxinstaller.job [2014.01.10 23:51:36 | 000,002,014 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-chromeinstaller.job [2014.01.10 19:49:02 | 002,180,938 | ---- | C] () -- C:\Users\Rezer\Desktop\20140108_200421.jpg [2014.01.09 14:27:29 | 000,002,575 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk [2014.01.09 14:27:29 | 000,002,545 | ---- | C] () -- C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk [2014.01.09 12:12:01 | 000,007,607 | ---- | C] () -- C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg [2014.01.05 08:46:58 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Berichtsheft Pro 3.lnk [2013.12.23 14:07:46 | 000,145,688 | ---- | C] () -- C:\WINDOWS\hpoins18.dat [2013.12.23 14:07:46 | 000,006,600 | ---- | C] () -- C:\WINDOWS\hpomdl18.dat [2013.12.23 13:19:34 | 000,001,029 | ---- | C] () -- C:\Users\Rezer\Desktop\Prüfungsmenü Steven Schulz.rtf [2013.12.13 10:23:24 | 000,995,342 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe [2013.12.13 10:23:24 | 000,798,734 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe [2013.12.13 10:23:14 | 000,123,392 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll [2013.12.02 05:39:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2013.08.29 22:21:56 | 001,169,609 | ---- | C] () -- C:\WINDOWS\unins000.exe [2013.08.29 22:21:55 | 000,086,529 | ---- | C] () -- C:\WINDOWS\unins000.dat [2013.08.22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2013.08.22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2013.08.22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2013.08.22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2013.08.22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2013.08.22 04:17:46 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll [2013.08.22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2013.08.22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2013.07.28 14:16:26 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini [2013.02.21 02:52:22 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat [2013.02.21 02:52:20 | 000,026,936 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsnl.dat [2013.02.21 02:52:14 | 000,003,917 | ---- | C] () -- C:\WINDOWS\SysWow64\atipblag.dat [2013.02.21 02:52:12 | 000,000,025 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsny.dat [2013.02.21 02:52:10 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat [2013.01.29 05:51:00 | 000,074,703 | ---- | C] () -- C:\WINDOWS\SysWow64\mfc45.dll [2012.05.10 16:35:16 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\kdbsdk32.dll [2012.04.20 13:59:44 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll ========== ZeroAccess Check ========== [2014.01.11 00:06:52 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013.12.02 05:33:06 | 021,196,664 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013.12.02 05:33:06 | 018,642,504 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013.08.22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2013.08.22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013.08.22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Files - Unicode (All) ========== [2013.11.16 00:37:15 | 104,513,208 | ---- | M] ()(C:\WINDOWS\SysWow64\??LH) -- C:\WINDOWS\SysWow64\⫙LĤ [2013.11.16 00:37:15 | 104,513,208 | ---- | C] ()(C:\WINDOWS\SysWow64\??LH) -- C:\WINDOWS\SysWow64\⫙LĤ [2013.11.07 10:37:00 | 102,894,578 | ---- | M] ()(C:\WINDOWS\SysWow64\??Lc) -- C:\WINDOWS\SysWow64\⁺釈Lċ [2013.11.07 10:37:00 | 102,894,578 | ---- | C] ()(C:\WINDOWS\SysWow64\??Lc) -- C:\WINDOWS\SysWow64\⁺釈Lċ [2013.11.05 19:49:16 | 105,017,276 | ---- | M] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\ꊪL‘ [2013.11.05 00:25:46 | 105,017,276 | ---- | C] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\ꊪL‘ [2013.10.26 19:40:57 | 103,214,166 | ---- | M] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\冿殡LŸ [2013.10.25 20:31:18 | 103,214,166 | ---- | C] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\冿殡LŸ [2013.10.25 14:30:58 | 102,975,063 | ---- | M] ()(C:\WINDOWS\SysWow64\??Ll) -- C:\WINDOWS\SysWow64\如곝Lĺ [2013.10.24 19:53:12 | 102,975,063 | ---- | C] ()(C:\WINDOWS\SysWow64\??Ll) -- C:\WINDOWS\SysWow64\如곝Lĺ ========== Alternate Data Streams ========== @Alternate Data Stream - 237 bytes -> C:\Users\Rezer\SkyDrive:ms-properties < End of report > Hab nicht sehr viel ahnung von allem . |
|
16.01.2014, 07:48
| #2 |
| /// the machine /// TB-Ausbilder    | CPU Andauernt auf 100%! hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
27.01.2014, 13:24
| #3 |
| | CPU Andauernt auf 100%! Entschuldigung das ich mich erst jetzt melde hatte von Arbeit aus ein Außeneinsatz.
__________________hier die beiden Dokumente. Achso jetzt ist auch bei meinen Windows 8 Laptop der Datenträger dauerhaft auf 100% auslastung. Nach dem Taskmanager zurfolge ist allgmein das System schuld. Schonmal danke für die antwort. Gruß Steven |
|
28.01.2014, 10:44
| #4 |
| /// the machine /// TB-Ausbilder | CPU Andauernt auf 100%! Hi, Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
28.01.2014, 11:42
| #5 |
| | CPU Andauernt auf 100%! Hier bitte schön Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Rezer (administrator) on REZER_PC on 27-01-2014 13:16:47
Running from C:\Users\Rezer\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Iminent) C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
() C:\Program Files (x86)\Web Layers\updateWebLayers.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(cake bake) C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Akamai Technologies, Inc.) C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Akamai Technologies, Inc.) C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe
(Bake Cake) C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe
(Smartbar) C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe
(Overwolf) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Somoto) C:\Users\Rezer\AppData\Local\FilesFrog Update Checker\update_checker.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(McAfee, Inc.) C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(Aeria Games & Entertainment) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(SSL) C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\bclient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Users\Rezer\AppData\Local\Lollipop\lollipop_01271202.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Conduit) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Conduit) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.EXE
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] - C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [766080 2012-11-05] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-11-05] (Atheros Communications)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2930488 2012-10-23] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-10-04] (Intel Corporation)
HKLM-x32\...\Run: [Aeria Ignite] - C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2014-01-11] (APN)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Iminent] - C:\Program Files (x86)\Iminent\Iminent.exe [1074736 2013-08-08] (Iminent)
HKLM-x32\...\Run: [IminentMessenger] - C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [884784 2013-08-08] (Iminent)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761536 2013-12-31] ()
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [HP Deskjet 3520 series (NET)] - C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKCU\...\Run: [NTRedirect] - C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll [187888 2013-08-22] ()
HKCU\...\Run: [WebCake Desktop] - C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe [52504 2013-08-10] (Bake Cake)
HKCU\...\Run: [BackgroundContainer] - C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll [319264 2013-10-14] (Conduit Ltd.) <===== ATTENTION
HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe [21536 2013-10-31] (Smartbar)
HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe [35768 2013-12-09] (Overwolf)
HKCU\...\Run: [NextLive] - C:\Users\Rezer\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe)
HKCU\...\Run: [SDP] - C:\Users\Rezer\AppData\Local\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKCU\...\Run: [lollipop_01271202] - c:\users\rezer\appdata\local\lollipop\lollipop_01271202.exe [2788352 2014-01-27] ()
MountPoints2: {482c464e-5b0b-11e3-824f-806e6f6e6963} - "D:\setup.exe"
HKU\Gast\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1344800 2014-01-20] (Conduit)
AppInit_DLLs: C:\PROGRA~2\SUPPOR~1\SUPPOR~2.DLL => C:\Program Files (x86)\Supporter\Supporter_x64.dll [4229120 2014-01-23] ()
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1037600 2014-01-20] (Conduit)
AppInit_DLLs-x32: c:\progra~2\suppor~1\suppor~1.dll => C:\Program Files (x86)\Supporter\Supporter.dll [4105216 2014-01-23] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN21121999732636817&UM=2&ctid=CT3312331&UP=SP4786A570-BB5A-425F-B7A8-9E6D8BBA9821&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
URLSearchHook: HKLM-x32 - appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
URLSearchHook: HKCU - UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKCU - DefaultScope {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2
SearchScopes: HKCU - {248E7D94-A51C-47C2-A4E2-3B9A7A1E9F54} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKCU - {98D8DE1A-26F3-41F6-9D9E-A488FDF1975A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKCU - {EEC7FB7A-1844-4173-83DC-C6B09E0A6DB2} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=0ebbb5bf000000000000161731e9add1&r=812
BHO: Plus-HD-4.9 - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho64.dll (Plus HD)
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Plus-HD-4.9 - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho.dll (Plus HD)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
BHO-x32: appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: SeeSimilar02 - {93488930-185C-4CED-AFEB-0FD4930F8423} - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll (SeeSimilar.com)
BHO-x32: Web Layers - {976d7863-9e6c-4066-8c67-0993db9de35f} - C:\Program Files (x86)\Web Layers\WebLayersbho.dll (Web Layers)
BHO-x32: IMinent WebBooster (BHO) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN)
BHO-x32: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.5\bh\delta.dll (Delta-search.com)
BHO-x32: ViewPassword - {c75769ca-5da6-4f06-b061-424316dfb486} - C:\Program Files (x86)\ViewPassword\150.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {525BA996-1CE4-4677-91C5-9FC4EAD2D245} - No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Chrome:
=======
CHR Extension: (Docs) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-26]
CHR Extension: (Google Drive) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-26]
CHR Extension: (YouTube) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-26]
CHR Extension: (Google Search) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-26]
CHR Extension: (Softonic Chrome Toolbar) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-12-25]
CHR Extension: (Delta Toolbar) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2014-01-26]
CHR Extension: (SeeSimilar02) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fegpgkakakkgjlnfdfoghgoohkbcejpm [2014-01-26]
CHR Extension: (Zula Games) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-01-26]
CHR Extension: (Plus-HD-4.9) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjflmfkjppbmejlfbhlpgjnomdoefkfa [2014-01-10]
CHR Extension: (ViewPassword) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmojojliiicbbihpjmiepllaiflnjobc [2014-01-26]
CHR Extension: (No Name) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckgnnipheglejoddfhekdjpbdbinhmb [2013-12-31]
CHR Extension: (Google Wallet) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-26]
CHR Extension: (Gmail) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-26]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Rezer\AppData\Roaming\BabSolution\CR\Delta.crx [2013-08-20]
CHR HKLM-x32\...\Chrome\Extension: [fegpgkakakkgjlnfdfoghgoohkbcejpm] - C:\Users\Rezer\AppData\Roaming\SeeSimilar02\SeeSimilar02.crx [2013-06-11]
CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Rezer\AppData\Roaming\zulagames\zulagames.crx [2013-07-01]
CHR HKLM-x32\...\Chrome\Extension: [jmojojliiicbbihpjmiepllaiflnjobc] - C:\Program Files (x86)\ViewPassword\150.crx [2014-01-23]
CHR HKLM-x32\...\Chrome\Extension: [kckgnnipheglejoddfhekdjpbdbinhmb] - C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis\SpeedTestAnalysis.crx [2013-09-30]
==================== Services (Whitelisted) =================
U2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-27] (Avira Operations GmbH & Co. KG)
U4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-01-11] (APN LLC.)
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231040 2012-11-05] (Qualcomm Atheros Commnucations)
U2 be0fb33b; C:\Program Files (x86)\Supporter\SupporterSvc.dll [183632 2014-01-23] ()
U3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-11-25] (BitRaider, LLC)
U2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2301216 2014-01-20] (Conduit)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
U2 mfeicfcoreocp; C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe [2776256 2013-08-08] (McAfee, Inc.)
U3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
U2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
U3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
U2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
U2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
U2 SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2905408 2013-12-11] (Iminent)
U2 Update WL; C:\Program Files (x86)\Web Layers\updateWebLayers.exe [199968 2013-08-17] ()
U3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation)
U3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U2 WebCakeUpdater; C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe [51992 2013-08-10] (cake bake)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2014-01-11] (Cherished Technololgy LIMITED)
U2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-11-05] (Atheros)
==================== Drivers (Whitelisted) ====================
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-10-22] (Advanced Micro Devices)
U2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-27] (Avira Operations GmbH & Co. KG)
U1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132600 2013-11-27] (Avira Operations GmbH & Co. KG)
U1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [83160 2013-11-27] (Avira Operations GmbH & Co. KG)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-05] (Qualcomm Atheros)
U3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-11-05] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-23] (Synaptics Incorporated)
U3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-12-02] (Microsoft Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-27 13:16 - 2014-01-27 13:17 - 00031452 _____ C:\Users\Rezer\Downloads\FRST.txt
2014-01-27 13:16 - 2014-01-27 13:16 - 00000000 ____D C:\FRST
2014-01-27 13:15 - 2014-01-27 13:15 - 02078208 _____ (Farbar) C:\Users\Rezer\Downloads\FRST64.exe
2014-01-27 13:06 - 2014-01-27 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\SearchProtect
2014-01-27 13:02 - 2014-01-27 13:02 - 00003370 _____ C:\WINDOWS\System32\Tasks\BackgroundContainer Startup Task
2014-01-26 15:03 - 2014-01-27 13:03 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-26 15:02 - 2014-01-27 13:13 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-26 15:02 - 2014-01-27 13:02 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-26 15:02 - 2014-01-26 15:08 - 00004098 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-26 15:02 - 2014-01-26 15:08 - 00003862 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-26 15:02 - 2014-01-26 15:02 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-26 15:01 - 2014-01-26 15:01 - 00819192 _____ (Google Inc.) C:\Users\Rezer\Downloads\ChromeSetup.exe
2014-01-25 20:35 - 2014-01-26 15:15 - 00000259 _____ C:\Users\Rezer\Desktop\Neues Textdokument.txt
2014-01-23 07:27 - 2014-01-23 07:27 - 00000000 ____D C:\WINDOWS\PCHEALTH
2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-23 07:24 - 2014-01-26 23:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 __RHD C:\MSOCache
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Users\Rezer\AppData\Local\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-23 07:18 - 2014-01-23 07:20 - 704809728 _____ (Microsoft Corporation) C:\Users\Rezer\Desktop\X17-22376.exe
2014-01-23 07:15 - 2014-01-23 07:15 - 00002226 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 07:09 - 2014-01-26 23:50 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Supporter
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-23 07:04 - 2014-01-27 13:15 - 00000000 ____D C:\Users\Rezer\AppData\Local\Lollipop
2014-01-23 07:04 - 2014-01-27 13:06 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2014-01-23 07:04 - 2014-01-27 13:05 - 00000000 ____D C:\Program Files (x86)\Wajam
2014-01-23 07:04 - 2014-01-27 13:02 - 00000416 _____ C:\WINDOWS\Tasks\ViewPassword Update.job
2014-01-23 07:04 - 2014-01-23 07:04 - 00003056 _____ C:\WINDOWS\System32\Tasks\ViewPassword Update
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\SearchProtect
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\ViewPassword
2014-01-23 07:03 - 2014-01-23 07:03 - 00250224 _____ (Rapiddown) C:\Users\Rezer\Downloads\Microsoft Word.exe
2014-01-22 16:24 - 2014-01-27 12:54 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-22 16:24 - 2014-01-22 16:24 - 2315084775 _____ C:\WINDOWS\MEMORY.DMP
2014-01-22 16:24 - 2014-01-22 16:24 - 00279720 _____ C:\WINDOWS\Minidump\012214-21140-01.dmp.old
2014-01-20 00:14 - 2014-01-20 04:39 - 00000000 ____D C:\Users\Rezer\Desktop\Berichtsheft neu
2014-01-19 21:55 - 2014-01-19 21:55 - 00047564 _____ C:\Users\Rezer\Documents\ts3_clientui-win32-1382530211-2014-01-19 21_55_37.650061.dmp
2014-01-18 18:36 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Local\AthbtTrayPhone
2014-01-18 18:33 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\(78-F7-BE-C8-39-63)
2014-01-16 01:07 - 2014-01-16 01:07 - 00090814 _____ C:\Users\Rezer\Downloads\Extras.Txt
2014-01-16 01:06 - 2014-01-16 01:06 - 00142782 _____ C:\Users\Rezer\Downloads\OTL.Txt
2014-01-16 00:45 - 2014-01-16 00:45 - 00602112 _____ (OldTimer Tools) C:\Users\Rezer\Downloads\OTL.exe
2014-01-15 11:26 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 11:26 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 11:26 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 11:26 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 11:26 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 11:26 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 11:26 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 11:26 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 11:26 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 11:26 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 11:26 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 14:00 - 2014-01-14 14:31 - 00000737 _____ C:\Users\Rezer\Desktop\Einkaufs und Rezept liste.txt
2014-01-14 00:42 - 2014-01-14 21:07 - 00000000 ____D C:\Users\Rezer\AppData\Local\Sony Online Entertainment
2014-01-11 01:49 - 2014-01-11 01:51 - 00000000 ____D C:\Users\Rezer\Desktop\Ordner vom 11.01
2014-01-11 01:16 - 2014-01-11 01:16 - 00001108 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-11 00:07 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org
2014-01-11 00:06 - 2014-01-27 13:07 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2014-01-11 00:05 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Local\Deployment
2014-01-11 00:05 - 2014-01-11 00:05 - 00000000 ____D C:\ProgramData\WPM
2014-01-11 00:04 - 2014-01-27 12:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\systweak
2014-01-11 00:04 - 2014-01-11 00:02 - 02056176 _____ (VASoftOnline) C:\Users\Rezer\Downloads\VASoftOnlineMySpaceMP3DownloaderSetup.exe
2014-01-11 00:02 - 2014-01-11 00:02 - 00692768 _____ C:\Users\Rezer\Downloads\myspace-mp3-downloader_setup.exe
2014-01-10 23:59 - 2014-01-10 23:59 - 00000000 ____D C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1)
2014-01-10 23:58 - 2014-01-10 23:58 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1).zip
2014-01-10 23:56 - 2014-01-10 23:56 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00423981 _____ C:\Users\Rezer\Downloads\MyMusicDownloader.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Iggels
2014-01-10 23:52 - 2014-01-27 12:59 - 00001346 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2014-01-10 23:52 - 2014-01-27 12:59 - 00001298 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job
2014-01-10 23:52 - 2014-01-27 12:59 - 00001170 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
2014-01-10 23:52 - 2014-01-10 23:52 - 00004350 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-updater
2014-01-10 23:52 - 2014-01-10 23:52 - 00004302 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-codedownloader
2014-01-10 23:52 - 2014-01-10 23:52 - 00004174 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-enabler
2014-01-10 23:51 - 2014-01-27 12:59 - 00002144 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2014-01-10 23:51 - 2014-01-27 12:59 - 00002014 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2014-01-10 23:51 - 2014-01-10 23:52 - 00000000 ____D C:\Program Files (x86)\Plus-HD-4.9
2014-01-10 23:50 - 2014-01-10 23:50 - 00401776 _____ (Softonic ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_myspace-music-downloader.exe
2014-01-10 19:49 - 2014-01-11 01:51 - 00000000 ____D C:\Users\Rezer\Desktop\Bilder
2014-01-09 15:50 - 2014-01-09 15:50 - 00000000 ____D C:\Crash
2014-01-09 14:28 - 2014-01-09 14:28 - 00000000 ____D C:\Users\Rezer\AppData\Local\SCE
2014-01-09 14:28 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-09 14:27 - 2014-01-09 14:27 - 20095616 _____ C:\Users\Rezer\Downloads\PS2_PSG_setup.exe
2014-01-09 14:27 - 2014-01-09 14:27 - 00002575 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00002545 _____ C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2014-01-09 12:12 - 2014-01-09 12:12 - 00007607 _____ C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
2014-01-05 08:46 - 2014-01-27 12:51 - 00000000 ____D C:\Program Files (x86)\Berichtsheft Pro 3
2014-01-05 08:45 - 2014-01-05 08:46 - 13264251 _____ C:\Users\Rezer\Downloads\Berichtsheft-Pro_3.zip
2013-12-31 15:42 - 2013-12-31 15:42 - 00000834 _____ C:\Users\Gast\Desktop\Virtual DJ Pro.lnk
2013-12-31 15:42 - 2013-12-31 15:42 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
2013-12-31 15:41 - 2013-12-31 15:42 - 38445769 _____ (ChattChitto RG©) C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
2013-12-31 14:53 - 2014-01-24 11:16 - 00000000 ____D C:\Users\Rezer\Documents\VirtualDJ
2013-12-31 14:53 - 2013-12-31 15:42 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-12-31 14:53 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2013-12-31 14:52 - 2014-01-27 13:00 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\newnext.me
2013-12-31 14:52 - 2014-01-27 12:55 - 00016669 _____ C:\Users\Rezer\daemonprocess.txt
2013-12-31 14:52 - 2014-01-02 15:27 - 00000000 ____D C:\Users\Rezer\AppData\Local\Mobogenie
2013-12-31 14:52 - 2013-12-31 15:09 - 00000000 ____D C:\Users\Rezer\AppData\Local\cache
2013-12-31 14:52 - 2013-12-31 15:08 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\Documents\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\genienext
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\.android
2013-12-31 14:50 - 2013-12-31 14:50 - 00401784 _____ (Softonic ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_virtual-dj-free-home-edition.exe
==================== One Month Modified Files and Folders =======
2014-01-27 13:17 - 2014-01-27 13:16 - 00031452 _____ C:\Users\Rezer\Downloads\FRST.txt
2014-01-27 13:16 - 2014-01-27 13:16 - 00000000 ____D C:\FRST
2014-01-27 13:15 - 2014-01-27 13:15 - 02078208 _____ (Farbar) C:\Users\Rezer\Downloads\FRST64.exe
2014-01-27 13:15 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\Lollipop
2014-01-27 13:15 - 2013-07-17 17:24 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-27 13:15 - 2013-01-29 04:49 - 00000000 ____D C:\ProgramData\MOCP
2014-01-27 13:13 - 2014-01-26 15:02 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 13:11 - 2013-07-03 18:58 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3742882051-674819057-3509049254-1001
2014-01-27 13:07 - 2014-01-11 00:06 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2014-01-27 13:07 - 2013-12-09 23:19 - 00003930 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BBAC1DD8-4656-4C81-8F19-C1FCD5DCDC76}
2014-01-27 13:07 - 2013-12-02 05:58 - 01805889 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-27 13:06 - 2014-01-27 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\SearchProtect
2014-01-27 13:06 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2014-01-27 13:06 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-27 13:06 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-27 13:06 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-27 13:05 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\Wajam
2014-01-27 13:03 - 2014-01-26 15:03 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-27 13:02 - 2014-01-27 13:02 - 00003370 _____ C:\WINDOWS\System32\Tasks\BackgroundContainer Startup Task
2014-01-27 13:02 - 2014-01-26 15:02 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-27 13:02 - 2014-01-23 07:04 - 00000416 _____ C:\WINDOWS\Tasks\ViewPassword Update.job
2014-01-27 13:02 - 2013-12-04 23:18 - 00000000 ____D C:\Users\Rezer\AppData\Local\Overwolf
2014-01-27 13:02 - 2013-12-02 06:24 - 00000000 __RDO C:\Users\Rezer\SkyDrive
2014-01-27 13:02 - 2013-08-29 22:21 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Tepfel
2014-01-27 13:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-27 13:00 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\newnext.me
2014-01-27 12:59 - 2014-01-10 23:52 - 00001346 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2014-01-27 12:59 - 2014-01-10 23:52 - 00001298 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job
2014-01-27 12:59 - 2014-01-10 23:52 - 00001170 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
2014-01-27 12:59 - 2014-01-10 23:51 - 00002144 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2014-01-27 12:59 - 2014-01-10 23:51 - 00002014 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2014-01-27 12:58 - 2013-09-29 20:04 - 00007592 _____ C:\WINDOWS\PFRO.log
2014-01-27 12:58 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-27 12:57 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-27 12:55 - 2013-12-31 14:52 - 00016669 _____ C:\Users\Rezer\daemonprocess.txt
2014-01-27 12:55 - 2013-07-03 18:50 - 00000000 ___RD C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-27 12:54 - 2014-01-22 16:24 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-27 12:54 - 2014-01-11 00:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\systweak
2014-01-27 12:51 - 2014-01-05 08:46 - 00000000 ____D C:\Program Files (x86)\Berichtsheft Pro 3
2014-01-27 12:38 - 2013-12-04 23:18 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\TS3Client
2014-01-27 02:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-26 23:52 - 2014-01-23 07:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-26 23:50 - 2014-01-23 07:09 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-26 22:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-26 22:31 - 2013-08-22 15:44 - 00499792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-26 15:15 - 2014-01-25 20:35 - 00000259 _____ C:\Users\Rezer\Desktop\Neues Textdokument.txt
2014-01-26 15:08 - 2014-01-26 15:02 - 00004098 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-26 15:08 - 2014-01-26 15:02 - 00003862 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-26 15:02 - 2014-01-26 15:02 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-26 15:02 - 2013-12-25 09:47 - 00000000 ____D C:\Users\Rezer\AppData\Local\Google
2014-01-26 15:01 - 2014-01-26 15:01 - 00819192 _____ (Google Inc.) C:\Users\Rezer\Downloads\ChromeSetup.exe
2014-01-24 11:16 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\Documents\VirtualDJ
2014-01-23 07:27 - 2014-01-23 07:27 - 00000000 ____D C:\WINDOWS\PCHEALTH
2014-01-23 07:27 - 2013-09-30 04:59 - 00000000 ____D C:\WINDOWS\ShellNew
2014-01-23 07:27 - 2013-01-29 04:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-23 07:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 __RHD C:\MSOCache
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Users\Rezer\AppData\Local\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-23 07:24 - 2012-07-26 06:26 - 00000199 _____ C:\WINDOWS\win.ini
2014-01-23 07:20 - 2014-01-23 07:18 - 704809728 _____ (Microsoft Corporation) C:\Users\Rezer\Desktop\X17-22376.exe
2014-01-23 07:15 - 2014-01-23 07:15 - 00002226 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 07:09 - 2013-07-03 18:48 - 00000000 ____D C:\Users\Rezer\AppData\Local\VirtualStore
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Supporter
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-23 07:04 - 2014-01-23 07:04 - 00003056 _____ C:\WINDOWS\System32\Tasks\ViewPassword Update
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\SearchProtect
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\ViewPassword
2014-01-23 07:03 - 2014-01-23 07:03 - 00250224 _____ (Rapiddown) C:\Users\Rezer\Downloads\Microsoft Word.exe
2014-01-22 21:50 - 2013-12-02 05:44 - 00000000 ____D C:\Users\Rezer
2014-01-22 16:24 - 2014-01-22 16:24 - 2315084775 _____ C:\WINDOWS\MEMORY.DMP
2014-01-22 16:24 - 2014-01-22 16:24 - 00279720 _____ C:\WINDOWS\Minidump\012214-21140-01.dmp.old
2014-01-21 17:02 - 2013-07-03 18:57 - 00000000 ____D C:\Users\Rezer\AppData\Local\Akamai
2014-01-20 09:46 - 2013-08-22 15:46 - 00328672 _____ C:\WINDOWS\setupact.log
2014-01-20 04:39 - 2014-01-20 00:14 - 00000000 ____D C:\Users\Rezer\Desktop\Berichtsheft neu
2014-01-19 21:55 - 2014-01-19 21:55 - 00047564 _____ C:\Users\Rezer\Documents\ts3_clientui-win32-1382530211-2014-01-19 21_55_37.650061.dmp
2014-01-18 18:36 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Local\AthbtTrayPhone
2014-01-18 18:36 - 2014-01-18 18:33 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\(78-F7-BE-C8-39-63)
2014-01-16 02:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-16 01:07 - 2014-01-16 01:07 - 00090814 _____ C:\Users\Rezer\Downloads\Extras.Txt
2014-01-16 01:06 - 2014-01-16 01:06 - 00142782 _____ C:\Users\Rezer\Downloads\OTL.Txt
2014-01-16 00:45 - 2014-01-16 00:45 - 00602112 _____ (OldTimer Tools) C:\Users\Rezer\Downloads\OTL.exe
2014-01-15 21:29 - 2013-08-14 21:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 21:28 - 2013-12-02 05:44 - 00000000 ____D C:\Users\Gast
2014-01-15 21:26 - 2013-07-04 10:57 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 15:06 - 2013-07-03 18:47 - 00000000 ____D C:\Users\Rezer\AppData\Local\Packages
2014-01-14 21:07 - 2014-01-14 00:42 - 00000000 ____D C:\Users\Rezer\AppData\Local\Sony Online Entertainment
2014-01-14 14:31 - 2014-01-14 14:00 - 00000737 _____ C:\Users\Rezer\Desktop\Einkaufs und Rezept liste.txt
2014-01-11 01:51 - 2014-01-11 01:49 - 00000000 ____D C:\Users\Rezer\Desktop\Ordner vom 11.01
2014-01-11 01:51 - 2014-01-10 19:49 - 00000000 ____D C:\Users\Rezer\Desktop\Bilder
2014-01-11 01:16 - 2014-01-11 01:16 - 00001108 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-11 01:16 - 2013-07-03 18:50 - 00000908 _____ C:\Users\Rezer\Downloads\Downloads.lnk
2014-01-11 00:07 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org
2014-01-11 00:07 - 2014-01-11 00:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Deployment
2014-01-11 00:06 - 2013-09-11 20:02 - 00000000 ____D C:\Users\Rezer\AppData\Local\Apps\2.0
2014-01-11 00:05 - 2014-01-11 00:05 - 00000000 ____D C:\ProgramData\WPM
2014-01-11 00:02 - 2014-01-11 00:04 - 02056176 _____ (VASoftOnline) C:\Users\Rezer\Downloads\VASoftOnlineMySpaceMP3DownloaderSetup.exe
2014-01-11 00:02 - 2014-01-11 00:02 - 00692768 _____ C:\Users\Rezer\Downloads\myspace-mp3-downloader_setup.exe
2014-01-10 23:59 - 2014-01-10 23:59 - 00000000 ____D C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1)
2014-01-10 23:58 - 2014-01-10 23:58 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1).zip
2014-01-10 23:56 - 2014-01-10 23:56 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00423981 _____ C:\Users\Rezer\Downloads\MyMusicDownloader.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Iggels
2014-01-10 23:52 - 2014-01-10 23:52 - 00004350 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-updater
2014-01-10 23:52 - 2014-01-10 23:52 - 00004302 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-codedownloader
2014-01-10 23:52 - 2014-01-10 23:52 - 00004174 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-enabler
2014-01-10 23:52 - 2014-01-10 23:51 - 00000000 ____D C:\Program Files (x86)\Plus-HD-4.9
2014-01-10 23:50 - 2014-01-10 23:50 - 00401776 _____ (Softonic ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_myspace-music-downloader.exe
2014-01-09 15:50 - 2014-01-09 15:50 - 00000000 ____D C:\Crash
2014-01-09 14:28 - 2014-01-09 14:28 - 00000000 ____D C:\Users\Rezer\AppData\Local\SCE
2014-01-09 14:27 - 2014-01-09 14:27 - 20095616 _____ C:\Users\Rezer\Downloads\PS2_PSG_setup.exe
2014-01-09 14:27 - 2014-01-09 14:27 - 00002575 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00002545 _____ C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2014-01-09 12:12 - 2014-01-09 12:12 - 00007607 _____ C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
2014-01-08 12:36 - 2013-08-29 22:21 - 00000000 ____D C:\Program Files (x86)\Tepfel
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-05 08:46 - 2014-01-05 08:45 - 13264251 _____ C:\Users\Rezer\Downloads\Berichtsheft-Pro_3.zip
2014-01-02 15:27 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\Mobogenie
2013-12-31 15:42 - 2013-12-31 15:42 - 00000834 _____ C:\Users\Gast\Desktop\Virtual DJ Pro.lnk
2013-12-31 15:42 - 2013-12-31 15:42 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
2013-12-31 15:42 - 2013-12-31 15:41 - 38445769 _____ (ChattChitto RG©) C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
2013-12-31 15:42 - 2013-12-31 14:53 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-12-31 15:09 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\cache
2013-12-31 15:08 - 2013-12-31 14:52 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-31 14:53 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\Documents\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\genienext
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\.android
2013-12-31 14:50 - 2013-12-31 14:50 - 00401784 _____ (Softonic ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_virtual-dj-free-home-edition.exe
Files to move or delete:
====================
C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll
Some content of TEMP:
====================
C:\Users\Rezer\AppData\Local\Temp\1cbf5764_.exe
C:\Users\Rezer\AppData\Local\Temp\3fdf4ece_.exe
C:\Users\Rezer\AppData\Local\Temp\4a1b6d54_.exe
C:\Users\Rezer\AppData\Local\Temp\avgnt.exe
C:\Users\Rezer\AppData\Local\Temp\BackupSetup.exe
C:\Users\Rezer\AppData\Local\Temp\install_helper.exe
C:\Users\Rezer\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Rezer\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Rezer\AppData\Local\Temp\nse6F7A.exe
C:\Users\Rezer\AppData\Local\Temp\nsl99F6.exe
C:\Users\Rezer\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Rezer\AppData\Local\Temp\plus-hd.exe
C:\Users\Rezer\AppData\Local\Temp\SpeedAnalysisSetup.exe
C:\Users\Rezer\AppData\Local\Temp\SPSetup.exe
C:\Users\Rezer\AppData\Local\Temp\vcredist_x64.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-27 06:58
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2014
Ran by Rezer at 2014-01-27 13:17:50
Running from C:\Users\Rezer\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Enabled - Out of date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Out of date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
ACID Music Studio 9.0 (x32 Version: 9.0.35 - Sony)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI MUI (x32 Version: 11.0.00 - Adobe Systems Incorporated)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AMD Accelerated Video Transcoding (Version: 12.5.100.21010 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
appbarioDE Toolbar for IE (x32 Version: 6.16.2.2 - appbarioDE)
Ask Toolbar (x32 Version: 12.10.0.18 - APN, LLC) <==== ATTENTION
Avira Free Antivirus (x32 Version: 14.0.1.749 - Avira)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bing Bar (x32 Version: 7.3.124.0 - Microsoft Corporation)
BitRaider Web Client (x32 Version: 1.1.9.4 - BitRaider, LLC)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.1010.1519.25530 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.) Hidden
CyberLink PowerDVD (x32 Version: 9.0.5728.52 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 9.0.5728.52 - CyberLink Corp.) Hidden
Definition update for Microsoft Office 2010 (KB982726) (x32 Version: - Microsoft)
Delta Chrome Toolbar (x32 Version: - Visual Tools) <==== ATTENTION
Delta toolbar (x32 Version: 1.8.24.5 - Delta) <==== ATTENTION
DVD Architect Studio 5.0 (x32 Version: 5.0.161 - Sony)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FilesFrog Update Checker (x32 Version: - ) <==== ATTENTION
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GrandFantasia-DE (x32 Version: - )
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
HP Deskjet 3520 series - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (x32 Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (x32 Version: 27.0.0 - Hewlett Packard)
HP Photo Creations (x32 Version: 1.0.0.7702 - HP)
HP Update (x32 Version: 5.003.003.001 - Hewlett-Packard)
Iminent (x32 Version: 6.32.41.0 - Iminent) <==== ATTENTION
Iminent (x32 Version: 6.32.41.0 - Iminent) Hidden <==== ATTENTION
Intel AppUp(R) center (x32 Version: 3.8.0.41505.25 - Intel)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.6.0.1030 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java 7 Update 9 (64-bit) (Version: 7.0.90 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Lollipop (HKCU Version: - Lollipop Network, S.L.) <==== ATTENTION
Loong - Dragonblood (x32 Version: 2.04.0 - gamigo AG)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
McAfee Parental Controls (x32 Version: 2.2.122.12 - McAfee, Inc.)
Microsoft Office 365 Home Premium - de-de (Version: 15.0.4551.1512 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Outlook Social Connector (KB2289116) ªº§ó·s (x32 Version: - Microsoft)
Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_x86 (x32 Version: 1.0.0 - Microsoft)
Mobogenie (x32 Version: - Mobogenie.com) <==== ATTENTION
Movie Studio Platinum 12.0 (64-bit) (Version: 12.0.530 - Sony)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MySpace MP3 Downloader (HKCU Version: 2.1.0.1 - VASoftOnline.org)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Opera Stable 18.0.1284.68 (x32 Version: 18.0.1284.68 - Opera Software ASA)
Overwolf (x32 Version: 0.47.284 - Overwolf)
PlanetSide 2 (HKCU Version: 1.0.3.183 - Sony Online Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (x32 Version: 6.3.02.07270 - Sony Corporation)
Plus-HD-4.9 (x32 Version: 1.33.153.1 - Plus HD) <==== ATTENTION
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.214 - Qualcomm Atheros Communications)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.1.8400.28121 - Realtek Semiconductor Corp.)
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Search Protect (x32 Version: 2.9.60.20 - Conduit) <==== ATTENTION
SeeSimilar02 (x32 Version: 1.0.0.2 - SeeSimilar.com)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Snap.Do (x32 Version: 10.242.1.13231 - ReSoft Ltd.) <==== ATTENTION
Snap.Do Engine (HKCU Version: 10.242.1.13231 - ReSoft Ltd.) <==== ATTENTION
Sound Forge Audio Studio 10.0 (x32 Version: 10.0.178 - Sony)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Star Wars The Old Republic (x32 Version: 7.0.0.22 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
Studie zur Verbesserung von HP Deskjet 3520 series Produkten (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Supporter 1.80 (x32 Version: - ShoppingChip) <==== ATTENTION
Synaptics Pointing Device Driver (Version: 16.2.16.2 - Synaptics Incorporated)
TeamSpeak 3 Client (x32 Version: 3.0.13 - TeamSpeak Systems GmbH)
Update for Microsoft Office 2010 (KB2202188) (x32 Version: - Microsoft)
Update for Microsoft Office 2010 (KB2413186) (x32 Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2433299) (x32 Version: - Microsoft)
Update for Microsoft Outlook Social Connector (KB2289116) (x32 Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Xperia Link (x32 Version: 1.1.0.11020 - Sony Corporation)
VAIO Care (Version: 8.1.0.10120 - Sony Corporation)
VAIO Control Center (x32 Version: 6.1.0.10300 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 1.3.0.09290 - Sony Corporation) Hidden
VAIO Gate (x32 Version: 3.0.0.08140 - Sony Corporation)
VAIO Gate Default (x32 Version: 3.1.0.10240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.1.0.10220 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.1.0.10220 - Sony Corporation) Hidden
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (x32 Version: 2.1.0.10220 - Sony Corporation)
VAIO Media Server Settings (Version: 1.0.1.10170 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation) Hidden
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Update (x32 Version: 6.3.0.08010 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (x32 Version: 1.1.0.09200 - Sony Corporation)
VAIO-Handbuch (x32 Version: 3.0.0.08100 - Sony Corporation)
VAIO-Hardwarediagnose-Plugin für VAIO Care (x32 Version: 4.7.0.11070 - Sony Corporation)
VAIO-Support für Übertragungen (x32 Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Video Downloader version 2.0 (x32 Version: 2.0 - )
ViewPassword (x32 Version: - ViewPassword Software)
Virtual DJ Pro Full - Atomix Productions (x32 Version: - )
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VirtualDJ Home FREE (x32 Version: 7.4 - Atomix Productions)
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Web Layers 3.0.0 (Version: 3.0.0 - Web Layers)
Web-Cake 3.00 (Version: 3.00 - Web Cake LLC) <==== ATTENTION
WildTangent Games App (x32 Version: 4.0.9.7 - WildTangent) Hidden
WildTangent-Spiele (x32 Version: 1.0.4.0 - WildTangent)
WPM17.8.0.3297 (x32 Version: 17.8.0.3297 - Cherished Technololgy LIMITED) <==== ATTENTION
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
YouTube Song Downloader (x32 Version: 8.2 - Abelssoft)
==================== Restore Points =========================
10-01-2014 23:09:55 RegClean Pro Sa, Jan 11, 14 00:09
14-01-2014 05:17:16 Windows Update
17-01-2014 12:18:51 Windows Update
21-01-2014 04:40:12 Windows Update
23-01-2014 06:23:39 Installed Microsoft Office Professional 2010 Trial
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0A45FB58-DD7F-4340-A48C-3C102F716435} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0DDC8144-DFFF-485A-AC74-B99A3D3B0440} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {0F67A2BD-F75D-4384-A7D4-CE524A8F7390} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2012-11-01] (Sony Corporation)
Task: {1A13DA72-4CEF-4EAE-9194-E578B72356A8} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {1F5A5A70-8B89-4539-B0E9-2949E4CD3BF8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {1FD2F3D1-FDD2-4216-8711-045216935BB9} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-10-23] (Sony Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2A5F5D01-5B26-4EDD-BD85-14044E0C8BF1} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {2BB7FD6D-95C1-41F5-86A9-E23AC36DCA4D} - System32\Tasks\Plus-HD-4.9-updater => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-updater.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E17F9EC-5AFD-4EDD-8BE4-78E033FEAB16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {2FFFEA1B-047D-4789-9598-628C37C324A9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-01-26] (Microsoft Corporation)
Task: {30B0046B-EB87-4BE6-BA14-D0D07D1938AE} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {310A727A-3DD3-424E-920A-65625F894065} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {312A6156-8021-4E94-941E-57130B92315A} - System32\Tasks\Plus-HD-4.9-firefoxinstaller => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3651D4F2-4357-4A11-A823-9B4809F3596B} - System32\Tasks\ViewPassword Update => C:\Program Files (x86)\ViewPassword\ViewPassword.exe [2014-01-23] ()
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4D9ABAA8-5F8A-44DB-98CD-FEAAAF159E36} - System32\Tasks\Sony Corporation\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-11-08] (Sony Corporation)
Task: {52CBE68F-8072-4D8C-9D1F-6325843275D3} - System32\Tasks\Plus-HD-4.9-chromeinstaller => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {5A416DD2-8CE0-4D79-83AB-0724560FC542} - System32\Tasks\Plus-HD-4.9-codedownloader => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6F26E9BB-6DAC-4C76-B661-EEE536F4E4FE} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {70762985-E9E4-45B8-9B9A-B1322B025D27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {87DCB9FD-BB2D-44D5-9AC0-E21CA47DB3F7} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-10-31] (Microsoft Corporation)
Task: {89C6851E-036C-4AC5-AC61-80B00E3D82C2} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {8B83898D-9C05-4A35-9217-38A3E136DA64} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-10-22] (Sony Corporation)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8DA5E0C0-882B-4094-99DD-015BD7E268F3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {90124D33-9EAD-41FA-9082-470AE32614AF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0EB04D0-110F-4653-878C-BF4BD9888437} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {B2866DD3-BD5F-41AB-81C6-D23277F94ACA} - System32\Tasks\Plus-HD-4.9-enabler => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-enabler.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {BDB267FA-F947-4A8B-88D7-ADB31321B680} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {C05EC041-B69C-471D-9EDB-B578609AA7A7} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {CA3DDF28-BED2-41FF-A4B8-EF5FC2930BBD} - System32\Tasks\EPUpdater => C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D00F299B-9701-417C-82DD-138DCB386F59} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DF3B7825-A320-4685-8BB1-53F55571B747} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EDB32402-89F8-4A61-AD14-5F33A359F541} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION
Task: {F97D79E3-57D9-42AF-98D3-970DAE057DB6} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: {FDFCF419-9332-4CDC-A398-6717A371D9BC} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\ViewPassword Update.job => C:\Program Files (x86)\ViewPassword\ViewPassword.exe
==================== Loaded Modules (whitelisted) =============
2013-12-09 12:08 - 2013-12-09 12:08 - 00045608 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorer-20125.dll
2012-11-05 19:28 - 2012-11-05 19:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-11-05 19:23 - 2012-11-05 19:23 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-11-05 19:26 - 2012-11-05 19:26 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00039464 _____ () C:\Program Files (x86)\Overwolf\x64\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00721960 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorerLauncher.dll
2013-08-09 21:44 - 2013-07-18 07:02 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-23 07:05 - 2014-01-23 07:05 - 00183632 _____ () C:\Program Files (x86)\Supporter\SupporterSvc.dll
2014-01-23 07:05 - 2014-01-23 07:05 - 04105216 _____ () C:\Program Files (x86)\Supporter\Supporter.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00079400 _____ () C:\Program Files (x86)\Overwolf\OWExplorer-20125.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00034848 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00056864 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srau.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00150560 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00112672 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 01981472 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00055840 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\spbl.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00013344 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\siem.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00049184 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sppsm.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00728096 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00082464 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014368 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00017440 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00031264 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srut.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00020512 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srsbs.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014368 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sgml.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00053280 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014880 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srpdm.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00048160 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00026144 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00025632 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2013-10-31 15:17 - 2013-10-31 15:17 - 00193056 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sgmu.dll
2013-10-31 15:16 - 2013-10-31 15:16 - 00068640 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00248864 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srns.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00015288 _____ () C:\Program Files (x86)\Overwolf\ODK.AddIns.V2.HostView.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00134696 _____ () C:\Program Files (x86)\Overwolf\OWService.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00970792 _____ () C:\Program Files (x86)\Overwolf\OWServer.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00038440 _____ () C:\Program Files (x86)\Overwolf\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00839720 _____ () C:\Program Files (x86)\Overwolf\OWAgent.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00025600 _____ () C:\Program Files (x86)\Overwolf\CoreAudioApi.dll
2013-01-29 04:49 - 2013-09-10 13:38 - 00277416 _____ () C:\Program Files\McAfeeEx\MOCP\core\OCP_LD.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00016896 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00020480 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00446976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00064512 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2013-11-20 09:06 - 2013-07-08 06:21 - 00061440 _____ () C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\zlib1.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00029224 _____ () C:\Program Files (x86)\Overwolf\OWExplorerLauncher.dll
2013-01-29 04:05 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-08-20 01:41 - 2013-08-22 11:02 - 00187888 _____ () C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00886624 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libglesv2.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00108896 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libegl.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00879968 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Rezer\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 52%
Total physical RAM: 4043.27 MB
Available physical RAM: 1909.88 MB
Total Pagefile: 16331.27 MB
Available Pagefile: 13301.61 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:428.71 GB) (Free:315.52 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 20B45D39)
Partition: GPT Partition Type
==================== End Of Log ============================
|
|
29.01.2014, 09:53
| #6 |
| /// the machine /// TB-Ausbilder | CPU Andauernt auf 100%! Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> CPU Andauernt auf 100%! |
|
| Themen zu CPU Andauernt auf 100%! |
| 100%, 100% cpu-auslastung, akamai, antivir, avira, bho, bingbar, desktop, downloader, flash player, format, home, logfile, mobogenie, mobogenie entfernen, nextlive, programm, realtek, scan, security, smartbar, sweet-page, sweet-page entfernen, taskmanager, wildtangent games, windows, youtube downloader |
Linear-Darstellung
