Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: National Zoom entfernt jetzt aber Fehlermeldung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 20.01.2014, 12:06   #1
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hallo,

ich hatte leider den Virus national zoom . Mein Norton 360 hat leider nicht darauf reagiert und auch beim Vollständigen scan ist er darüber gelaufen. Habe ihn aber mit ADWcleaner entfernen können.

Mein Problem liegt jetzt darin, dass unter den einzelnen Benutzern beim Anmelden unter RunDLL die Fehlermeldung erscheint....C.\users\Admin\AppData\Roaming\newnext.me\nengine.dll Modul nicht gefunden.

Wie kann ich die RunDLL bereinigen...bzw. muß ich noch etwas außer ADWCleaner darüber laufen lassen?

Gruß

wolfgos

Alt 20.01.2014, 12:41   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!




Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 20.01.2014, 13:09   #3
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hier die txt Dateien

Code:
ATTFilter
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Expert System S.p.A.) C:\Program Files (x86)\Duden\Duden Korrektor\DKTray.exe
(Tobit.Software) D:\Tobit Radio.fx\Client\rfx-tray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(1&1 Internet AG) C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe
(Samsung) D:\Program Files (x86)\Samsung\Kies\Kies.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
() C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
(Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Bibliographisches Institut GmbH) C:\Program Files (x86)\Duden\Duden-Bibliothek\dudenbib.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [128352 2007-11-19] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2009-12-17] (Corel)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe [492096 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Steganos HotKeys] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe [100864 2013-12-18] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS14 File Redirection Starter] - C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe [17920 2013-12-18] (Steganos Software GmbH)
HKLM\...\Winlogon: [Shell]  [0 ] () <=== ATTENTION
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [Duden Korrektor SysTray] - C:\Program Files (x86)\Duden\Duden Korrektor\DKtray.exe [336560 2010-10-04] (Expert System S.p.A.)
HKCU\...\Run: [rfxsrvtray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [SSS14_Agent] - C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe [2706264 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKCU\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-07-02] (TomTom)
HKCU\...\Run: [Amazon Cloud Player] - C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3139072 2013-11-24] ()
HKCU\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKCU\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKCU\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
MountPoints2: {f6af8339-d7da-11e2-bb6e-c89cdc2c18e7} - G:\Setup.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appid=635a979d-10ea-4385-9c22-0009bda67619
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=111304&babsrc=SP_ss&mntrId=56b79f85000000000000c89cdc2c18e7
SearchScopes: HKCU - {2ACA333F-88CF-40D4-9DBA-0482CD52664D} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=827316&p={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}
SearchScopes: HKCU - {7564E093-727A-4B3C-A1CD-FE1A1D80051E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=FV&apn_dtid=YYYYYYYYDE&apn_uid=8a28530c-9ebb-4290-b68b-8b1ce3084120&apn_sauid=6F4C47F0-B1C9-4398-9EA2-B6735F2D8E01
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=635A979D-10EA-4385-9C22-0009BDA67619&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - {C3DFDCD0-D56D-456F-8C40-427E410224FF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=OSDSRC
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar64.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: HKLM-x32 {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} hxxp://www.heco-calc.com/HecoDMFrame.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default
FF DefaultSearchEngine: StartWeb
FF SelectedSearchEngine: StartWeb
FF Homepage: www.google.de
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FoxyProxy Standard - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\foxyproxy@eric.h.jung [2013-10-27]
FF Extension: Garmin Communicator - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-11-23]
FF Extension: FoxLingo - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2012-11-11]
FF Extension: Add-on Compatibility Reporter - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\compatibility@addons.mozilla.org.xpi [2011-10-12]
FF Extension: Ciuvo - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\extension@ciuvo.com.xpi [2011-10-12]
FF Extension: Personas Plus - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\personas@christopher.beard.xpi [2011-10-12]
FF Extension: PhotoME Erweiterung - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{01c29d60-f7f0-416c-844a-ec8b2e1841d0}.xpi [2011-11-02]
FF Extension: Adblock Plus - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-10-12]
FF Extension: BetterPrivacy - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2011-11-02]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-16]
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 11\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 [2012-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF [2013-10-10]
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.9.5.9\coFFFw\

==================== Services (Whitelisted) =================

R2 HecoUpdateSvc; C:\Program Files (x86)\HECO\HecoUpdateService.exe [5792232 2012-10-15] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
R2 Steganos Volatile Disk; C:\Windows\SysWOW64\STGRAMDiskHandler64.exe [450560 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-26] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-22] (Symantec Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [521944 2013-12-14] (Symantec Corporation)
S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\ENG64.SYS [126040 2013-11-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\EX64.SYS [2099288 2013-11-13] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [109144 2013-11-18] (Softwareentwicklung Remus - ArchiCrypt - )
R0 SMR410; C:\Windows\System32\drivers\SMR410.SYS [96856 2014-01-20] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt.com)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S2 mdmxsdk; system32\DRIVERS\ACFSDK64.sys [x]
S2 XAudio; system32\DRIVERS\ACFXAU64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 10:08 - 2014-01-20 10:11 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 07:23 - 2014-01-20 07:23 - 00096856 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR410.SYS
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 10:55 - 2014-01-19 10:55 - 00004054 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-20 07:44 - 00002072 _____ C:\Windows\setupact.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:24 - 2014-01-20 08:53 - 00063969 _____ C:\Windows\WindowsUpdate.log
2014-01-18 14:19 - 2014-01-20 07:43 - 00000000 ____D C:\AdwCleaner
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:11 - 2014-01-18 11:14 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:57 - 2014-01-20 07:40 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:47 - 2014-01-16 12:48 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-15 18:21 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:21 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 18:21 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-10 15:29 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-10 15:29 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-10 15:29 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-10 15:29 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-10 15:29 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:24 - 2014-01-03 17:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:29 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 18:13 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:44 - 2014-01-16 13:03 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2013-12-18 10:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-02 13:44 - 2013-12-18 10:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-02 13:43 - 2014-01-02 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:42 - 2014-01-02 13:43 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:42 - 2014-01-02 13:42 - 00472080 _____ (Company) C:\Users\Admin\Downloads\setup.exe
2013-12-27 09:01 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 10:56 - 2014-01-18 14:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2013-12-26 10:53 - 2013-12-26 11:01 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 12:39 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-22 12:37 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-22 12:37 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk

==================== One Month Modified Files and Folders =======

2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 13:00 - 2012-12-09 14:04 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Skype
2014-01-20 12:27 - 2011-10-12 19:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 12:20 - 2012-03-30 19:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 11:57 - 2013-02-16 16:32 - 00000000 ____D C:\Users\Internet\AppData\Local\CrashDumps
2014-01-20 11:57 - 2011-10-12 19:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 10:11 - 2014-01-20 10:08 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 10:00 - 2012-05-05 16:48 - 00000000 ___RD C:\Users\Frank\Google Drive
2014-01-20 09:51 - 2011-10-23 17:25 - 00000000 ____D C:\Users\Internet\AppData\Roaming\TuneUp Software
2014-01-20 08:53 - 2014-01-18 14:24 - 00063969 _____ C:\Windows\WindowsUpdate.log
2014-01-20 07:53 - 2011-10-23 17:05 - 00000000 ____D C:\Users\Internet
2014-01-20 07:51 - 2011-03-11 10:20 - 00700486 _____ C:\Windows\system32\perfh007.dat
2014-01-20 07:51 - 2011-03-11 10:20 - 00150124 _____ C:\Windows\system32\perfc007.dat
2014-01-20 07:51 - 2009-07-14 06:13 - 01624178 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 07:51 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 07:51 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 07:44 - 2014-01-18 14:25 - 00002072 _____ C:\Windows\setupact.log
2014-01-20 07:44 - 2011-06-29 16:31 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 07:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 07:43 - 2014-01-18 14:19 - 00000000 ____D C:\AdwCleaner
2014-01-20 07:41 - 2011-10-12 18:18 - 00000000 ____D C:\Users\Frank
2014-01-20 07:40 - 2014-01-18 10:57 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-20 07:23 - 2014-01-20 07:23 - 00096856 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR410.SYS
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-20 07:13 - 2011-10-12 20:18 - 00000000 ____D C:\Users\Frank\AppData\Local\Windows Live
2014-01-19 13:01 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 11:08 - 2011-10-13 17:25 - 00000000 ____D C:\Program Files (x86)\CSI
2014-01-19 10:55 - 2014-01-19 10:55 - 00004054 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:23 - 2012-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2014-01-18 14:20 - 2013-12-26 10:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2014-01-18 14:20 - 2013-09-18 06:32 - 00001083 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-18 14:20 - 2011-11-07 21:01 - 00000999 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 14:20 - 2011-10-12 20:15 - 00001053 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:14 - 2014-01-18 11:11 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:58 - 2011-10-12 19:58 - 00000000 ____D C:\ProgramData\Norton
2014-01-17 16:26 - 2013-01-09 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:47 - 2011-10-12 20:45 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 13:03 - 2014-01-02 13:44 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 12:55 - 2012-03-22 11:08 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2014-01-16 12:55 - 2011-10-12 19:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 12:49 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2014-01-16 12:48 - 2014-01-16 12:47 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 12:20 - 2012-09-18 12:59 - 00000000 ____D C:\ProgramData\DriverGenius
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-16 09:47 - 2011-12-29 13:23 - 00000731 _____ C:\Users\Frank\Sti_Trace.log
2014-01-15 19:24 - 2013-08-03 15:48 - 00496160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 19:10 - 2013-08-07 13:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 19:10 - 2011-10-12 19:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:08 - 2011-03-14 15:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-12 18:35 - 2011-10-12 20:22 - 00000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2014-01-10 15:31 - 2011-06-29 16:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-05 13:22 - 2011-10-14 17:39 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:44 - 2011-06-29 16:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-05 12:36 - 2012-09-21 18:04 - 00000000 ____D C:\Program Files\Intel
2014-01-05 12:36 - 2011-06-29 16:31 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:28 - 2014-01-03 17:24 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-03 17:17 - 2011-11-04 15:56 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Apple Computer
2014-01-02 18:29 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:19 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:52 - 2011-10-14 17:39 - 00000000 ____D C:\Users\Frank\AppData\Roaming\TuneUp Software
2014-01-02 13:46 - 2014-01-02 13:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2011-12-12 18:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-01-02 13:43 - 2014-01-02 13:42 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:43 - 2012-09-18 06:21 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2014-01-02 13:42 - 2014-01-02 13:42 - 00472080 _____ (Company) C:\Users\Admin\Downloads\setup.exe
2014-01-02 13:16 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2014-01-02 13:14 - 2013-11-19 19:50 - 00000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 11:09 - 2012-08-05 17:23 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 11:09 - 2011-03-14 15:03 - 00000000 ____D C:\Windows\Panther
2013-12-26 11:07 - 2012-08-05 17:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-26 11:01 - 2013-12-26 10:53 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 11:00 - 2011-11-07 21:01 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 18:54 - 2012-02-12 17:15 - 00006144 _____ C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-22 12:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-22 11:32 - 2013-09-23 16:40 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-22 11:32 - 2011-10-12 18:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk
2013-12-21 12:28 - 2012-12-27 11:32 - 00000000 ____D C:\Program Files (x86)\Steganos Privacy Suite 14

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
         
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Frank at 2014-01-20 13:01:45
Running from D:\Ablage\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
1&1 Upload-Manager (x32 Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (Version: 4.4.1 - Adobe)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (x32 Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Amazon Cloud Player (HKCU Version: 2.1.0.381 - Amazon Services LLC)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Athentech Perfectly Clear (Version: 1.0.0.106 - Corel Corporation) Hidden
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Corel Corporation)
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Ihr Firmenname) Hidden
AudibleManager (x32 Version: 2001616126.48.56.11996530 - Audible, Inc.)
BenVista PhotoZoom Classic 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
BenVista PhotoZoom Pro 4.1.2 (HKCU Version: 4.1.2 - BenVista Ltd.)
Best Of Gehirnjogging (x32 Version: 1.0 - SBT)
Bewerbungsfoto-/Passbild-Generator v3.5c (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (x32 Version:  - )
Canon IJ Network Scan Utility (x32 Version:  - )
Canon IJ Network Tool (x32 Version:  - )
Canon MP Navigator EX 2.0 (x32 Version:  - )
Canon MP620 series MP Drivers (Version:  - )
Canon My Printer (x32 Version:  - )
CCleaner (Version: 4.09 - Piriform)
Cinergy T Stick Black V86.001.1028.2009 (x32 Version: 86.001.1028.2009 - )
ContentHD (x32 Version: 1.00.0002 - Corel Corporation) Hidden
Contents (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.686 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden
Corel KPT Collection (x32 Version: 1.0.0.103 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (x32 Version: 1.6.2.69 - Corel Corporation)
Corel VideoStudio Pro X3 Title Pack (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
CorelDRAW Graphics Suite X5 - BR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - DE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - ES (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM HSE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - NL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - RU (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.3 -  Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version:  - Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 (x32 Version: 15.1 - Corel Corporation) Hidden
CorelDRAW(R) Home & Student Suite X5 (x32 Version: 15.2.0.686 - Corel Corporation)
Creative Content (x32 Version: 1.0.0.103 - Corel Corporation) Hidden
Creative Content (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DeviceIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Duden Korrektor (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
Duden Korrektor Patch 022010 (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
DVD Shrink 3.2 deutsch (x32 Version:  - DVD Shrink)
DxO Optics Pro 5.3.5 (x32 Version: 5.3.5 - DXO Labs)
ElsterFormular-Upgrade (x32 Version: 15.0.13315 - Landesfinanzdirektion Thüringen)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EU Connector Selector (x32 Version: 1.0.0 - Simpson Strong-Tie)
FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion)
FaceFilter v3.02 Standard (x32 Version: 3.02.1506.1 - Reallusion Inc.)
FormatFactory 3.0.1 (x32 Version: 3.0.1 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google SketchUp 8 (x32 Version: 3.0.14358 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GraitecBIM (x32 Version: 1.0.0 - Microsoft)
GraitecBIM (x32 Version: 2.0.0 - GRAITEC GmbH)
HECO® -  HCS (x32 Version: 1.00.0000 - HECO)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (x32 Version: 1 - Microsoft Corporation)
ICA (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.9.0.1001 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Interaktiver Gitarren Workshop v1 (x32 Version:  - Emme)
IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_VS_Pro (x32 Version: 13.0 - Corel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 2 Runtime Environment Standard Edition v1.3.1 (x32 Version:  - )
Java 7 Update 40 (64-bit) (Version: 7.0.400 - Oracle)
Java 7 Update 7 (x32 Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (Version: 6.0.310 - Oracle)
Java(TM) 6 Update 31 (x32 Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LANGMaster.com: Berlitz Englisch (x32 Version:  - )
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Luminance HDR 2.3.0 (Version:  - Luminance HDR Dev Team)
maxdome - Online Videothek (Version: 1.0 - maxdome GmbH und Co. KG)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
MLE (x32 Version: 1.0.0.23 - Corel Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKCU Version:  - )
MyTube BigPack 5 (x32 Version: 5.0.12.1016 - S.A.D.)
Nik Color Efex Pro 3.0 (x32 Version: 1.0.0.53 - Corel Corporation)
Nik Color Efex Pro 3.0 (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PhotoME Beta-Release (x32 Version: 0.8ß2 - Jens Duttke)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
POIbase 1.051 (x32 Version:  - POIbase)
Pošta Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPro64 (Version: 16.1.0.48 - Corel Corporation) Hidden
PureHD (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Radio.fx (x32 Version:  - Tobit.Software)
Realtek Ethernet Controller Driver (x32 Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH)
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH) Hidden
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Setup (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden
Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden
Share (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Share64 (Version: 1.6.0.272 - Corel Corporation) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory) Hidden
Skype Click to Call (x32 Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.10 (x32 Version: 6.10.104 - Skype Technologies S.A.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Steganos Live Encryption Engine 17 (x32 Version: 17.4.1 - Steganos Software GmbH)
Steganos Privacy Suite 14 (x32 Version: 14.2.1 - Steganos Software GmbH)
Stellarium 0.12.3 (Version: 0.12.3 - Stellarium team)
TomTom HOME (x32 Version: 2.9.6 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Corel Corporation)
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Ihr Firmenname) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSClassic (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSPro (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (x32 Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinZip 15.0 (x32 Version: 15.0.9411 - WinZip Computing, S.L. )
WISO Mein Geld 2014 Professional (x32 Version: 16.0.1.0 - Buhl Data Service GmbH) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

==================== Loaded Modules (whitelisted) =============

2013-12-17 20:19 - 2013-12-17 20:19 - 00049152 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-01-11 12:08 - 2013-01-11 12:08 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Microsoft:63MTnYTFVKeIXoyb7Mgvq
AlternateDataStreams: C:\ProgramData\Microsoft:YPxzmJhbdox4y1D5B644vI
AlternateDataStreams: C:\ProgramData\Temp:A291950B
AlternateDataStreams: C:\Users\Frank\Cookies:rXzof55DOjZlJaDotP8MzEp

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: XAudio
Description: XAudio
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: XAudio
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 11:57:43 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Kies.exe, Version: 1.0.0.1521, Zeitstempel: 0x52a83550
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb1116
Ausnahmecode: 0xe0434352
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0xc24
Startzeit der fehlerhaften Anwendung: 0xKies.exe0
Pfad der fehlerhaften Anwendung: Kies.exe1
Pfad des fehlerhaften Moduls: Kies.exe2
Berichtskennung: Kies.exe3

Error: (01/20/2014 11:57:42 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: Kies.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.ProcessManager.OpenProcess(Int32, Int32, Boolean)
   bei System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
   bei System.Diagnostics.Process.OpenProcessHandle(Int32)
   bei System.Diagnostics.Process.get_Handle()
   bei Kies.App.CheckExistenceTrayAgent()
   bei Kies.App..ctor()
   bei Kies.App.Main()

Error: (01/20/2014 11:52:35 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.


Vorgang:
   Generatordaten werden gesammelt

Kontext:
   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
   Generatorname: System Writer
   Generatorinstanz-ID: {af118695-7bac-44a8-a3e4-32b156376f35}

Error: (01/20/2014 08:02:22 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.

Error: (01/20/2014 07:46:42 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 07:43:54 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 07:41:53 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 07:40:46 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 07:34:11 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 07:24:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/20/2014 10:17:40 AM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (01/20/2014 07:44:16 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (01/20/2014 07:41:09 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (01/20/2014 07:24:06 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (01/20/2014 07:11:25 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (01/19/2014 06:18:57 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (01/19/2014 05:48:55 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1

Error: (01/19/2014 04:08:45 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1

Error: (01/19/2014 02:08:56 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (01/19/2014 01:03:33 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2012-02-29 18:31:43.130
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.123
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.117
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.110
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.103
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.089
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.082
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.075
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.068
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 25%
Total physical RAM: 16360.17 MB
Available physical RAM: 12159.79 MB
Total Pagefile: 32718.52 MB
Available Pagefile: 28589.76 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:58.52 GB) (Free:6.19 GB) NTFS
Drive d: (Data) (Fixed) (Total:1357.25 GB) (Free:1106.1 GB) NTFS
Drive e: (Recover) (Fixed) (Total:40.01 GB) (Free:21.51 GB) NTFS
Drive h: (Zusatzfestplatte) (Fixed) (Total:1863.01 GB) (Free:618.2 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================
         
Hier von ADWCleaner

Vorgestern

AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.017 - Bericht erstellt am 18/01/2014 um 14:19:42
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Admin - DAHEIM
# Gestartet von : C:\Users\Admin\Downloads\adwcleaner_3.017.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gefunden : C:\END
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\nationzoom.xml
Datei Gefunden : C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\searchplugins\safesearch.xml
Datei Gefunden : C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\user.js
Datei Gefunden : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
Ordner Gefunden : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
Ordner Gefunden C:\Program Files (x86)\BabylonToolbar
Ordner Gefunden C:\Program Files (x86)\Desk 365
Ordner Gefunden C:\Program Files (x86)\driver-soft
Ordner Gefunden C:\Program Files (x86)\IminentToolbar
Ordner Gefunden C:\Program Files (x86)\Mobogenie
Ordner Gefunden C:\Program Files (x86)\myfree codec
Ordner Gefunden C:\Program Files (x86)\optimizer pro
Ordner Gefunden C:\Program Files (x86)\SimilarSites
Ordner Gefunden C:\ProgramData\Babylon
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Ordner Gefunden C:\ProgramData\Partner
Ordner Gefunden C:\ProgramData\WPM
Ordner Gefunden C:\Users\Admin\AppData\Local\Babylon
Ordner Gefunden C:\Users\Admin\AppData\Local\genienext
Ordner Gefunden C:\Users\Admin\AppData\Local\Mobogenie
Ordner Gefunden C:\Users\Admin\AppData\Local\TempDir
Ordner Gefunden C:\Users\Admin\AppData\Roaming\Babylon
Ordner Gefunden C:\Users\Admin\AppData\Roaming\Desk 365
Ordner Gefunden C:\Users\Admin\AppData\Roaming\newnext.me
Ordner Gefunden C:\Users\Admin\AppData\Roaming\OpenCandy
Ordner Gefunden C:\Users\Admin\AppData\Roaming\SimilarSites
Ordner Gefunden C:\Users\Admin\AppData\Roaming\Uniblue\SpeedUpMyPC
Ordner Gefunden C:\Users\Admin\Documents\Mobogenie
Ordner Gefunden C:\Users\Frank\AppData\Local\TempDir
Ordner Gefunden C:\Users\Frank\AppData\LocalLow\AVG Secure Search
Ordner Gefunden C:\Users\Frank\AppData\LocalLow\pdfforge
Ordner Gefunden C:\Users\Frank\AppData\LocalLow\Search Settings
Ordner Gefunden C:\Users\Frank\AppData\Roaming\Iminent
Ordner Gefunden C:\Users\Frank\AppData\Roaming\newnext.me
Ordner Gefunden C:\Users\Frank\AppData\Roaming\pdfforge
Ordner Gefunden C:\Users\Internet\AppData\LocalLow\Search Settings

***** [ Verknüpfungen ] *****

Verknüpfung Gefunden : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )
Verknüpfung Gefunden : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45 )

***** [ Registrierungsdatenbank ] *****

Daten Gefunden : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command [(Default)] - "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Daten Gefunden : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.nationzoom.com/?type=sc&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gefunden : HKCU\Software\BabylonToolbar
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Schlüssel Gefunden : HKCU\Software\Myfree Codec
Schlüssel Gefunden : HKCU\Software\powerpack
Schlüssel Gefunden : HKCU\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\BabylonToolbar
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Schlüssel Gefunden : [x64] HKCU\Software\Myfree Codec
Schlüssel Gefunden : [x64] HKCU\Software\powerpack
Schlüssel Gefunden : [x64] HKCU\Software\SmartBar
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\Software\BabylonToolbar
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\b
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{6FDBBC21-E399-4542-B4CE-86326E1F0727}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{7B878FD4-8F19-46DB-94B1-4CABFF80679C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{8BA495EF-6CD5-413A-8AEF-483631B98C4F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{8C71E394-2E6F-452A-AB7D-C17E78307083}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{BADB1512-759C-4792-A18A-DD6BDC4E1991}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E54FBC83-9028-45AC-A5B9-D5DA828E59C2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\driverscanner
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{633AA60B-C339-46C3-951F-047F9822C473}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9156C8F9-B397-4DEF-8AC5-5966221A134A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{A8E5842E-102B-4289-9D57-3B3F5B5E15D3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Schlüssel Gefunden : HKLM\Software\Desksvc
Schlüssel Gefunden : HKLM\Software\Driver-Soft
Schlüssel Gefunden : HKLM\Software\hdcode
Schlüssel Gefunden : HKLM\Software\Iminent
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\Software\Myfree Codec
Schlüssel Gefunden : HKLM\Software\nationzoomSoftware
Schlüssel Gefunden : HKLM\Software\supWPM
Schlüssel Gefunden : HKLM\Software\Uniblue
Schlüssel Gefunden : HKLM\Software\Uniblue\DriverScanner
Schlüssel Gefunden : HKLM\Software\Uniblue\SpeedUpMyPC
Schlüssel Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428

Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.nationzoom.com/?type=hp&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.nationzoom.com/?type=hp&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.nationzoom.com/?type=hp&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}

-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\prefs.js ]

Zeile gefunden : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\10.2.0.3");
Zeile gefunden : user_pref("browser.search.defaultengine", "Ask.com");
Zeile gefunden : user_pref("browser.search.order.1", "Ask.com");
Zeile gefunden : user_pref("extensions.foxlingo.addit.defaultAddons", "{ \"software\": {\"20\": {\"id\": \"20\",\"title\": \"Babylon\",\"type\": \"EXE\",\"url\": \"hxxps://www.addonfox.com/partners/rd/babylon/\",\"hom[...]
Zeile gefunden : user_pref("iminent.version", "7.51.3.1");
Zeile gefunden : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.51.3.1\",\"InstallEventCTime\":1388051956640}");
Zeile gefunden : user_pref("keyword.URL", "hxxp://nortonsafe.search.ask.com/web?o=APN10506&gct=kwd&qsrc=2869&l=dis&prt=360&chn=retail&geo=DE&ver=21&q=");

[ Datei : C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\ezk0b1kx.default\prefs.js ]

Zeile gefunden : user_pref("browser.search.defaultenginename", "Web Search");
Zeile gefunden : user_pref("browser.search.selectedEngine", "Web Search");
Zeile gefunden : user_pref("keyword.URL", "hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&installDate=17/09/2013&q=");

[ Datei : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707\prefs.js ]


*************************

AdwCleaner[R0].txt - [27449 octets] - [18/01/2014 14:19:42]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [27510 octets] ##########
         
--- --- ---


Heute
AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.017 - Bericht erstellt am 20/01/2014 um 07:42:40
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Admin - DAHEIM
# Gestartet von : C:\Users\Admin\Downloads\adwcleaner_3.017.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gefunden C:\Users\Admin\AppData\Local\TempDir

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\prefs.js ]


[ Datei : C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\ezk0b1kx.default\prefs.js ]


[ Datei : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707\prefs.js ]


*************************

AdwCleaner[R0].txt - [27899 octets] - [18/01/2014 14:19:42]
AdwCleaner[R1].txt - [1147 octets] - [18/01/2014 14:24:01]
AdwCleaner[R2].txt - [1061 octets] - [20/01/2014 07:42:40]
AdwCleaner[S0].txt - [24180 octets] - [18/01/2014 14:20:29]
AdwCleaner[S1].txt - [1209 octets] - [18/01/2014 14:24:43]

########## EOF - \AdwCleaner\AdwCleaner[R2].txt - [1242 octets] ##########
         
--- --- ---
__________________

Alt 20.01.2014, 13:11   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Dann bitte jetzt Combofix ausführen:

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 20.01.2014, 13:59   #5
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hat etwas länger gedauert....Norton...war schlecht auszuschalten...aber hier

Code:
ATTFilter
ComboFix 14-01-16.03 - Admin 20.01.2014  13:47:16.1.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.16360.13076 [GMT 1:00]
ausgeführt von:: d:\ablage\Downloads\ComboFix.exe
AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1&1
c:\programdata\1&1\1&1 Upload-Manager\ULMSettings.xml
c:\programdata\C21E3F0FEE.sys
c:\users\Admin\AppData\Roaming\1&1
c:\users\Frank\AppData\Roaming\1&1
c:\users\Frank\AppData\Roaming\1&1\1&1 Upload-Manager\ULMSettings.xml
c:\users\Internet\AppData\Roaming\1&1
D:\install.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-12-20 bis 2014-01-20  ))))))))))))))))))))))))))))))
.
.
2014-01-20 12:01 . 2014-01-20 12:01	--------	d-----w-	C:\FRST
2014-01-20 09:08 . 2014-01-20 09:11	--------	d-----w-	c:\users\Frank\AppData\Roaming\QuickScan
2014-01-20 06:23 . 2014-01-20 06:23	--------	d-----w-	c:\programdata\SMR410
2014-01-20 06:23 . 2014-01-20 06:23	96856	----a-w-	c:\windows\system32\drivers\SMR410.SYS
2014-01-18 13:19 . 2014-01-20 06:43	--------	d-----w-	C:\AdwCleaner
2014-01-18 09:57 . 2014-01-20 06:40	--------	d-----w-	c:\users\Admin\AppData\Local\NPE
2014-01-17 14:56 . 2014-01-17 14:56	--------	d-----w-	c:\users\Admin\AppData\Roaming\Duden
2014-01-16 10:30 . 2014-01-16 10:30	--------	d-----w-	c:\users\Frank\AppData\Local\PDF24
2014-01-15 17:21 . 2013-11-27 01:41	343040	----a-w-	c:\windows\system32\drivers\usbhub.sys
2014-01-15 17:21 . 2013-11-27 01:41	99840	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2014-01-15 17:21 . 2013-11-27 01:41	53248	----a-w-	c:\windows\system32\drivers\usbehci.sys
2014-01-15 17:21 . 2013-11-27 01:41	325120	----a-w-	c:\windows\system32\drivers\usbport.sys
2014-01-15 17:21 . 2013-11-27 01:41	25600	----a-w-	c:\windows\system32\drivers\usbohci.sys
2014-01-15 17:21 . 2013-11-27 01:41	30720	----a-w-	c:\windows\system32\drivers\usbuhci.sys
2014-01-15 17:21 . 2013-11-27 01:41	7808	----a-w-	c:\windows\system32\drivers\usbd.sys
2014-01-15 17:21 . 2013-11-26 11:40	376768	----a-w-	c:\windows\system32\drivers\netio.sys
2014-01-15 17:21 . 2013-11-26 10:32	3156480	----a-w-	c:\windows\system32\win32k.sys
2014-01-05 11:39 . 2006-02-07 14:45	757760	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2014-01-05 11:39 . 2006-02-07 14:44	65024	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2014-01-05 11:39 . 2006-02-07 14:40	204800	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2014-01-05 11:39 . 2006-02-07 14:40	69715	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2014-01-05 11:39 . 2006-02-07 14:40	274432	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2014-01-05 11:39 . 2005-11-13 22:19	5632	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-01-05 11:39 . 2014-01-05 11:39	331908	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2014-01-05 11:39 . 2014-01-05 11:39	200836	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2014-01-03 16:24 . 2014-01-03 16:28	--------	d-----w-	c:\users\Admin\AppData\Local\Audible
2014-01-02 17:13 . 2014-01-02 17:29	--------	d-----w-	c:\users\Frank\AppData\Local\Audible
2014-01-02 17:13 . 2014-01-02 17:13	255352	----a-w-	c:\windows\SysWow64\awrdscdc.ax
2014-01-02 17:13 . 2001-08-17 21:43	24576	------w-	c:\windows\SysWow64\msxml3a.dll
2014-01-02 17:13 . 2014-01-02 17:13	--------	d-----w-	c:\program files (x86)\Audible
2014-01-02 12:44 . 2013-12-18 09:01	43320	----a-w-	c:\windows\system32\uxtuneup.dll
2014-01-02 12:44 . 2013-12-18 09:01	36152	----a-w-	c:\windows\SysWow64\uxtuneup.dll
2014-01-02 12:44 . 2013-12-18 09:01	40760	----a-w-	c:\windows\system32\TURegOpt.exe
2014-01-02 12:44 . 2013-12-18 09:01	29496	----a-w-	c:\windows\system32\authuitu.dll
2014-01-02 12:44 . 2013-12-18 09:01	25400	----a-w-	c:\windows\SysWow64\authuitu.dll
2014-01-02 12:44 . 2014-01-16 12:03	--------	d-----w-	c:\program files (x86)\TuneUp Utilities 2014
2014-01-02 12:43 . 2014-01-02 12:46	--------	d-sh--w-	c:\programdata\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-27 08:01 . 2013-12-19 20:33	9700224	----a-w-	c:\windows\SysWow64\nvcuda.dll
2013-12-27 08:01 . 2013-12-19 20:33	9657464	----a-w-	c:\windows\SysWow64\nvopencl.dll
2013-12-27 08:01 . 2013-12-19 20:33	18222008	----a-w-	c:\windows\system32\nvd3dumx.dll
2013-12-26 09:56 . 2014-01-18 13:20	--------	d-----w-	c:\users\Admin\AppData\Roaming\Uniblue
2013-12-26 09:53 . 2013-12-26 09:53	--------	d-----w-	c:\users\Admin\.android
2013-12-26 09:53 . 2013-12-26 09:53	--------	d-----w-	c:\users\Admin\AppData\Local\cache
2013-12-22 11:39 . 2013-12-19 20:33	15877216	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2013-12-22 11:37 . 2013-12-05 08:42	39200	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2013-12-22 11:37 . 2013-12-05 08:42	32544	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-16 11:55 . 2012-03-30 18:33	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-16 11:55 . 2011-10-12 18:03	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-15 18:08 . 2011-03-14 14:08	86054176	----a-w-	c:\windows\system32\MRT.exe
2013-12-19 20:33 . 2013-09-18 10:06	2698272	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-12-19 20:33 . 2012-10-15 11:27	15230352	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-12-19 20:33 . 2012-09-20 18:09	1436528	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-12-19 20:33 . 2011-06-29 15:21	18310112	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-12-19 20:33 . 2011-06-29 15:21	3071656	----a-w-	c:\windows\system32\nvapi64.dll
2013-12-19 18:53 . 2011-06-29 15:22	6671648	----a-w-	c:\windows\system32\nvcpl.dll
2013-12-19 18:53 . 2011-06-29 15:22	3490080	----a-w-	c:\windows\system32\nvsvc64.dll
2013-12-19 18:53 . 2011-06-29 15:22	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2013-12-19 18:53 . 2011-06-29 15:22	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-12-19 18:53 . 2011-06-29 15:22	386336	----a-w-	c:\windows\system32\nvmctray.dll
2013-12-19 18:53 . 2011-06-29 15:22	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2013-12-19 11:20 . 2013-12-19 11:20	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-12-19 05:01 . 2012-09-20 18:10	3539040	----a-w-	c:\windows\system32\nvcoproc.bin
2013-12-14 14:37 . 2012-09-01 13:40	893552	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2013-12-14 14:37 . 2012-09-01 13:40	42168	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2013-12-10 02:13 . 2013-11-03 10:59	982232	----a-w-	c:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13 . 2013-11-03 10:59	1100248	----a-w-	c:\windows\system32\nvspcap64.dll
2013-12-05 08:42 . 2013-09-18 10:37	35104	----a-w-	c:\windows\system32\nvaudcap64v.dll
2013-11-26 11:54 . 2013-12-11 17:13	23183360	----a-w-	c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-11 17:13	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-11 17:13	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-11 17:13	66048	----a-w-	c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-11 17:13	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-11 17:13	2764288	----a-w-	c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-11 17:13	53760	----a-w-	c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-11 17:13	33792	----a-w-	c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-11 17:13	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-11 17:13	574976	----a-w-	c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-11 17:13	139264	----a-w-	c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-11 17:13	111616	----a-w-	c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-11 17:13	708608	----a-w-	c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-11 17:13	218624	----a-w-	c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-11 17:13	5769216	----a-w-	c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-11 17:13	553472	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-11 17:13	4243968	----a-w-	c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-11 17:13	1995264	----a-w-	c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-11 17:13	12996608	----a-w-	c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-11 17:13	1928192	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-11 17:13	2334208	----a-w-	c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-11 17:13	1395200	----a-w-	c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-11 17:13	817664	----a-w-	c:\windows\system32\ieapfltr.dll
2013-11-26 06:33 . 2013-12-11 17:13	1820160	----a-w-	c:\windows\SysWow64\wininet.dll
2013-11-23 18:26 . 2013-12-11 16:18	417792	----a-w-	c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-11 16:18	465920	----a-w-	c:\windows\system32\WMPhoto.dll
2013-11-23 17:42 . 2013-11-23 17:42	940032	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-23 17:42 . 2013-11-23 17:42	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-11-23 17:42 . 2013-11-23 17:42	942592	----a-w-	c:\windows\system32\jsIntl.dll
2013-11-23 17:42 . 2013-11-23 17:42	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-11-23 17:42 . 2013-11-23 17:42	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2013-11-23 17:42 . 2013-11-23 17:42	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2013-11-23 17:42 . 2013-11-23 17:42	81408	----a-w-	c:\windows\system32\icardie.dll
2013-11-23 17:42 . 2013-11-23 17:42	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-11-23 17:42 . 2013-11-23 17:42	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-23 17:42 . 2013-11-23 17:42	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-23 17:42 . 2013-11-23 17:42	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2013-11-23 17:42 . 2013-11-23 17:42	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-11-23 17:42 . 2013-11-23 17:42	61952	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2013-11-23 17:42 . 2013-11-23 17:42	61952	----a-w-	c:\windows\SysWow64\iesetup.dll
2013-11-23 17:42 . 2013-11-23 17:42	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2013-11-23 17:42 . 2013-11-23 17:42	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-11-23 17:42 . 2013-11-23 17:42	51200	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2013-11-23 17:42 . 2013-11-23 17:42	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-11-23 17:42 . 2013-11-23 17:42	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-11-23 17:42 . 2013-11-23 17:42	454656	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-11-23 17:42 . 2013-11-23 17:42	453120	----a-w-	c:\windows\system32\dxtmsft.dll
2013-11-23 17:42 . 2013-11-23 17:42	413696	----a-w-	c:\windows\system32\html.iec
2013-11-23 17:42 . 2013-11-23 17:42	40448	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-23 17:42 . 2013-11-23 17:42	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-11-23 17:42 . 2013-11-23 17:42	34816	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-23 17:42 . 2013-11-23 17:42	337408	----a-w-	c:\windows\SysWow64\html.iec
2013-11-23 17:42 . 2013-11-23 17:42	296960	----a-w-	c:\windows\system32\dxtrans.dll
2013-11-23 17:42 . 2013-11-23 17:42	247808	----a-w-	c:\windows\system32\msls31.dll
2013-11-23 17:42 . 2013-11-23 17:42	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-11-23 17:42 . 2013-11-23 17:42	235008	----a-w-	c:\windows\system32\elshyph.dll
2013-11-23 17:42 . 2013-11-23 17:42	195584	----a-w-	c:\windows\system32\msrating.dll
2013-11-23 17:42 . 2013-11-23 17:42	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2013-11-23 17:42 . 2013-11-23 17:42	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-11-23 17:42 . 2013-11-23 17:42	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2013-11-23 17:42 . 2013-11-23 17:42	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2013-11-23 17:42 . 2013-11-23 17:42	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2013-11-23 17:42 . 2013-11-23 17:42	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-11-23 17:42 . 2013-11-23 17:42	112128	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-11-23 17:42 . 2013-11-23 17:42	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-11-23 17:42 . 2013-11-23 17:42	105984	----a-w-	c:\windows\system32\iesysprep.dll
2013-11-23 17:42 . 2013-11-23 17:42	1051136	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-11-23 17:42 . 2013-11-23 17:42	84992	----a-w-	c:\windows\system32\mshtmled.dll
2013-11-23 17:42 . 2013-11-23 17:42	83968	----a-w-	c:\windows\system32\MshtmlDac.dll
2013-11-23 17:42 . 2013-11-23 17:42	774144	----a-w-	c:\windows\system32\jscript.dll
2013-11-23 17:42 . 2013-11-23 17:42	626176	----a-w-	c:\windows\system32\msfeeds.dll
2013-11-23 17:42 . 2013-11-23 17:42	62464	----a-w-	c:\windows\system32\pngfilt.dll
2013-11-23 17:42 . 2013-11-23 17:42	548352	----a-w-	c:\windows\system32\vbscript.dll
2013-11-23 17:42 . 2013-11-23 17:42	48128	----a-w-	c:\windows\system32\imgutil.dll
2013-11-23 17:42 . 2013-11-23 17:42	30208	----a-w-	c:\windows\system32\licmgr10.dll
2013-11-23 17:42 . 2013-11-23 17:42	263376	----a-w-	c:\windows\system32\iedkcs32.dll
2013-11-23 17:42 . 2013-11-23 17:42	243200	----a-w-	c:\windows\system32\webcheck.dll
2013-11-23 17:42 . 2013-11-23 17:42	235520	----a-w-	c:\windows\system32\url.dll
2013-11-23 17:42 . 2013-11-23 17:42	167424	----a-w-	c:\windows\system32\iexpress.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"1&1_1&1 Upload-Manager"="c:\program files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE" [2011-11-21 989264]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-10-21 20551840]
"KiesPreload"="d:\program files (x86)\Samsung\Kies\Kies.exe" [2013-12-11 1564528]
"Power2GoExpress8"="d:\program files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe" [2013-03-05 1711168]
"SSS14 Browser Monitor"="c:\program files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe" [2013-12-18 70656]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2013-12-17 5973272]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE" [2007-11-19 128352]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"KiesTrayAgent"="d:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-12-11 311152]
"Standby"="c:\program files (x86)\Common Files\Corel\Standby\Standby.exe" [2009-12-17 105632]
"CLMLServer_For_P2G8"="d:\program files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe" [2013-03-05 110144]
"CLVirtualDrive"="d:\program files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe" [2013-03-05 492096]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2013-04-19 374784]
"Steganos HotKeys"="c:\program files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe" [2013-12-18 100864]
"SSS14 File Redirection Starter"="c:\program files (x86)\Steganos Privacy Suite 14\fredirstarter.exe" [2013-12-18 17920]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Duden Korrektor SysTray"="c:\program files (x86)\Duden\Duden Korrektor\DKTray.exe" [2010-10-04 336560]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 SMR410;Symantec SMR Utility Service 4.1.0;c:\windows\System32\drivers\SMR410.SYS;c:\windows\SYSNATIVE\drivers\SMR410.SYS [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\1501000.012\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\N360x64\1501000.012\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\1501000.012\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\N360x64\1501000.012\SYMEFA64.SYS [x]
S1 BHDrvx64;BHDrvx64;c:\program files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys;c:\program files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [x]
S1 ccSet_N360;N360 Settings Manager;c:\windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\N360x64\1501000.012\ccSetx64.sys [x]
S1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
S1 IDSVia64;IDSVia64;c:\program files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys;c:\program files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [x]
S1 SLEE_17_DRIVER;Steganos Live Encryption Engine 17 [Driver];c:\windows\Sleen1764.sys;c:\windows\Sleen1764.sys [x]
S1 SLEE_18_DRIVER;Steganos Live Encryption Engine 18 [Driver];c:\windows\Sleen1864.sys;c:\windows\Sleen1864.sys [x]
S1 STGMFEngine64;Steganos RAM Disk Engine 64 Bit [Driver];c:\windows\system32\drivers\STGMFEngine64.sys;c:\windows\SYSNATIVE\drivers\STGMFEngine64.sys [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\N360x64\1501000.012\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\N360x64\1501000.012\SYMNETS.SYS [x]
S1 ui11rdr;ui11rdr;c:\windows\system32\DRIVERS\ui11rdr.sys;c:\windows\SYSNATIVE\DRIVERS\ui11rdr.sys [x]
S2 HecoUpdateSvc;Heco Update Service;c:\program files (x86)\HECO\HecoUpdateService.exe;c:\program files (x86)\HECO\HecoUpdateService.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\21.1.0.18\N360.exe;c:\program files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Radio.fx;Radio.fx Server;d:\tobit radio.fx\Server\rfx-server.exe;d:\tobit radio.fx\Server\rfx-server.exe [x]
S2 Steganos Volatile Disk;Steganos Volatile Disk;c:\windows\system32\STGRAMDiskHandler64.exe;c:\windows\SYSNATIVE\STGRAMDiskHandler64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [x]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL2832U_IRHID;Cinergy T Stick Black HID service;c:\windows\system32\DRIVERS\RTL2832U_IRHID.sys;c:\windows\SYSNATIVE\DRIVERS\RTL2832U_IRHID.sys [x]
S3 RTL2832UBDA;Cinergy T Stick Black BDA service;c:\windows\system32\drivers\RTL2832UBDA.sys;c:\windows\SYSNATIVE\drivers\RTL2832UBDA.sys [x]
S3 RTL2832UUSB;Cinergy T Stick Black USB service;c:\windows\system32\Drivers\RTL2832UUSB.sys;c:\windows\SYSNATIVE\Drivers\RTL2832UUSB.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2014-01-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 11:55]
.
2014-01-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12 18:28]
.
2014-01-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12 18:28]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-12-06 14:47	778704	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-07-26 2782096]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2013-07-31 3091224]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-11-21 36352]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
UxTuneUp
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/707-37276-17534-31/4
TCP: DhcpNameServer = 192.168.178.1
DPF: {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} - hxxp://www.heco-calc.com/HecoDMFrame.cab
FF - ProfilePath - c:\users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
ShellIconOverlayIdentifiers-{F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
ShellIconOverlayIdentifiers-{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
ShellIconOverlayIdentifiers-{BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
ShellIconOverlayIdentifiers-{F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
ShellIconOverlayIdentifiers-{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
ShellIconOverlayIdentifiers-{BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\N360]
"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\21.1.0.18\N360.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\21.1.0.18\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files (x86)\Norton 360\Engine\21.1.0.18;c:\program files (x86)\Norton 360\Engine64\21.1.0.18"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-3019991662-190593525-3014933027-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3019991662-190593525-3014933027-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:00000004
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-01-20  13:53:31
ComboFix-quarantined-files.txt  2014-01-20 12:53
.
Vor Suchlauf: 6.162.272.256 Bytes frei
Nach Suchlauf: 5.986.877.440 Bytes frei
.
- - End Of File - - D1AEB242E41FF7341FA70F10BE35C353
4624822E540EC83CD0819525C65846BA
         


Alt 20.01.2014, 14:09   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Adware/Junkware/Toolbars entfernen


1. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




2. Schritt: MBAM

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
--> National Zoom entfernt jetzt aber Fehlermeldung

Alt 20.01.2014, 15:32   #7
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



zu 1
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Admin on 20.01.2014 at 14:21:14,16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\user.js



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.01.2014 at 14:25:59,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
zu 2
Code:
ATTFilter
alwarebytes Anti-Malware (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.20.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Admin :: DAHEIM [Administrator]

Schutz: Aktiviert

20.01.2014 14:33:29
mbam-log-2014-01-20 (14-33-29).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 298395
Laufzeit: 2 Minute(n), 40 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\Users\Admin\Downloads\setup.exe (Adware.Linkular) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
nach 2 hatte der PC Schwierigkeiten mit dem Neustart

zu 3

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Admin (administrator) on DAHEIM on 20-01-2014 15:25:07
Running from C:\Users\Admin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\HECO\HecoUpdateService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() D:\Tobit Radio.fx\Server\rfx-server.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Windows\SysWOW64\STGRAMDiskHandler64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) D:\Program Files (x86)\Samsung\Kies\Kies.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
(Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Farbar) C:\Users\Admin\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [128352 2007-11-19] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2009-12-17] (Corel)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe [492096 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Steganos HotKeys] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe [100864 2013-12-18] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS14 File Redirection Starter] - C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe [17920 2013-12-18] (Steganos Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKCU\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKCU\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Duden Korrektor SysTray] - C:\Program Files (x86)\Duden\Duden Korrektor\DKtray.exe [336560 2010-10-04] (Expert System S.p.A.)
HKU\Frank\...\Run: [rfxsrvtray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Frank\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKU\Frank\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Frank\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Frank\...\Run: [SSS14_Agent] - C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe [2706264 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Frank\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Frank\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-07-02] (TomTom)
HKU\Frank\...\Run: [Amazon Cloud Player] - C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3139072 2013-11-24] ()
HKU\Frank\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Frank\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Internet\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Internet\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Internet\...\Run: [RfxSrvTray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Internet\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Internet\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Internet\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Internet\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar64.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
DPF: HKLM-x32 {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} hxxp://www.heco-calc.com/HecoDMFrame.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-16]
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 11\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 [2012-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF [2013-10-10]
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.9.5.9\coFFFw\

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-20]

==================== Services (Whitelisted) =================

R2 HecoUpdateSvc; C:\Program Files (x86)\HECO\HecoUpdateService.exe [5792232 2012-10-15] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
R2 Steganos Volatile Disk; C:\Windows\SysWOW64\STGRAMDiskHandler64.exe [450560 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-26] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-22] (Symantec Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [521944 2013-12-14] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\ENG64.SYS [126040 2013-11-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\EX64.SYS [2099288 2013-11-13] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [109144 2013-11-18] (Softwareentwicklung Remus - ArchiCrypt - )
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt.com)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S2 mdmxsdk; system32\DRIVERS\ACFSDK64.sys [x]
S2 XAudio; system32\DRIVERS\ACFXAU64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 15:25 - 2014-01-20 15:25 - 00024827 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:46 - 2014-01-20 13:53 - 00000000 ____D C:\ComboFix
2014-01-20 13:26 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-20 13:26 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-20 13:26 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-20 13:24 - 2014-01-20 13:53 - 00000000 ____D C:\Qoobox
2014-01-20 13:23 - 2014-01-20 13:52 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 10:08 - 2014-01-20 10:11 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 10:55 - 2014-01-20 15:22 - 00007824 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-20 15:22 - 00002408 _____ C:\Windows\setupact.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:24 - 2014-01-20 14:37 - 00065379 _____ C:\Windows\WindowsUpdate.log
2014-01-18 14:19 - 2014-01-20 14:01 - 00000000 ____D C:\AdwCleaner
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:11 - 2014-01-18 11:14 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:57 - 2014-01-20 07:40 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:47 - 2014-01-16 12:48 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-15 18:21 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:21 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 18:21 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-10 15:29 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-10 15:29 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-10 15:29 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-10 15:29 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-10 15:29 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:24 - 2014-01-03 17:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:29 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 18:13 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:44 - 2014-01-16 13:03 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2013-12-18 10:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-02 13:44 - 2013-12-18 10:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-02 13:43 - 2014-01-02 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:42 - 2014-01-02 13:43 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2013-12-27 09:01 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 10:56 - 2014-01-18 14:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2013-12-26 10:53 - 2013-12-26 11:01 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 12:39 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-22 12:37 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-22 12:37 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk

==================== One Month Modified Files and Folders =======

2014-01-20 15:25 - 2014-01-20 15:25 - 00024827 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 15:23 - 2011-10-12 19:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 15:22 - 2014-01-19 10:55 - 00007824 _____ C:\Windows\PFRO.log
2014-01-20 15:22 - 2014-01-18 14:25 - 00002408 _____ C:\Windows\setupact.log
2014-01-20 15:22 - 2011-06-29 16:31 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 14:37 - 2014-01-18 14:24 - 00065379 _____ C:\Windows\WindowsUpdate.log
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:27 - 2011-10-12 19:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:20 - 2012-03-30 19:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:14 - 2012-12-09 14:04 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Skype
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 14:02 - 2012-05-05 16:48 - 00000000 ___RD C:\Users\Frank\Google Drive
2014-01-20 14:01 - 2014-01-18 14:19 - 00000000 ____D C:\AdwCleaner
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:53 - 2014-01-20 13:46 - 00000000 ____D C:\ComboFix
2014-01-20 13:53 - 2014-01-20 13:24 - 00000000 ____D C:\Qoobox
2014-01-20 13:53 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2014-01-20 13:52 - 2014-01-20 13:23 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:51 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-20 13:21 - 2012-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 11:57 - 2013-02-16 16:32 - 00000000 ____D C:\Users\Internet\AppData\Local\CrashDumps
2014-01-20 10:11 - 2014-01-20 10:08 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 09:51 - 2011-10-23 17:25 - 00000000 ____D C:\Users\Internet\AppData\Roaming\TuneUp Software
2014-01-20 09:46 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-20 07:53 - 2011-10-23 17:05 - 00000000 ____D C:\Users\Internet
2014-01-20 07:51 - 2011-03-11 10:20 - 00700486 _____ C:\Windows\system32\perfh007.dat
2014-01-20 07:51 - 2011-03-11 10:20 - 00150124 _____ C:\Windows\system32\perfc007.dat
2014-01-20 07:51 - 2009-07-14 06:13 - 01624178 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 07:51 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 07:51 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 07:41 - 2011-10-12 18:18 - 00000000 ____D C:\Users\Frank
2014-01-20 07:40 - 2014-01-18 10:57 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-20 07:13 - 2011-10-12 20:18 - 00000000 ____D C:\Users\Frank\AppData\Local\Windows Live
2014-01-19 13:01 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 11:08 - 2011-10-13 17:25 - 00000000 ____D C:\Program Files (x86)\CSI
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:20 - 2013-12-26 10:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2014-01-18 14:20 - 2013-09-18 06:32 - 00001083 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-18 14:20 - 2011-11-07 21:01 - 00000999 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 14:20 - 2011-10-12 20:15 - 00001053 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:14 - 2014-01-18 11:11 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:58 - 2011-10-12 19:58 - 00000000 ____D C:\ProgramData\Norton
2014-01-17 16:26 - 2013-01-09 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:47 - 2011-10-12 20:45 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 13:03 - 2014-01-02 13:44 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-16 12:55 - 2012-03-22 11:08 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2014-01-16 12:55 - 2011-10-12 19:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 12:49 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2014-01-16 12:48 - 2014-01-16 12:47 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 12:20 - 2012-09-18 12:59 - 00000000 ____D C:\ProgramData\DriverGenius
2014-01-16 11:50 - 2011-10-14 17:41 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-16 09:47 - 2011-12-29 13:23 - 00000731 _____ C:\Users\Frank\Sti_Trace.log
2014-01-15 19:24 - 2013-08-03 15:48 - 00496160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 19:10 - 2013-08-07 13:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 19:10 - 2011-10-12 19:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:08 - 2011-03-14 15:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-12 18:35 - 2011-10-12 20:22 - 00000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2014-01-10 15:31 - 2011-06-29 16:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-05 13:22 - 2011-10-14 17:39 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:44 - 2011-06-29 16:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-05 12:36 - 2012-09-21 18:04 - 00000000 ____D C:\Program Files\Intel
2014-01-05 12:36 - 2011-06-29 16:31 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:28 - 2014-01-03 17:24 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-03 17:17 - 2011-11-04 15:56 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Apple Computer
2014-01-02 18:29 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:19 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:52 - 2011-10-14 17:39 - 00000000 ____D C:\Users\Frank\AppData\Roaming\TuneUp Software
2014-01-02 13:46 - 2014-01-02 13:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2011-12-12 18:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-01-02 13:43 - 2014-01-02 13:42 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:43 - 2012-09-18 06:21 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2014-01-02 13:16 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2014-01-02 13:14 - 2013-11-19 19:50 - 00000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 11:09 - 2012-08-05 17:23 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 11:09 - 2011-03-14 15:03 - 00000000 ____D C:\Windows\Panther
2013-12-26 11:07 - 2012-08-05 17:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-26 11:01 - 2013-12-26 10:53 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 11:00 - 2011-11-07 21:01 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 18:54 - 2012-02-12 17:15 - 00006144 _____ C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-22 12:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-22 11:32 - 2013-09-23 16:40 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-22 11:32 - 2011-10-12 18:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk
2013-12-21 12:28 - 2012-12-27 11:32 - 00000000 ____D C:\Program Files (x86)\Steganos Privacy Suite 14

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 12:00

==================== End Of Log =========================
         
--- --- ---

--- --- ---

--- --- ---

--- --- ---

Addition.txt wird jezt nicht ausgegeben....

Die Fehlermeldung ist bei den einzelnen Benutzern noch vorhanden.....

Alt 20.01.2014, 15:38   #8
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Fehlermeldung anhängend
Angehängte Dateien
Dateityp: pdf Trojaner.pdf (221,2 KB, 125x aufgerufen)

Alt 20.01.2014, 15:38   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



FRST starten, Haken setzen bei additions.txt und neu scannen lassen, nur die neue additions.txt posten
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 20.01.2014, 15:54   #10
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



FRST

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Frank (ATTENTION: The logged in user is not administrator) on DAHEIM on 20-01-2014 15:40:48
Running from D:\Ablage\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Expert System S.p.A.) C:\Program Files (x86)\Duden\Duden Korrektor\DKTray.exe
(Tobit.Software) D:\Tobit Radio.fx\Client\rfx-tray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe
(Samsung) D:\Program Files (x86)\Samsung\Kies\Kies.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
() C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Bibliographisches Institut GmbH) C:\Program Files (x86)\Duden\Duden-Bibliothek\dudenbib.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [128352 2007-11-19] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2009-12-17] (Corel)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe [492096 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Steganos HotKeys] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe [100864 2013-12-18] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS14 File Redirection Starter] - C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe [17920 2013-12-18] (Steganos Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [Duden Korrektor SysTray] - C:\Program Files (x86)\Duden\Duden Korrektor\DKtray.exe [336560 2010-10-04] (Expert System S.p.A.)
HKCU\...\Run: [rfxsrvtray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [SSS14_Agent] - C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe [2706264 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKCU\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-07-02] (TomTom)
HKCU\...\Run: [Amazon Cloud Player] - C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3139072 2013-11-24] ()
HKCU\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKCU\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKCU\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
MountPoints2: {f6af8339-d7da-11e2-bb6e-c89cdc2c18e7} - G:\Setup.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appid=635a979d-10ea-4385-9c22-0009bda67619
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SoftPublisherYB&dpid=sfp1&co=DE&userid=28a0568c-c5c1-eeb1-912a-4255cd71acfb&searchtype=ds&q={searchTerms}&installDate=17/09/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=111304&babsrc=SP_ss&mntrId=56b79f85000000000000c89cdc2c18e7
SearchScopes: HKCU - {2ACA333F-88CF-40D4-9DBA-0482CD52664D} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=827316&p={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388051775&from=sfpsnew2&uid=C400-MTFDDAC064MAM_00000000112303118B45&q={searchTerms}
SearchScopes: HKCU - {7564E093-727A-4B3C-A1CD-FE1A1D80051E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=FV&apn_dtid=YYYYYYYYDE&apn_uid=8a28530c-9ebb-4290-b68b-8b1ce3084120&apn_sauid=6F4C47F0-B1C9-4398-9EA2-B6735F2D8E01
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=DE&ver=21&locale=de_DE&gct=kwd&qsrc=2869
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=635A979D-10EA-4385-9C22-0009BDA67619&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - {C3DFDCD0-D56D-456F-8C40-427E410224FF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=OSDSRC
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar64.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: HKLM-x32 {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} hxxp://www.heco-calc.com/HecoDMFrame.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default
FF DefaultSearchEngine: StartWeb
FF SelectedSearchEngine: StartWeb
FF Homepage: www.google.de
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FoxyProxy Standard - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\foxyproxy@eric.h.jung [2013-10-27]
FF Extension: Garmin Communicator - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2013-11-23]
FF Extension: FoxLingo - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2012-11-11]
FF Extension: Add-on Compatibility Reporter - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\compatibility@addons.mozilla.org.xpi [2011-10-12]
FF Extension: Ciuvo - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\extension@ciuvo.com.xpi [2011-10-12]
FF Extension: Personas Plus - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\personas@christopher.beard.xpi [2011-10-12]
FF Extension: PhotoME Erweiterung - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{01c29d60-f7f0-416c-844a-ec8b2e1841d0}.xpi [2011-11-02]
FF Extension: Adblock Plus - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-10-12]
FF Extension: BetterPrivacy - C:\Users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\lpqqnns0.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2011-11-02]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-16]
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 11\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 [2012-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF [2013-10-10]
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.9.5.9\coFFFw\

==================== Services (Whitelisted) =================

R2 HecoUpdateSvc; C:\Program Files (x86)\HECO\HecoUpdateService.exe [5792232 2012-10-15] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
R2 Steganos Volatile Disk; C:\Windows\SysWOW64\STGRAMDiskHandler64.exe [450560 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-26] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-22] (Symantec Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [521944 2013-12-14] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\ENG64.SYS [126040 2013-11-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\EX64.SYS [2099288 2013-11-13] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [109144 2013-11-18] (Softwareentwicklung Remus - ArchiCrypt - )
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt.com)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S2 mdmxsdk; system32\DRIVERS\ACFSDK64.sys [x]
S2 XAudio; system32\DRIVERS\ACFXAU64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 15:25 - 2014-01-20 15:27 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:46 - 2014-01-20 13:53 - 00000000 ____D C:\ComboFix
2014-01-20 13:26 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-20 13:26 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-20 13:26 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-20 13:24 - 2014-01-20 13:53 - 00000000 ____D C:\Qoobox
2014-01-20 13:23 - 2014-01-20 13:52 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 10:08 - 2014-01-20 10:11 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 10:55 - 2014-01-20 15:22 - 00007824 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-20 15:22 - 00002408 _____ C:\Windows\setupact.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:24 - 2014-01-20 15:26 - 00071505 _____ C:\Windows\WindowsUpdate.log
2014-01-18 14:19 - 2014-01-20 14:01 - 00000000 ____D C:\AdwCleaner
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:11 - 2014-01-18 11:14 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:57 - 2014-01-20 07:40 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:47 - 2014-01-16 12:48 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-15 18:21 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:21 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 18:21 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-10 15:29 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-10 15:29 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-10 15:29 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-10 15:29 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-10 15:29 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:24 - 2014-01-03 17:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:29 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 18:13 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:44 - 2014-01-16 13:03 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2013-12-18 10:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-02 13:44 - 2013-12-18 10:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-02 13:43 - 2014-01-02 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:42 - 2014-01-02 13:43 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2013-12-27 09:01 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 10:56 - 2014-01-18 14:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2013-12-26 10:53 - 2013-12-26 11:01 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 12:39 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-22 12:37 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-22 12:37 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk

==================== One Month Modified Files and Folders =======

2014-01-20 15:35 - 2012-12-09 14:04 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Skype
2014-01-20 15:34 - 2012-05-05 16:48 - 00000000 ___RD C:\Users\Frank\Google Drive
2014-01-20 15:34 - 2011-10-12 19:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:28 - 2011-03-11 10:20 - 00700486 _____ C:\Windows\system32\perfh007.dat
2014-01-20 15:28 - 2011-03-11 10:20 - 00150124 _____ C:\Windows\system32\perfc007.dat
2014-01-20 15:28 - 2009-07-14 06:13 - 01624178 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 15:27 - 2014-01-20 15:25 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:27 - 2011-10-12 19:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 15:26 - 2014-01-18 14:24 - 00071505 _____ C:\Windows\WindowsUpdate.log
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 15:22 - 2014-01-19 10:55 - 00007824 _____ C:\Windows\PFRO.log
2014-01-20 15:22 - 2014-01-18 14:25 - 00002408 _____ C:\Windows\setupact.log
2014-01-20 15:22 - 2011-06-29 16:31 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:20 - 2012-03-30 19:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 14:01 - 2014-01-18 14:19 - 00000000 ____D C:\AdwCleaner
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:53 - 2014-01-20 13:46 - 00000000 ____D C:\ComboFix
2014-01-20 13:53 - 2014-01-20 13:24 - 00000000 ____D C:\Qoobox
2014-01-20 13:53 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2014-01-20 13:52 - 2014-01-20 13:23 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:51 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-20 13:21 - 2012-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 11:57 - 2013-02-16 16:32 - 00000000 ____D C:\Users\Internet\AppData\Local\CrashDumps
2014-01-20 10:11 - 2014-01-20 10:08 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 09:51 - 2011-10-23 17:25 - 00000000 ____D C:\Users\Internet\AppData\Roaming\TuneUp Software
2014-01-20 07:53 - 2011-10-23 17:05 - 00000000 ____D C:\Users\Internet
2014-01-20 07:41 - 2011-10-12 18:18 - 00000000 ____D C:\Users\Frank
2014-01-20 07:40 - 2014-01-18 10:57 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-20 07:13 - 2011-10-12 20:18 - 00000000 ____D C:\Users\Frank\AppData\Local\Windows Live
2014-01-19 13:01 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 11:08 - 2011-10-13 17:25 - 00000000 ____D C:\Program Files (x86)\CSI
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:20 - 2013-12-26 10:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2014-01-18 14:20 - 2013-09-18 06:32 - 00001083 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-18 14:20 - 2011-11-07 21:01 - 00000999 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 14:20 - 2011-10-12 20:15 - 00001053 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:14 - 2014-01-18 11:11 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:58 - 2011-10-12 19:58 - 00000000 ____D C:\ProgramData\Norton
2014-01-17 16:26 - 2013-01-09 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:47 - 2011-10-12 20:45 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 13:03 - 2014-01-02 13:44 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 12:55 - 2012-03-22 11:08 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2014-01-16 12:55 - 2011-10-12 19:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 12:49 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2014-01-16 12:48 - 2014-01-16 12:47 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 12:20 - 2012-09-18 12:59 - 00000000 ____D C:\ProgramData\DriverGenius
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-16 09:47 - 2011-12-29 13:23 - 00000731 _____ C:\Users\Frank\Sti_Trace.log
2014-01-15 19:24 - 2013-08-03 15:48 - 00496160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 19:10 - 2013-08-07 13:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 19:10 - 2011-10-12 19:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:08 - 2011-03-14 15:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-12 18:35 - 2011-10-12 20:22 - 00000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2014-01-10 15:31 - 2011-06-29 16:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-05 13:22 - 2011-10-14 17:39 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:44 - 2011-06-29 16:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-05 12:36 - 2012-09-21 18:04 - 00000000 ____D C:\Program Files\Intel
2014-01-05 12:36 - 2011-06-29 16:31 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:28 - 2014-01-03 17:24 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-03 17:17 - 2011-11-04 15:56 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Apple Computer
2014-01-02 18:29 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:19 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:52 - 2011-10-14 17:39 - 00000000 ____D C:\Users\Frank\AppData\Roaming\TuneUp Software
2014-01-02 13:46 - 2014-01-02 13:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2011-12-12 18:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-01-02 13:43 - 2014-01-02 13:42 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:43 - 2012-09-18 06:21 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2014-01-02 13:16 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2014-01-02 13:14 - 2013-11-19 19:50 - 00000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 11:09 - 2012-08-05 17:23 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 11:09 - 2011-03-14 15:03 - 00000000 ____D C:\Windows\Panther
2013-12-26 11:07 - 2012-08-05 17:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-26 11:01 - 2013-12-26 10:53 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 11:00 - 2011-11-07 21:01 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 18:54 - 2012-02-12 17:15 - 00006144 _____ C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-22 12:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-22 11:32 - 2013-09-23 16:40 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-22 11:32 - 2011-10-12 18:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk
2013-12-21 12:28 - 2012-12-27 11:32 - 00000000 ____D C:\Program Files (x86)\Steganos Privacy Suite 14

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---

--- --- ---



Dazugehörige Addition

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Frank at 2014-01-20 15:41:05
Running from D:\Ablage\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
1&1 Upload-Manager (x32 Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (Version: 4.4.1 - Adobe)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (x32 Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Amazon Cloud Player (HKCU Version: 2.1.0.381 - Amazon Services LLC)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Athentech Perfectly Clear (Version: 1.0.0.106 - Corel Corporation) Hidden
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Corel Corporation)
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Ihr Firmenname) Hidden
AudibleManager (x32 Version: 2001616126.48.56.11996530 - Audible, Inc.)
BenVista PhotoZoom Classic 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
BenVista PhotoZoom Pro 4.1.2 (HKCU Version: 4.1.2 - BenVista Ltd.)
Best Of Gehirnjogging (x32 Version: 1.0 - SBT)
Bewerbungsfoto-/Passbild-Generator v3.5c (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (x32 Version:  - )
Canon IJ Network Scan Utility (x32 Version:  - )
Canon IJ Network Tool (x32 Version:  - )
Canon MP Navigator EX 2.0 (x32 Version:  - )
Canon MP620 series MP Drivers (Version:  - )
Canon My Printer (x32 Version:  - )
CCleaner (Version: 4.09 - Piriform)
Cinergy T Stick Black V86.001.1028.2009 (x32 Version: 86.001.1028.2009 - )
ContentHD (x32 Version: 1.00.0002 - Corel Corporation) Hidden
Contents (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.686 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden
Corel KPT Collection (x32 Version: 1.0.0.103 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (x32 Version: 1.6.2.69 - Corel Corporation)
Corel VideoStudio Pro X3 Title Pack (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
CorelDRAW Graphics Suite X5 - BR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - DE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - ES (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM HSE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - NL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - RU (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.3 -  Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version:  - Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 (x32 Version: 15.1 - Corel Corporation) Hidden
CorelDRAW(R) Home & Student Suite X5 (x32 Version: 15.2.0.686 - Corel Corporation)
Creative Content (x32 Version: 1.0.0.103 - Corel Corporation) Hidden
Creative Content (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DeviceIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Duden Korrektor (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
Duden Korrektor Patch 022010 (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
DVD Shrink 3.2 deutsch (x32 Version:  - DVD Shrink)
DxO Optics Pro 5.3.5 (x32 Version: 5.3.5 - DXO Labs)
ElsterFormular-Upgrade (x32 Version: 15.0.13315 - Landesfinanzdirektion Thüringen)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EU Connector Selector (x32 Version: 1.0.0 - Simpson Strong-Tie)
FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion)
FaceFilter v3.02 Standard (x32 Version: 3.02.1506.1 - Reallusion Inc.)
FormatFactory 3.0.1 (x32 Version: 3.0.1 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google SketchUp 8 (x32 Version: 3.0.14358 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GraitecBIM (x32 Version: 1.0.0 - Microsoft)
GraitecBIM (x32 Version: 2.0.0 - GRAITEC GmbH)
HECO® -  HCS (x32 Version: 1.00.0000 - HECO)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (x32 Version: 1 - Microsoft Corporation)
ICA (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.9.0.1001 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Interaktiver Gitarren Workshop v1 (x32 Version:  - Emme)
IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_VS_Pro (x32 Version: 13.0 - Corel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 2 Runtime Environment Standard Edition v1.3.1 (x32 Version:  - )
Java 7 Update 40 (64-bit) (Version: 7.0.400 - Oracle)
Java 7 Update 7 (x32 Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (Version: 6.0.310 - Oracle)
Java(TM) 6 Update 31 (x32 Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LANGMaster.com: Berlitz Englisch (x32 Version:  - )
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Luminance HDR 2.3.0 (Version:  - Luminance HDR Dev Team)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
maxdome - Online Videothek (Version: 1.0 - maxdome GmbH und Co. KG)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
MLE (x32 Version: 1.0.0.23 - Corel Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKCU Version:  - )
MyTube BigPack 5 (x32 Version: 5.0.12.1016 - S.A.D.)
Nik Color Efex Pro 3.0 (x32 Version: 1.0.0.53 - Corel Corporation)
Nik Color Efex Pro 3.0 (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PhotoME Beta-Release (x32 Version: 0.8ß2 - Jens Duttke)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
POIbase 1.051 (x32 Version:  - POIbase)
Pošta Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPro64 (Version: 16.1.0.48 - Corel Corporation) Hidden
PureHD (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Radio.fx (x32 Version:  - Tobit.Software)
Realtek Ethernet Controller Driver (x32 Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH)
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH) Hidden
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Setup (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden
Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden
Share (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Share64 (Version: 1.6.0.272 - Corel Corporation) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory) Hidden
Skype Click to Call (x32 Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.10 (x32 Version: 6.10.104 - Skype Technologies S.A.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Steganos Live Encryption Engine 17 (x32 Version: 17.4.1 - Steganos Software GmbH)
Steganos Privacy Suite 14 (x32 Version: 14.2.1 - Steganos Software GmbH)
Stellarium 0.12.3 (Version: 0.12.3 - Stellarium team)
TomTom HOME (x32 Version: 2.9.6 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Corel Corporation)
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Ihr Firmenname) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSClassic (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSPro (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (x32 Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinZip 15.0 (x32 Version: 15.0.9411 - WinZip Computing, S.L. )
WISO Mein Geld 2014 Professional (x32 Version: 16.0.1.0 - Buhl Data Service GmbH) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-01-20 13:51 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

==================== Loaded Modules (whitelisted) =============

2013-12-17 20:19 - 2013-12-17 20:19 - 00049152 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-01-11 12:08 - 2013-01-11 12:08 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Microsoft:63MTnYTFVKeIXoyb7Mgvq
AlternateDataStreams: C:\ProgramData\Microsoft:YPxzmJhbdox4y1D5B644vI
AlternateDataStreams: C:\ProgramData\Temp:A291950B
AlternateDataStreams: C:\Users\Frank\Cookies:rXzof55DOjZlJaDotP8MzEp

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: XAudio
Description: XAudio
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: XAudio
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 03:29:07 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 03:23:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/20/2014 03:22:43 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎20.‎01.‎2014 um 15:18:33 unerwartet heruntergefahren.

Error: (01/20/2014 02:40:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.

Error: (01/20/2014 02:39:59 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst eventlog erreicht.

Error: (01/20/2014 02:39:39 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NlaSvc erreicht.

Error: (01/20/2014 02:39:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst MBAMService erreicht.

Error: (01/20/2014 02:37:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-20 13:51:12.604
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-20 13:51:12.544
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-02-29 18:31:43.130
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.123
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.117
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.110
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.103
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.089
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.082
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 21%
Total physical RAM: 16360.17 MB
Available physical RAM: 12841.41 MB
Total Pagefile: 32718.52 MB
Available Pagefile: 28990.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:58.52 GB) (Free:5.68 GB) NTFS
Drive d: (Data) (Fixed) (Total:1357.25 GB) (Free:1105.57 GB) NTFS
Drive e: (Recover) (Fixed) (Total:40.01 GB) (Free:21.51 GB) NTFS
Drive h: (Zusatzfestplatte) (Fixed) (Total:1863.01 GB) (Free:619.18 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ==================
         
Zur Info....

Ich habe nur gekauft Software auf diesm PC, bis auf die heutige ...wobei ich glaube mir den National Zoom mit dem Download von Cleaner Professional einghandelt zu haben....

Alt 20.01.2014, 16:16   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Zitat:
Ran by Frank (ATTENTION: The logged in user is not administrator) on DAHEIM on 20-01-2014 15:40:48
Running from D:\Ablage\Downloads
1. FRST ohne Adminrechte gestartet, das macht keinen Sinn, die Tools brauchen Adminrechte
2. unsere Tools sollten auf dem Desktop liegen und nicht irgendwo. Hat schon seinen Grund warum das in den Anleitungen so steht, sonst gibt es wieder später Probleme zB bei einem Fix mit FRST weil man die Anleitung nicht richtig umgesetzt hast
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 20.01.2014, 16:28   #12
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Noch einmal als ADMIN


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Admin (administrator) on DAHEIM on 20-01-2014 16:26:21
Running from C:\Users\Admin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\HECO\HecoUpdateService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() D:\Tobit Radio.fx\Server\rfx-server.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Windows\SysWOW64\STGRAMDiskHandler64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) D:\Program Files (x86)\Samsung\Kies\Kies.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
(Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [128352 2007-11-19] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2009-12-17] (Corel)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe [492096 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Steganos HotKeys] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe [100864 2013-12-18] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS14 File Redirection Starter] - C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe [17920 2013-12-18] (Steganos Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKCU\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKCU\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Duden Korrektor SysTray] - C:\Program Files (x86)\Duden\Duden Korrektor\DKtray.exe [336560 2010-10-04] (Expert System S.p.A.)
HKU\Frank\...\Run: [rfxsrvtray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Frank\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKU\Frank\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Frank\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Frank\...\Run: [SSS14_Agent] - C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe [2706264 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Frank\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Frank\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-07-02] (TomTom)
HKU\Frank\...\Run: [Amazon Cloud Player] - C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3139072 2013-11-24] ()
HKU\Frank\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Frank\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Internet\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Internet\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Internet\...\Run: [RfxSrvTray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Internet\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Internet\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Internet\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Internet\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar64.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
DPF: HKLM-x32 {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} hxxp://www.heco-calc.com/HecoDMFrame.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-16]
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 11\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 [2012-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF [2013-10-10]
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.9.5.9\coFFFw\

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-20]

==================== Services (Whitelisted) =================

R2 HecoUpdateSvc; C:\Program Files (x86)\HECO\HecoUpdateService.exe [5792232 2012-10-15] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
R2 Steganos Volatile Disk; C:\Windows\SysWOW64\STGRAMDiskHandler64.exe [450560 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-26] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-22] (Symantec Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [521944 2013-12-14] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\ENG64.SYS [126040 2013-11-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\EX64.SYS [2099288 2013-11-13] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [109144 2013-11-18] (Softwareentwicklung Remus - ArchiCrypt - )
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt.com)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S2 mdmxsdk; system32\DRIVERS\ACFSDK64.sys [x]
S2 XAudio; system32\DRIVERS\ACFXAU64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 16:26 - 2014-01-20 16:26 - 00024776 _____ C:\Users\Admin\Desktop\FRST.txt
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Malwarebytes
2014-01-20 15:25 - 2014-01-20 15:27 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:46 - 2014-01-20 13:53 - 00000000 ____D C:\ComboFix
2014-01-20 13:26 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-20 13:26 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-20 13:26 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-20 13:24 - 2014-01-20 13:53 - 00000000 ____D C:\Qoobox
2014-01-20 13:23 - 2014-01-20 13:52 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 10:08 - 2014-01-20 10:11 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 10:55 - 2014-01-20 15:22 - 00007824 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-20 15:22 - 00002408 _____ C:\Windows\setupact.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:24 - 2014-01-20 16:15 - 00086773 _____ C:\Windows\WindowsUpdate.log
2014-01-18 14:19 - 2014-01-20 14:01 - 00000000 ____D C:\AdwCleaner
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:11 - 2014-01-18 11:14 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:57 - 2014-01-20 07:40 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:47 - 2014-01-16 12:48 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-15 18:21 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:21 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 18:21 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-10 15:29 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-10 15:29 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-10 15:29 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-10 15:29 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-10 15:29 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:24 - 2014-01-03 17:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:29 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 18:13 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:44 - 2014-01-16 13:03 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2013-12-18 10:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-02 13:44 - 2013-12-18 10:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-02 13:43 - 2014-01-02 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:42 - 2014-01-02 13:43 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2013-12-27 09:01 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 10:56 - 2014-01-18 14:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2013-12-26 10:53 - 2013-12-26 11:01 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 12:39 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-22 12:37 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-22 12:37 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk

==================== One Month Modified Files and Folders =======

2014-01-20 16:26 - 2014-01-20 16:26 - 00024776 _____ C:\Users\Admin\Desktop\FRST.txt
2014-01-20 16:24 - 2011-10-12 19:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 16:20 - 2012-03-30 19:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 16:15 - 2014-01-18 14:24 - 00086773 _____ C:\Windows\WindowsUpdate.log
2014-01-20 16:15 - 2012-12-09 14:04 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Skype
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Malwarebytes
2014-01-20 15:34 - 2012-05-05 16:48 - 00000000 ___RD C:\Users\Frank\Google Drive
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:28 - 2011-03-11 10:20 - 00700486 _____ C:\Windows\system32\perfh007.dat
2014-01-20 15:28 - 2011-03-11 10:20 - 00150124 _____ C:\Windows\system32\perfc007.dat
2014-01-20 15:28 - 2009-07-14 06:13 - 01624178 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 15:27 - 2014-01-20 15:25 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:27 - 2011-10-12 19:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 15:22 - 2014-01-19 10:55 - 00007824 _____ C:\Windows\PFRO.log
2014-01-20 15:22 - 2014-01-18 14:25 - 00002408 _____ C:\Windows\setupact.log
2014-01-20 15:22 - 2011-06-29 16:31 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 14:01 - 2014-01-18 14:19 - 00000000 ____D C:\AdwCleaner
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:53 - 2014-01-20 13:46 - 00000000 ____D C:\ComboFix
2014-01-20 13:53 - 2014-01-20 13:24 - 00000000 ____D C:\Qoobox
2014-01-20 13:53 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2014-01-20 13:52 - 2014-01-20 13:23 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:51 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-20 13:21 - 2012-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 11:57 - 2013-02-16 16:32 - 00000000 ____D C:\Users\Internet\AppData\Local\CrashDumps
2014-01-20 10:11 - 2014-01-20 10:08 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 09:51 - 2011-10-23 17:25 - 00000000 ____D C:\Users\Internet\AppData\Roaming\TuneUp Software
2014-01-20 09:46 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-20 07:53 - 2011-10-23 17:05 - 00000000 ____D C:\Users\Internet
2014-01-20 07:41 - 2011-10-12 18:18 - 00000000 ____D C:\Users\Frank
2014-01-20 07:40 - 2014-01-18 10:57 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-20 07:13 - 2011-10-12 20:18 - 00000000 ____D C:\Users\Frank\AppData\Local\Windows Live
2014-01-19 13:01 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 11:08 - 2011-10-13 17:25 - 00000000 ____D C:\Program Files (x86)\CSI
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:20 - 2013-12-26 10:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2014-01-18 14:20 - 2013-09-18 06:32 - 00001083 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-18 14:20 - 2011-11-07 21:01 - 00000999 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 14:20 - 2011-10-12 20:15 - 00001053 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:14 - 2014-01-18 11:11 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:58 - 2011-10-12 19:58 - 00000000 ____D C:\ProgramData\Norton
2014-01-17 16:26 - 2013-01-09 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:47 - 2011-10-12 20:45 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 13:03 - 2014-01-02 13:44 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-16 12:55 - 2012-03-22 11:08 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2014-01-16 12:55 - 2011-10-12 19:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 12:49 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2014-01-16 12:48 - 2014-01-16 12:47 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 12:20 - 2012-09-18 12:59 - 00000000 ____D C:\ProgramData\DriverGenius
2014-01-16 11:50 - 2011-10-14 17:41 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-16 09:47 - 2011-12-29 13:23 - 00000731 _____ C:\Users\Frank\Sti_Trace.log
2014-01-15 19:24 - 2013-08-03 15:48 - 00496160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 19:10 - 2013-08-07 13:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 19:10 - 2011-10-12 19:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:08 - 2011-03-14 15:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-12 18:35 - 2011-10-12 20:22 - 00000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2014-01-10 15:31 - 2011-06-29 16:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-05 13:22 - 2011-10-14 17:39 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:44 - 2011-06-29 16:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-05 12:36 - 2012-09-21 18:04 - 00000000 ____D C:\Program Files\Intel
2014-01-05 12:36 - 2011-06-29 16:31 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:28 - 2014-01-03 17:24 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-03 17:17 - 2011-11-04 15:56 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Apple Computer
2014-01-02 18:29 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:19 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:52 - 2011-10-14 17:39 - 00000000 ____D C:\Users\Frank\AppData\Roaming\TuneUp Software
2014-01-02 13:46 - 2014-01-02 13:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2011-12-12 18:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-01-02 13:43 - 2014-01-02 13:42 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:43 - 2012-09-18 06:21 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2014-01-02 13:16 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2014-01-02 13:14 - 2013-11-19 19:50 - 00000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 11:09 - 2012-08-05 17:23 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 11:09 - 2011-03-14 15:03 - 00000000 ____D C:\Windows\Panther
2013-12-26 11:07 - 2012-08-05 17:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-26 11:01 - 2013-12-26 10:53 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 11:00 - 2011-11-07 21:01 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 18:54 - 2012-02-12 17:15 - 00006144 _____ C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-22 12:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-22 11:32 - 2013-09-23 16:40 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-22 11:32 - 2011-10-12 18:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk
2013-12-21 12:28 - 2012-12-27 11:32 - 00000000 ____D C:\Program Files (x86)\Steganos Privacy Suite 14

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 12:00

==================== End Of Log ============================
         
--- --- ---


und

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Admin at 2014-01-20 16:26:36
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
1&1 Upload-Manager (x32 Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (Version: 4.4.1 - Adobe)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (x32 Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Athentech Perfectly Clear (Version: 1.0.0.106 - Corel Corporation) Hidden
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Corel Corporation)
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Ihr Firmenname) Hidden
AudibleManager (x32 Version: 2001616126.48.56.11996530 - Audible, Inc.)
BenVista PhotoZoom Classic 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
BenVista PhotoZoom Pro 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
Best Of Gehirnjogging (x32 Version: 1.0 - SBT)
Bewerbungsfoto-/Passbild-Generator v3.5c (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (x32 Version:  - )
Canon IJ Network Scan Utility (x32 Version:  - )
Canon IJ Network Tool (x32 Version:  - )
Canon MP Navigator EX 2.0 (x32 Version:  - )
Canon MP620 series MP Drivers (Version:  - )
Canon My Printer (x32 Version:  - )
CCleaner (Version: 4.09 - Piriform)
Cinergy T Stick Black V86.001.1028.2009 (x32 Version: 86.001.1028.2009 - )
ContentHD (x32 Version: 1.00.0002 - Corel Corporation) Hidden
Contents (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.686 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden
Corel KPT Collection (x32 Version: 1.0.0.103 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (x32 Version: 1.6.2.69 - Corel Corporation)
Corel VideoStudio Pro X3 Title Pack (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
CorelDRAW Graphics Suite X5 - BR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - DE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - ES (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM HSE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - NL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - RU (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.3 -  Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version:  - Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 (x32 Version: 15.1 - Corel Corporation) Hidden
CorelDRAW(R) Home & Student Suite X5 (x32 Version: 15.2.0.686 - Corel Corporation)
Creative Content (x32 Version: 1.0.0.103 - Corel Corporation) Hidden
Creative Content (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DeviceIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Duden Korrektor (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
Duden Korrektor Patch 022010 (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
DVD Shrink 3.2 deutsch (x32 Version:  - DVD Shrink)
DxO Optics Pro 5.3.5 (x32 Version: 5.3.5 - DXO Labs)
ElsterFormular-Upgrade (x32 Version: 15.0.13315 - Landesfinanzdirektion Thüringen)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EU Connector Selector (x32 Version: 1.0.0 - Simpson Strong-Tie)
FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion)
FaceFilter v3.02 Standard (x32 Version: 3.02.1506.1 - Reallusion Inc.)
FormatFactory 3.0.1 (x32 Version: 3.0.1 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google SketchUp 8 (x32 Version: 3.0.14358 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GraitecBIM (x32 Version: 1.0.0 - Microsoft)
GraitecBIM (x32 Version: 2.0.0 - GRAITEC GmbH)
HECO® -  HCS (x32 Version: 1.00.0000 - HECO)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (x32 Version: 1 - Microsoft Corporation)
ICA (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.9.0.1001 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Interaktiver Gitarren Workshop v1 (x32 Version:  - Emme)
IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_VS_Pro (x32 Version: 13.0 - Corel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 2 Runtime Environment Standard Edition v1.3.1 (x32 Version:  - )
Java 7 Update 40 (64-bit) (Version: 7.0.400 - Oracle)
Java 7 Update 7 (x32 Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (Version: 6.0.310 - Oracle)
Java(TM) 6 Update 31 (x32 Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LANGMaster.com: Berlitz Englisch (x32 Version:  - )
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Luminance HDR 2.3.0 (Version:  - Luminance HDR Dev Team)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
maxdome - Online Videothek (Version: 1.0 - maxdome GmbH und Co. KG)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
MLE (x32 Version: 1.0.0.23 - Corel Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MyTube BigPack 5 (x32 Version: 5.0.12.1016 - S.A.D.)
Nik Color Efex Pro 3.0 (x32 Version: 1.0.0.53 - Corel Corporation)
Nik Color Efex Pro 3.0 (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PhotoME Beta-Release (x32 Version: 0.8ß2 - Jens Duttke)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
POIbase 1.051 (x32 Version:  - POIbase)
Pošta Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPro64 (Version: 16.1.0.48 - Corel Corporation) Hidden
PureHD (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Radio.fx (x32 Version:  - Tobit.Software)
Realtek Ethernet Controller Driver (x32 Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH)
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH) Hidden
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Setup (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden
Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden
Share (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Share64 (Version: 1.6.0.272 - Corel Corporation) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory) Hidden
Skype Click to Call (x32 Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.10 (x32 Version: 6.10.104 - Skype Technologies S.A.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Steganos Live Encryption Engine 17 (x32 Version: 17.4.1 - Steganos Software GmbH)
Steganos Privacy Suite 14 (x32 Version: 14.2.1 - Steganos Software GmbH)
Stellarium 0.12.3 (Version: 0.12.3 - Stellarium team)
TomTom HOME (x32 Version: 2.9.6 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Corel Corporation)
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Ihr Firmenname) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSClassic (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSPro (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (x32 Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinZip 15.0 (x32 Version: 15.0.9411 - WinZip Computing, S.L. )
WISO Mein Geld 2014 Professional (x32 Version: 16.0.1.0 - Buhl Data Service GmbH) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-01-20 13:51 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {1319148C-2E65-48B9-B99C-811CD0898FAF} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {19A176FE-BDB9-4154-935C-FAF0B1240617} - System32\Tasks\Norton Family\Norton Error Analyzer => C:\Program Files (x86)\Norton Family\Engine\2.9.5.9\SymErr.exe
Task: {2AC2B601-4AF6-4FFD-8B40-CAF1CDFB1D0D} - \Desk 365 RunAsStdUser No Task File
Task: {40F7B732-A6D7-47B4-BE98-82CA8F86948C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {455142F7-F875-44CA-827F-127672100474} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-16] (Adobe Systems Incorporated)
Task: {58898BED-E413-4CF2-BC8C-3E45C52BA7B3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12] (Google Inc.)
Task: {69A859DA-A7D3-4E44-BFB3-8D9D3FE631BB} - System32\Tasks\Norton Family\Norton Error Processor => C:\Program Files (x86)\Norton Family\Engine\2.9.5.9\SymErr.exe
Task: {740105FB-3584-4F01-B32F-8A6B9D3991DF} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03] (Sun Microsystems, Inc.)
Task: {95C50EAA-05EC-49EB-A634-EEF24F34D609} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {A02FDB7B-8CF0-4ABD-92BA-8D0FF446D76D} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {C8C3BB64-E7E0-4A30-BEDE-02761E9C70D1} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {CA4F454B-8E52-4C98-990F-EF139FA631CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12] (Google Inc.)
Task: {E047728A-7CFA-4253-B5C2-3162715C546C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-17 20:19 - 2013-12-17 20:19 - 00049152 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-01-11 12:08 - 2013-01-11 12:08 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-24 17:36 - 2013-01-23 22:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00806664 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\UNO.dll
2013-09-18 09:27 - 2013-03-06 04:04 - 01353688 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Language\DEU\P2GRC.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 01693960 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\authoring\AuroraU.dll
2013-09-18 09:27 - 2011-07-01 13:45 - 00770856 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\mediacache\MediaObj.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00175880 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLVistaAudioMixer.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00302344 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\authoring\EditingMgrWrapperU.dll
2013-09-18 09:27 - 2013-03-05 04:40 - 00626240 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMediaLibrary.dll
2013-03-05 10:41 - 2013-03-05 10:41 - 00015424 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvcPS.dll
2013-11-16 10:35 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Microsoft:63MTnYTFVKeIXoyb7Mgvq
AlternateDataStreams: C:\ProgramData\Microsoft:YPxzmJhbdox4y1D5B644vI
AlternateDataStreams: C:\ProgramData\Temp:A291950B
AlternateDataStreams: C:\Users\Frank\Cookies:rXzof55DOjZlJaDotP8MzEp

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: XAudio
Description: XAudio
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: XAudio
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 04:24:17 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 03:29:07 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 03:23:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/20/2014 03:22:43 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎20.‎01.‎2014 um 15:18:33 unerwartet heruntergefahren.

Error: (01/20/2014 02:40:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.

Error: (01/20/2014 02:39:59 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst eventlog erreicht.

Error: (01/20/2014 02:39:39 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NlaSvc erreicht.

Error: (01/20/2014 02:39:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst MBAMService erreicht.

Error: (01/20/2014 02:37:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-20 13:51:12.604
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-20 13:51:12.544
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-02-29 18:31:43.130
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.123
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.117
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.110
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.103
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.089
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.082
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 20%
Total physical RAM: 16360.17 MB
Available physical RAM: 13000.37 MB
Total Pagefile: 32718.52 MB
Available Pagefile: 29510.85 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:58.52 GB) (Free:5.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:1357.25 GB) (Free:1105.4 GB) NTFS
Drive e: (Recover) (Fixed) (Total:40.01 GB) (Free:21.51 GB) NTFS
Drive h: (Zusatzfestplatte) (Fixed) (Total:1863.01 GB) (Free:619.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 60 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: BADBBADB)
Partition 1: (Not Active) - (Size=-741687164928) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=40 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 5F6C375A)
Partition 1: (Active) - (Size=-198626508800) - (Type=07 NTFS)

==================== End Of Log ============================
         

Alt 20.01.2014, 16:34   #13
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hier als Admin....

Hast recht mit dem Admin...Sorry



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Admin (administrator) on DAHEIM on 20-01-2014 16:32:31
Running from C:\Users\Admin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\HECO\HecoUpdateService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() D:\Tobit Radio.fx\Server\rfx-server.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Windows\SysWOW64\STGRAMDiskHandler64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) D:\Program Files (x86)\Samsung\Kies\Kies.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
(Samsung Electronics Co., Ltd.) D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Corel) C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe
(Steganos Software GmbH) C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\n360.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [IJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE [128352 2007-11-19] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - D:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Standby] - C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe [105632 2009-12-17] (Corel)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvc_P2G8.exe [110144 2013-03-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\VirtualDrive.exe [492096 2013-03-05] (CyberLink Corp.)
HKLM-x32\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Steganos HotKeys] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosHotKeyService.exe [100864 2013-12-18] (Steganos Software GmbH)
HKLM-x32\...\Run: [SSS14 File Redirection Starter] - C:\Program Files (x86)\Steganos Privacy Suite 14\fredirstarter.exe [17920 2013-12-18] (Steganos Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKCU\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKCU\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKCU\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Duden Korrektor SysTray] - C:\Program Files (x86)\Duden\Duden Korrektor\DKtray.exe [336560 2010-10-04] (Expert System S.p.A.)
HKU\Frank\...\Run: [rfxsrvtray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Frank\...\Run: [GoogleDriveSync] - C:\Program Files (x86)\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKU\Frank\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Frank\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Frank\...\Run: [SSS14_Agent] - C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe [2706264 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Frank\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Frank\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Frank\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-07-02] (TomTom)
HKU\Frank\...\Run: [Amazon Cloud Player] - C:\Users\Frank\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3139072 2013-11-24] ()
HKU\Frank\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)
HKU\Frank\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Frank\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [1&1_1&1 Upload-Manager] - C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE [989264 2011-11-21] (1&1 Internet AG)
HKU\Internet\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20551840 2013-10-21] (Skype Technologies S.A.)
HKU\Internet\...\Run: [SSS14 Browser Monitor] - C:\Program Files (x86)\Steganos Privacy Suite 14\SteganosBrowserMonitor.exe [70656 2013-12-18] (Steganos Software GmbH)
HKU\Internet\...\Run: [RfxSrvTray] - D:\Tobit Radio.fx\Client\rfx-tray.exe [1838872 2013-02-07] (Tobit.Software)
HKU\Internet\...\Run: [] - D:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\Internet\...\Run: [KiesPreload] - D:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\Internet\...\Run: [Power2GoExpress8] - D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Power2GoExpress8.exe [1711168 2013-03-05] (CyberLink Corp.)
HKU\Internet\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\Internet\...\Run: [CCleaner Monitoring] - C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar64.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 14\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
DPF: HKLM-x32 {AB9768EC-6B6D-4B38-BDE8-91EF56D70A0C} hxxp://www.heco-calc.com/HecoDMFrame.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\xd076r3v.default-1390040042707
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-16]
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 11\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 14\spmplugin3 [2012-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-09-18]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.0.1.3\IPSFF [2013-10-10]
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.9.5.9\coFFFw\

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-20]

==================== Services (Whitelisted) =================

R2 HecoUpdateSvc; C:\Program Files (x86)\HECO\HecoUpdateService.exe [5792232 2012-10-15] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\N360.exe [264360 2013-10-08] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 Radio.fx; D:\Tobit Radio.fx\Server\rfx-server.exe [3999512 2013-06-03] ()
R2 Steganos Volatile Disk; C:\Windows\SysWOW64\STGRAMDiskHandler64.exe [450560 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2103096 2013-12-18] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\BASHDefs\20140110.001\BHDrvx64.sys [1526488 2013-12-18] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-26] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-26] (CyberLink)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-22] (Symantec Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\IPSDefs\20140117.001\IDSvia64.sys [521944 2013-12-14] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-14] (Microsoft Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\ENG64.SYS [126040 2013-11-13] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.0.1.3\Definitions\VirusDefs\20140119.019\EX64.SYS [2099288 2013-11-13] (Symantec Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [109144 2013-11-18] (Softwareentwicklung Remus - ArchiCrypt - )
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-27] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-07-31] (Symantec Corporation)
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2013-07-17] (Softwareentwicklung Remus - ArchiCrypt.com)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-08-01] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-27] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2013-10-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-07-31] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-26] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S2 mdmxsdk; system32\DRIVERS\ACFSDK64.sys [x]
S2 XAudio; system32\DRIVERS\ACFXAU64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 16:26 - 2014-01-20 16:32 - 00024776 _____ C:\Users\Admin\Desktop\FRST.txt
2014-01-20 16:26 - 2014-01-20 16:26 - 00038701 _____ C:\Users\Admin\Desktop\Addition.txt
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Malwarebytes
2014-01-20 15:25 - 2014-01-20 15:27 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:46 - 2014-01-20 13:53 - 00000000 ____D C:\ComboFix
2014-01-20 13:26 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-20 13:26 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-20 13:26 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-20 13:26 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-20 13:24 - 2014-01-20 13:53 - 00000000 ____D C:\Qoobox
2014-01-20 13:23 - 2014-01-20 13:52 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 10:08 - 2014-01-20 10:11 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 10:55 - 2014-01-20 15:22 - 00007824 _____ C:\Windows\PFRO.log
2014-01-18 14:25 - 2014-01-20 15:22 - 00002408 _____ C:\Windows\setupact.log
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:24 - 2014-01-20 16:15 - 00086773 _____ C:\Windows\WindowsUpdate.log
2014-01-18 14:19 - 2014-01-20 14:01 - 00000000 ____D C:\AdwCleaner
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:11 - 2014-01-18 11:14 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:57 - 2014-01-20 07:40 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:47 - 2014-01-16 12:48 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-15 18:21 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:21 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:21 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 18:21 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-10 15:29 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-10 15:29 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-10 15:29 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-10 15:29 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-10 15:29 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-10 15:29 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:24 - 2014-01-03 17:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:29 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:13 - 2014-01-02 18:19 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 18:13 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:44 - 2014-01-16 13:03 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2013-12-18 10:01 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-02 13:44 - 2013-12-18 10:01 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-02 13:44 - 2013-12-18 10:01 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-02 13:43 - 2014-01-02 13:46 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:42 - 2014-01-02 13:43 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2013-12-27 09:01 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-27 09:01 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 10:56 - 2014-01-18 14:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2013-12-26 10:53 - 2013-12-26 11:01 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 12:39 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-22 12:37 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-22 12:37 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk

==================== One Month Modified Files and Folders =======

2014-01-20 16:32 - 2014-01-20 16:26 - 00024776 _____ C:\Users\Admin\Desktop\FRST.txt
2014-01-20 16:27 - 2011-10-12 19:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 16:27 - 2011-10-12 19:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 16:26 - 2014-01-20 16:26 - 00038701 _____ C:\Users\Admin\Desktop\Addition.txt
2014-01-20 16:20 - 2012-03-30 19:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 16:15 - 2014-01-18 14:24 - 00086773 _____ C:\Windows\WindowsUpdate.log
2014-01-20 16:15 - 2012-12-09 14:04 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Skype
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Malwarebytes
2014-01-20 15:34 - 2012-05-05 16:48 - 00000000 ___RD C:\Users\Frank\Google Drive
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:30 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 15:28 - 2011-03-11 10:20 - 00700486 _____ C:\Windows\system32\perfh007.dat
2014-01-20 15:28 - 2011-03-11 10:20 - 00150124 _____ C:\Windows\system32\perfc007.dat
2014-01-20 15:28 - 2009-07-14 06:13 - 01624178 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 15:27 - 2014-01-20 15:25 - 00050319 _____ C:\Users\Admin\Downloads\FRST.txt
2014-01-20 15:24 - 2014-01-20 15:24 - 02076672 _____ (Farbar) C:\Users\Admin\Downloads\FRST64(1).exe
2014-01-20 15:22 - 2014-01-19 10:55 - 00007824 _____ C:\Windows\PFRO.log
2014-01-20 15:22 - 2014-01-18 14:25 - 00002408 _____ C:\Windows\setupact.log
2014-01-20 15:22 - 2011-06-29 16:31 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 14:35 - 2014-01-20 14:35 - 02076672 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Admin\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-20 14:32 - 2014-01-20 14:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-20 14:32 - 2014-01-20 14:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-20 14:25 - 2014-01-20 14:25 - 00000850 _____ C:\Users\Admin\Desktop\JRT.txt
2014-01-20 14:21 - 2014-01-20 14:21 - 00000000 ____D C:\Windows\ERUNT
2014-01-20 14:18 - 2014-01-20 14:18 - 01037068 _____ (Thisisu) C:\Users\Admin\Desktop\JRT.exe
2014-01-20 14:16 - 2014-01-20 14:16 - 00000000 ____D C:\Users\Admin\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\Users\Frank\AppData\Roaming\1&1
2014-01-20 14:02 - 2014-01-20 14:02 - 00000000 ____D C:\ProgramData\1&1
2014-01-20 14:01 - 2014-01-18 14:19 - 00000000 ____D C:\AdwCleaner
2014-01-20 13:53 - 2014-01-20 13:53 - 00037728 _____ C:\ComboFix.txt
2014-01-20 13:53 - 2014-01-20 13:46 - 00000000 ____D C:\ComboFix
2014-01-20 13:53 - 2014-01-20 13:24 - 00000000 ____D C:\Qoobox
2014-01-20 13:53 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2014-01-20 13:52 - 2014-01-20 13:23 - 00000000 ____D C:\Windows\erdnt
2014-01-20 13:51 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-20 13:21 - 2012-02-05 11:44 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2014-01-20 13:01 - 2014-01-20 13:01 - 00000000 ____D C:\FRST
2014-01-20 11:57 - 2013-02-16 16:32 - 00000000 ____D C:\Users\Internet\AppData\Local\CrashDumps
2014-01-20 10:11 - 2014-01-20 10:08 - 00000000 ____D C:\Users\Frank\AppData\Roaming\QuickScan
2014-01-20 09:51 - 2011-10-23 17:25 - 00000000 ____D C:\Users\Internet\AppData\Roaming\TuneUp Software
2014-01-20 09:46 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-20 07:53 - 2011-10-23 17:05 - 00000000 ____D C:\Users\Internet
2014-01-20 07:41 - 2011-10-12 18:18 - 00000000 ____D C:\Users\Frank
2014-01-20 07:40 - 2014-01-18 10:57 - 00000000 ____D C:\Users\Admin\AppData\Local\NPE
2014-01-20 07:23 - 2014-01-20 07:23 - 00000000 ____D C:\ProgramData\SMR410
2014-01-20 07:13 - 2011-10-12 20:18 - 00000000 ____D C:\Users\Frank\AppData\Local\Windows Live
2014-01-19 13:01 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin
2014-01-19 13:00 - 2014-01-19 13:00 - 00000490 _____ C:\Users\Frank\Documents\cc_20140119_130055.reg
2014-01-19 11:08 - 2011-10-13 17:25 - 00000000 ____D C:\Program Files (x86)\CSI
2014-01-18 14:25 - 2014-01-18 14:25 - 00000000 _____ C:\Windows\setuperr.log
2014-01-18 14:20 - 2013-12-26 10:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Uniblue
2014-01-18 14:20 - 2013-09-18 06:32 - 00001083 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-18 14:20 - 2011-11-07 21:01 - 00000999 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-18 14:20 - 2011-10-12 20:15 - 00001053 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-18 14:19 - 2014-01-18 14:19 - 01236282 _____ C:\Users\Admin\Downloads\adwcleaner_3.017.exe
2014-01-18 11:14 - 2014-01-18 11:11 - 00000000 ____D C:\Users\Admin\Desktop\Alte Firefox-Daten
2014-01-18 10:58 - 2011-10-12 19:58 - 00000000 ____D C:\ProgramData\Norton
2014-01-17 16:26 - 2013-01-09 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\Documents\Add-in Express
2014-01-17 15:56 - 2014-01-17 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Duden
2014-01-17 15:54 - 2014-01-17 15:54 - 00002646 _____ C:\Users\Admin\Documents\cc_20140117_155437.reg
2014-01-16 13:47 - 2011-10-12 20:45 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2014-01-16 13:09 - 2014-01-16 13:09 - 18291784 _____ (AVM Berlin                                                  ) C:\Users\Admin\Downloads\FRITZ!fax_3.07.04.exe
2014-01-16 13:03 - 2014-01-02 13:44 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2014
2014-01-16 12:55 - 2014-01-16 12:55 - 01069512 _____ (Solid State Networks) C:\Users\Admin\Downloads\install_flashplayer12x32au_mssd_aaa_aih.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 12:55 - 2012-03-30 19:33 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-16 12:55 - 2012-03-22 11:08 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2014-01-16 12:55 - 2011-10-12 19:03 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 12:49 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2014-01-16 12:48 - 2014-01-16 12:47 - 00000000 ____D C:\Users\Admin\Documents\Fax
2014-01-16 12:20 - 2012-09-18 12:59 - 00000000 ____D C:\ProgramData\DriverGenius
2014-01-16 11:50 - 2011-10-14 17:41 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-16 11:30 - 2014-01-16 11:30 - 00000000 ____D C:\Users\Frank\AppData\Local\PDF24
2014-01-16 11:27 - 2014-01-16 11:27 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0(1).exe
2014-01-16 11:26 - 2014-01-16 11:26 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Admin\Downloads\pdf24-creator-6.2.0.exe
2014-01-16 09:47 - 2011-12-29 13:23 - 00000731 _____ C:\Users\Frank\Sti_Trace.log
2014-01-15 19:24 - 2013-08-03 15:48 - 00496160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 19:10 - 2013-08-07 13:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 19:10 - 2011-10-12 19:16 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 19:08 - 2011-03-14 15:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 18:35 - 2014-01-12 18:35 - 00089582 _____ C:\Users\Frank\Documents\cc_20140112_183546.reg
2014-01-12 18:35 - 2011-10-12 20:22 - 00000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2014-01-10 15:31 - 2011-06-29 16:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-05 13:22 - 2011-10-14 17:39 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-05 13:19 - 2014-01-05 13:19 - 00008999 _____ C:\Users\Frank\Documents\Tanken.xls
2014-01-05 12:44 - 2011-06-29 16:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-05 12:36 - 2012-09-21 18:04 - 00000000 ____D C:\Program Files\Intel
2014-01-05 12:36 - 2011-06-29 16:31 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-05 12:32 - 2013-01-02 10:20 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-05 12:31 - 2014-01-05 12:31 - 00000000 ____D C:\Users\Public\Documents\DriverGenius
2014-01-03 17:28 - 2014-01-03 17:24 - 00000000 ____D C:\Users\Admin\AppData\Local\Audible
2014-01-03 17:17 - 2011-11-04 15:56 - 00000000 ____D C:\Users\Frank\AppData\Roaming\Apple Computer
2014-01-02 18:29 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\AppData\Local\Audible
2014-01-02 18:19 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Frank\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Internet\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Frank\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00001969 _____ C:\Users\Admin\Desktop\Audible Manager.lnk
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Users\Admin\Documents\Audible
2014-01-02 18:13 - 2014-01-02 18:13 - 00000000 ____D C:\Program Files (x86)\Audible
2014-01-02 13:56 - 2014-01-02 13:56 - 00000490 _____ C:\Users\Frank\Documents\cc_20140102_135632.reg
2014-01-02 13:52 - 2011-10-14 17:39 - 00000000 ____D C:\Users\Frank\AppData\Roaming\TuneUp Software
2014-01-02 13:46 - 2014-01-02 13:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-02 13:44 - 2014-01-02 13:44 - 00002213 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-01-02 13:44 - 2014-01-02 13:44 - 00002193 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-01-02 13:44 - 2011-12-12 18:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-01-02 13:43 - 2014-01-02 13:42 - 55380392 _____ (TuneUp Software) C:\Users\Admin\Downloads\TuneUpUtilities2014.exe
2014-01-02 13:43 - 2012-09-18 06:21 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2014-01-02 13:16 - 2011-11-07 21:01 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2014-01-02 13:14 - 2013-11-19 19:50 - 00000000 ____D C:\Users\Admin\AppData\Local\NVIDIA Corporation
2013-12-27 07:08 - 2013-12-27 07:08 - 00089166 _____ C:\Users\Frank\Documents\cc_20131227_070855.reg
2013-12-26 11:10 - 2013-12-26 11:10 - 00034084 _____ C:\Users\Admin\Documents\cc_20131226_111046.reg
2013-12-26 11:09 - 2012-08-05 17:23 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 11:09 - 2011-03-14 15:03 - 00000000 ____D C:\Windows\Panther
2013-12-26 11:07 - 2012-08-05 17:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-26 11:01 - 2013-12-26 10:53 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-12-26 11:00 - 2011-11-07 21:01 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\AppData\Local\cache
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 ____D C:\Users\Admin\.android
2013-12-26 10:53 - 2013-12-26 10:53 - 00000000 _____ C:\Users\Admin\daemonprocess.txt
2013-12-22 18:54 - 2012-02-12 17:15 - 00006144 _____ C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-22 12:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-22 11:32 - 2013-09-23 16:40 - 00002216 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-22 11:32 - 2011-10-12 18:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-21 12:28 - 2013-12-21 12:28 - 00001111 _____ C:\Users\Public\Desktop\Privacy Suite Hauptmenü.lnk
2013-12-21 12:28 - 2012-12-27 11:32 - 00000000 ____D C:\Program Files (x86)\Steganos Privacy Suite 14

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 12:00

==================== End Of Log ============================
         
--- --- ---


und

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Admin at 2014-01-20 16:32:47
Running from C:\Users\Admin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton 360 (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton 360 (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton 360 (Enabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
1&1 Upload-Manager (x32 Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1030 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (Version: 4.4.1 - Adobe)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.17.3042.73586 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (x32 Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Athentech Perfectly Clear (Version: 1.0.0.106 - Corel Corporation) Hidden
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Corel Corporation)
Athentech Perfectly Clear (x32 Version: 1.0.0.106 - Ihr Firmenname) Hidden
AudibleManager (x32 Version: 2001616126.48.56.11996530 - Audible, Inc.)
BenVista PhotoZoom Classic 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
BenVista PhotoZoom Pro 4.1.4 (HKCU Version: 4.1.4 - BenVista Ltd.)
Best Of Gehirnjogging (x32 Version: 1.0 - SBT)
Bewerbungsfoto-/Passbild-Generator v3.5c (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-PhotoPrint EX (x32 Version:  - )
Canon IJ Network Scan Utility (x32 Version:  - )
Canon IJ Network Tool (x32 Version:  - )
Canon MP Navigator EX 2.0 (x32 Version:  - )
Canon MP620 series MP Drivers (Version:  - )
Canon My Printer (x32 Version:  - )
CCleaner (Version: 4.09 - Piriform)
Cinergy T Stick Black V86.001.1028.2009 (x32 Version: 86.001.1028.2009 - )
ContentHD (x32 Version: 1.00.0002 - Corel Corporation) Hidden
Contents (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.0.686 - Corel Corporation)
Corel Graphics - Windows Shell Extension (x32 Version: 15.2.686 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 64 Bit (Version: 15.2.686 - Corel Corporation) Hidden
Corel KPT Collection (x32 Version: 1.0.0.103 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Corel VideoStudio Pro X3 (x32 Version: 1.6.2.69 - Corel Corporation)
Corel VideoStudio Pro X3 Title Pack (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
CorelDRAW Graphics Suite X5 - BR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Capture (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Common (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Connect (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Custom Data (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - CZ (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - DE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Draw (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - EN (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - ES (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Filters (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FontNav (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - FR (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IPM HSE (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - IT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - NL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Photozoom Plugin (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - PL (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Redist (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - RU (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - Setup Files (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - VideoBrowser (x32 Version: 15.3 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X5 - WT (x32 Version: 15.3 -  Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version:  - Corel Corporation)
CorelDRAW Home & Student Suite X5 - Extra Content (x32 Version: 15.0 - Corel Corporation) Hidden
CorelDRAW Home & Student Suite X5 (x32 Version: 15.1 - Corel Corporation) Hidden
CorelDRAW(R) Home & Student Suite X5 (x32 Version: 15.2.0.686 - Corel Corporation)
Creative Content (x32 Version: 1.0.0.103 - Corel Corporation) Hidden
Creative Content (x32 Version: 1.0.0.103 - Ihr Firmenname) Hidden
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126b - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.)
CyberLink WaveEditor 2 (x32 Version: 2.0.3206 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DeviceIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Duden Korrektor (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
Duden Korrektor Patch 022010 (x32 Version: 7.00.0000 - Bibliographisches Institut GmbH)
DVD Shrink 3.2 deutsch (x32 Version:  - DVD Shrink)
DxO Optics Pro 5.3.5 (x32 Version: 5.3.5 - DXO Labs)
ElsterFormular-Upgrade (x32 Version: 15.0.13315 - Landesfinanzdirektion Thüringen)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
EU Connector Selector (x32 Version: 1.0.0 - Simpson Strong-Tie)
FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion)
FaceFilter v3.02 Standard (x32 Version: 3.02.1506.1 - Reallusion Inc.)
FormatFactory 3.0.1 (x32 Version: 3.0.1 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Drive (x32 Version: 1.13.5782.599 - Google, Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google SketchUp 8 (x32 Version: 3.0.14358 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GraitecBIM (x32 Version: 1.0.0 - Microsoft)
GraitecBIM (x32 Version: 2.0.0 - GRAITEC GmbH)
HECO® -  HCS (x32 Version: 1.00.0000 - HECO)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (x32 Version: 1 - Microsoft Corporation)
ICA (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.9.0.1001 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
Interaktiver Gitarren Workshop v1 (x32 Version:  - Emme)
IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_VS_Pro (x32 Version: 13.0 - Corel Corporation) Hidden
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 2 Runtime Environment Standard Edition v1.3.1 (x32 Version:  - )
Java 7 Update 40 (64-bit) (Version: 7.0.400 - Oracle)
Java 7 Update 7 (x32 Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (64-bit) (Version: 6.0.310 - Oracle)
Java(TM) 6 Update 31 (x32 Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LANGMaster.com: Berlitz Englisch (x32 Version:  - )
Logitech SetPoint 6.61 (Version: 6.61.15 - Logitech)
Luminance HDR 2.3.0 (Version:  - Luminance HDR Dev Team)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
maxdome - Online Videothek (Version: 1.0 - maxdome GmbH und Co. KG)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (Version: 16.4.1970.0624 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (x32 Version: 9.0.30729 - Microsoft Corporation)
MLE (x32 Version: 1.0.0.23 - Corel Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MyTube BigPack 5 (x32 Version: 5.0.12.1016 - S.A.D.)
Nik Color Efex Pro 3.0 (x32 Version: 1.0.0.53 - Corel Corporation)
Nik Color Efex Pro 3.0 (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Norton 360 (x32 Version: 21.1.0.18 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PhotoME Beta-Release (x32 Version: 0.8ß2 - Jens Duttke)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
POIbase 1.051 (x32 Version:  - POIbase)
Pošta Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPro64 (Version: 16.1.0.48 - Corel Corporation) Hidden
PureHD (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Radio.fx (x32 Version:  - Tobit.Software)
Realtek Ethernet Controller Driver (x32 Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH)
Saal Design Software (x32 Version: 3.2.18 - SSW Software GmbH) Hidden
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.3.13043_14 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Setup (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden
Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden
Share (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Share64 (Version: 1.6.0.272 - Corel Corporation) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio 3.1 SE (x32 Version: 3 - Ichikawa Soft Laboratory) Hidden
Skype Click to Call (x32 Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.10 (x32 Version: 6.10.104 - Skype Technologies S.A.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Steganos Live Encryption Engine 17 (x32 Version: 17.4.1 - Steganos Software GmbH)
Steganos Privacy Suite 14 (x32 Version: 14.2.1 - Steganos Software GmbH)
Stellarium 0.12.3 (Version: 0.12.3 - Stellarium team)
TomTom HOME (x32 Version: 2.9.6 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.179 - TuneUp Software) Hidden
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Corel Corporation)
Ultimate Creative Collection (X6) (x32 Version: 1.0.0.107 - Ihr Firmenname) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VIO (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSClassic (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
VSPro (x32 Version: 1.6.0.272 - Corel Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (x32 Version:  - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinZip 15.0 (x32 Version: 15.0.9411 - WinZip Computing, S.L. )
WISO Mein Geld 2014 Professional (x32 Version: 16.0.1.0 - Buhl Data Service GmbH) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-01-20 13:51 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {1319148C-2E65-48B9-B99C-811CD0898FAF} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {19A176FE-BDB9-4154-935C-FAF0B1240617} - System32\Tasks\Norton Family\Norton Error Analyzer => C:\Program Files (x86)\Norton Family\Engine\2.9.5.9\SymErr.exe
Task: {2AC2B601-4AF6-4FFD-8B40-CAF1CDFB1D0D} - \Desk 365 RunAsStdUser No Task File
Task: {40F7B732-A6D7-47B4-BE98-82CA8F86948C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {455142F7-F875-44CA-827F-127672100474} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-16] (Adobe Systems Incorporated)
Task: {58898BED-E413-4CF2-BC8C-3E45C52BA7B3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12] (Google Inc.)
Task: {69A859DA-A7D3-4E44-BFB3-8D9D3FE631BB} - System32\Tasks\Norton Family\Norton Error Processor => C:\Program Files (x86)\Norton Family\Engine\2.9.5.9\SymErr.exe
Task: {740105FB-3584-4F01-B32F-8A6B9D3991DF} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03] (Sun Microsystems, Inc.)
Task: {95C50EAA-05EC-49EB-A634-EEF24F34D609} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\SymErr.exe [2013-08-01] (Symantec Corporation)
Task: {A02FDB7B-8CF0-4ABD-92BA-8D0FF446D76D} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {C8C3BB64-E7E0-4A30-BEDE-02761E9C70D1} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.1.0.18\WSCStub.exe [2013-10-08] (Symantec Corporation)
Task: {CA4F454B-8E52-4C98-990F-EF139FA631CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-12] (Google Inc.)
Task: {E047728A-7CFA-4253-B5C2-3162715C546C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-17 20:19 - 2013-12-17 20:19 - 00049152 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-01-11 12:08 - 2013-01-11 12:08 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-24 17:36 - 2013-01-23 22:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00806664 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\UNO.dll
2013-09-18 09:27 - 2013-03-06 04:04 - 01353688 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\Language\DEU\P2GRC.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 01693960 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\authoring\AuroraU.dll
2013-09-18 09:27 - 2011-07-01 13:45 - 00770856 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\mediacache\MediaObj.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00175880 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLVistaAudioMixer.dll
2013-09-18 09:27 - 2013-04-09 09:14 - 00302344 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\runtime\authoring\EditingMgrWrapperU.dll
2013-09-18 09:27 - 2013-03-05 04:40 - 00626240 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMediaLibrary.dll
2013-03-05 10:41 - 2013-03-05 10:41 - 00015424 _____ () D:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8\CLMLSvcPS.dll
2013-11-16 10:35 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Microsoft:63MTnYTFVKeIXoyb7Mgvq
AlternateDataStreams: C:\ProgramData\Microsoft:YPxzmJhbdox4y1D5B644vI
AlternateDataStreams: C:\ProgramData\Temp:A291950B
AlternateDataStreams: C:\Users\Frank\Cookies:rXzof55DOjZlJaDotP8MzEp

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: XAudio
Description: XAudio
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: XAudio
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 04:24:17 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 03:29:07 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (01/20/2014 03:23:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (01/20/2014 03:22:43 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎20.‎01.‎2014 um 15:18:33 unerwartet heruntergefahren.

Error: (01/20/2014 02:40:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.

Error: (01/20/2014 02:39:59 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst eventlog erreicht.

Error: (01/20/2014 02:39:39 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst NlaSvc erreicht.

Error: (01/20/2014 02:39:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst MBAMService erreicht.

Error: (01/20/2014 02:37:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Steganos Volatile Disk konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-20 13:51:12.604
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-20 13:51:12.544
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-02-29 18:31:43.130
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.123
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.117
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.110
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.103
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.089
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-29 18:31:43.082
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\1&1\1&1 Upload-Manager\SHNDLERS64.DLL" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 20%
Total physical RAM: 16360.17 MB
Available physical RAM: 13035.09 MB
Total Pagefile: 32718.52 MB
Available Pagefile: 29538.65 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:58.52 GB) (Free:5.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:1357.25 GB) (Free:1105.38 GB) NTFS
Drive e: (Recover) (Fixed) (Total:40.01 GB) (Free:21.51 GB) NTFS
Drive h: (Zusatzfestplatte) (Fixed) (Total:1863.01 GB) (Free:619.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 60 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: BADBBADB)
Partition 1: (Not Active) - (Size=-741687164928) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=40 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 5F6C375A)
Partition 1: (Active) - (Size=-198626508800) - (Type=07 NTFS)

==================== End Of Log ============================
         

Alt 20.01.2014, 16:42   #14
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 20.01.2014, 20:26   #15
wolfgos
 
National Zoom entfernt jetzt aber Fehlermeldung - Standard

National Zoom entfernt jetzt aber Fehlermeldung



Hier...

Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.20.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Admin :: DAHEIM [Administrator]

Schutz: Aktiviert

20.01.2014 17:19:23
mbam-log-2014-01-20 (17-19-23).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 298625
Laufzeit: 2 Minute(n), 31 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         
Eset arrrrrrbeitet....

Er hat bereits 2 infizierte Files gefunden...nach gut 1 Stunde....ist aber erst bei 28%....warum findet Norton diese nicht?

Hier das Ergebnis von ESET

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=7c26901f9c07134e9dc39e1aac928bed
# engine=16721
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-20 05:18:47
# local_time=2014-01-20 06:18:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=3592 16777213 100 88 13206 140900823 0 0
# compatibility_mode=5893 16776574 100 94 16510512 141868177 0 0
# scanned=128061
# found=1
# cleaned=0
# scan_time=2421
sh=DAD96DF0E6692C2845238C229E29894F428437D7 ft=0 fh=0000000000000000 vn="HTML/Iframe.B.Gen virus" ac=I fn="C:\Users\Frank\AppData\Local\Microsoft\Windows Live Mail\Storage Folders (1)\Wiederherge  29\07-14-2012  823\Online (wol 1ce\Gelöschte O bde\1EE83001-2BDEFFA3.eml"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=7c26901f9c07134e9dc39e1aac928bed
# engine=16721
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-20 07:16:06
# local_time=2014-01-20 08:16:06 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=3592 16777213 100 88 8290 140907862 0 0
# compatibility_mode=5893 16776574 100 94 16517551 141875216 0 0
# scanned=361747
# found=2
# cleaned=0
# scan_time=6918
sh=DAD96DF0E6692C2845238C229E29894F428437D7 ft=0 fh=0000000000000000 vn="HTML/Iframe.B.Gen virus" ac=I fn="C:\Users\Frank\AppData\Local\Microsoft\Windows Live Mail\Storage Folders (1)\Wiederherge  29\07-14-2012  823\Online (wol 1ce\Gelöschte O bde\1EE83001-2BDEFFA3.eml"
sh=0B4DA78AFF0951A1E52735135F99E75CF1679416 ft=1 fh=d43ca042dc284665 vn="multiple threats" ac=I fn="D:\Ablage\Downloads\setup(1).exe"
         

Antwort

Themen zu National Zoom entfernt jetzt aber Fehlermeldung
admin, adware.linkular, appdata, benutzer, dll, einzelne, entferne, entfernen, fehlermeldung, melde, mobogenie, mobogenie entfernen, modul, national, nationzoom, nationzoom entfernen, newnext, norton 360, problem, roaming, rundll, scan, users, virus, vollständige



Ähnliche Themen: National Zoom entfernt jetzt aber Fehlermeldung


  1. Nation Zoom zuerst jetzt hab ich mehrere Trojaner Viren USW auf meinem pc
    Plagegeister aller Art und deren Bekämpfung - 28.03.2014 (8)
  2. Hatte den Trojaner Nation zoom-jetzt fehlen mir Treiber
    Plagegeister aller Art und deren Bekämpfung - 04.02.2014 (17)
  3. "Nation Zoom" scheint nicht vollständig entfernt zu sein
    Log-Analyse und Auswertung - 26.01.2014 (7)
  4. Virus National Zoom
    Log-Analyse und Auswertung - 18.12.2013 (4)
  5. GVU/BKA Trojaner entfernt und jetzt?
    Plagegeister aller Art und deren Bekämpfung - 20.07.2012 (5)
  6. GVU-Trojaner erfolgreich entfernt?! Und jetzt?!
    Plagegeister aller Art und deren Bekämpfung - 11.07.2012 (2)
  7. BKA Trojaner (National Cyber Crimes Unit) - OTLPE endet mit Fehlermeldung OUT OF MEMORY
    Plagegeister aller Art und deren Bekämpfung - 24.04.2012 (12)
  8. Trojaner entfernt und jetzt?
    Plagegeister aller Art und deren Bekämpfung - 14.02.2012 (1)
  9. Bundespolizeitrojaner entfernt und nun Logdatei erstellt. Was jetzt?
    Plagegeister aller Art und deren Bekämpfung - 06.12.2011 (1)
  10. HDD Low virus entfernt, jetzt keine Internetverbindung
    Log-Analyse und Auswertung - 01.01.2011 (19)
  11. AV Security Suite entfernt - PC jetzt sicher?
    Plagegeister aller Art und deren Bekämpfung - 13.09.2010 (10)
  12. Security Manager AV - entfernt mit Malwarebytes - jetzt ok?
    Plagegeister aller Art und deren Bekämpfung - 05.08.2010 (5)
  13. MS Antispyware entfernt, jetzt is es SystemSecurity, was hilft?
    Mülltonne - 26.12.2008 (0)
  14. W32/Virut.AX entfernt - jetzt Probleme mit Zugriffen
    Mülltonne - 26.12.2008 (0)
  15. Trojaner entfernt - Rechner jetzt langsam
    Log-Analyse und Auswertung - 12.11.2008 (5)
  16. Newdotnet entfernt, aber jetzt kommt das problem..
    Plagegeister aller Art und deren Bekämpfung - 14.10.2007 (7)
  17. VX2 entfernt jetzt Sauber?
    Log-Analyse und Auswertung - 11.02.2006 (2)

Zum Thema National Zoom entfernt jetzt aber Fehlermeldung - Hallo, ich hatte leider den Virus national zoom . Mein Norton 360 hat leider nicht darauf reagiert und auch beim Vollständigen scan ist er darüber gelaufen. Habe ihn aber mit - National Zoom entfernt jetzt aber Fehlermeldung...
Archiv
Du betrachtest: National Zoom entfernt jetzt aber Fehlermeldung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.