Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: OTL logfiles

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 01.03.2014, 16:41   #1
holzi24
 
OTL logfiles - Standard

OTL logfiles



hallo,
bei mir am pc geht garnix mehr ich kann kein virus programm drauf machen ,garnix mehr meine windows ist schrott habe definitiv n virus drauf nun habe ich mir mal OTl runtergeladen und gescannt ..nun wäre es nett wenn mir iwer helfen könnte
Angehängte Dateien
Dateityp: txt Extras.Txt (92,7 KB, 136x aufgerufen)

Alt 01.03.2014, 17:47   #2
schrauber
/// the machine
/// TB-Ausbilder
 

OTL logfiles - Standard

OTL logfiles



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.




Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 02.03.2014, 13:13   #3
holzi24
 
OTL logfiles - Standard

OTL logfiles



FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2014 01
Ran by Holzii (administrator) on HOLZII-PC on 02-03-2014 13:06:38
Running from D:\
Windows 7 Ultimate (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
() C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
() C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\HomeTab\WBrowserProductivity.exe
() D:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Users\Holzii\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) D:\Program Files (x86)\firefox\firefox.exe
(Mozilla Corporation) D:\Program Files (x86)\firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
() C:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exe
() C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTSS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Ocs_SM] - C:\Users\Holzii\AppData\Roaming\OCS\SM\SearchAnonymizer.exe [106496 2013-02-07] (OCS)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [OODefragTray] - C:\Program Files\OO Software\Defrag\oodtray.exe [4464936 2013-11-05] (O&O Software GmbH)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\.DEFAULT\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [17148552 2012-02-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {324bd437-790a-11e2-b695-0030678f9f36} - E:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {56437103-b629-11e1-92cd-0030678f9f36} - I:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {7a07b690-b62b-11e1-989d-0030678f9f36} - I:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {7a07b887-b62b-11e1-989d-0030678f9f36} - I:\ICM_Manager.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {7a07b88f-b62b-11e1-989d-0030678f9f36} - G:\ICM_Manager.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {7a07b892-b62b-11e1-989d-0030678f9f36} - G:\ICM_Manager.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {813e6870-7ac6-11e2-ab99-0030678f9f36} - E:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {8f3d4f3f-61dd-11e1-92f2-0030678f9f36} - F:\Autorun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {8f3d4ffb-61dd-11e1-92f2-0030678f9f36} - I:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {a0cb5bec-784e-11e2-abf6-0030678f9f36} - E:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {a0cb5c1a-784e-11e2-abf6-0030678f9f36} - E:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {a0cb5c2b-784e-11e2-abf6-0030678f9f36} - G:\AutoRun.exe
HKU\S-1-5-21-3334306725-649526120-2849448715-1001\...\MountPoints2: {e84f7611-eabf-11e1-b34e-0030678f9f36} - I:\Setup.exe
Startup: C:\Users\Holzii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6046E020DFF0CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.qvo6.com/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.qvo6.com/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.qvo6.com/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.qvo6.com/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&st=chrome&q=
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=slbnew&from=slbnew&uid=395049983_1052499_EC40AA7D&ts=1376043640
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=342&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1376042655157&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.9&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKLM-x32 - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197&type=dsse
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=342&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10011&barid={B1002E70-4AEA-11E2-A37D-0030678F9F36}
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D267372633D49452D536561726368426F7826464F524D3D494538535243&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&k=0
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.9&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKCU - {1259C933-C79A-47A1-B94B-D9676C4345BC} URL = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKCU - {38AD3F04-3863-4781-812C-6F5E5FE432FD} URL = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E6963712E636F6D2F7365617263682F726573756C74732E7068703F713D7B7365617263685465726D737D2663685F69643D6F7364&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&k=0
SearchScopes: HKCU - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://de.search.yahoo.com/search/?p={searchTerms}&fr=vc_trans_de_8197&type=dsse
SearchScopes: HKCU - {794DF4DF-45FF-4573-B16A-A2F7B5FC098F} URL = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {813CD2D6-8A60-4BAC-95F3-144777D3698F} URL = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {822ACCE9-8D55-4C48-A64A-9BF8567A3126} URL = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {9A5888B4-6F89-491B-B9CF-ABCDF4863124} URL = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&mode=bounce&k=0
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com.anonymize-me.de/?anonymto=687474703A2F2F6474732E7365617263682D726573756C74732E636F6D2F73723F7372633D6965622661707069643D3334322673797374656D69643D3430362673723D3026713D7B7365617263685465726D737D&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&k=0
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
SearchScopes: HKCU - {BDE905CF-3045-4C8A-81FE-0ED4EBD757A9} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=DVS2&o=1586&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^AAA&apn_dtid=^YYYYYY^YY^DE&apn_uid=B5424A99-CCCB-41C6-9996-13646583383F&apn_sauid=A9ECD7C0-3602-4E8F-81B6-499B429A5149
SearchScopes: HKCU - {CBF38B65-6227-4D5B-9DC9-8C6493241C68} URL = hxxp://search.softonic.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E736F66746F6E69632E636F6D2F494E46313230355430312F74625F76313F713D7B7365617263685465726D737D26536561726368536F757263653D342663633D26723D363934&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&k=0
SearchScopes: HKCU - {DC51887C-E9FD-4EC4-8992-9645DCFDC843} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com.anonymize-me.de/?anonymto=687474703A2F2F7365617263682E7377656574696D2E636F6D2F7365617263682E6173703F7372633D3626713D7B7365617263685465726D737D266372673D332E313031303030302E31303031312662617269643D7B42313030324537302D344145412D313145322D413337442D3030333036373846394633367D&st={searchTerms}&clid=f5053f64-c816-49ad-970b-15f91fdbddc9&pid=sharewarede&k=0
BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files (x86)\Searchqu Toolbar\Datamngr\x64\BrowserConnection.dll (Bandoo Media, inc)
BHO: HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.)
BHO-x32: ICQ Sparberater - {0766C1B9-B2DC-46E5-8934-4F3D6B42B1BD} - C:\Program Files (x86)\icq\Internet Explorer\icq.dll (solute gmbh)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
BHO-x32: DealPly Shopping - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly)
BHO-x32: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files (x86)\Searchqu Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc)
BHO-x32: HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files (x86)\HomeTab\IE\HomeTab.dll (Simply Tech LTD.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\bh\Softonic.dll (Softonic.com)
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO-x32: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)
BHO-x32: Yontoo - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM - HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files\HomeTab\IE\HomeTab.dll (Simply Tech LTD.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} -  No File
Toolbar: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM-x32 - loadtbs - {DFEFCDEE-CF1A-4FC8-88AD-129872198372} - C:\Users\Holzii\AppData\Roaming\loadtbs\toolbar.dll (InfiniAd GmbH)
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.6.7.4\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM-x32 - HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Program Files (x86)\HomeTab\IE\HomeTab.dll (Simply Tech LTD.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default
FF user.js: detected! => C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\user.js
FF NewTab: about:home
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF SelectedSearchEngine: Web Search
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=3 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF Plugin-x32: @tools.dpliveupdate.com/DealPlyLive Update;version=9 - C:\Program Files (x86)\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npmieze.dll (InfiniAd GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\357bf436-f519-4758-a5d7-b186fc27bf4a.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\{4A451753-6F5B-4736-B948-BFD826BF3BAE}.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\{515E7463-A228-4288-8A65-032B1CDDA572}.xml
FF SearchPlugin: C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\searchplugins\{9B5AA658-4CBB-46DC-9905-351BF1CD5843}.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Search the web.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml
FF Extension: LyricsContainer - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\128 [2013-08-16]
FF Extension: pricealarm - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM [2013-08-09]
FF Extension: FireJump - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\firejump@firejump.net [2013-02-07]
FF Extension: Yontoo - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\plugin@yontoo.com [2013-04-01]
FF Extension: HomeTab - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2} [2014-02-08]
FF Extension: DealPly  Shopping - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\{e53a26f5-7199-4a5b-86f5-d2e86854b979} [2013-08-12]
FF Extension: 7Go - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\7go@7go.com.xpi [2013-10-09]
FF Extension: Preispilot - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\extension@preispilot.com.xpi [2013-02-09]
FF Extension: FTdownloader - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\ftdownloader@ftdownloader.com.xpi [2012-11-29]
FF Extension: GoPhotoIt - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\gophoto@gophoto.it.xpi [2012-07-31]
FF Extension: PricePeep - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\pricepeep@getpricepeep.com.xpi [2013-02-20]
FF Extension: WEB.DE MailCheck - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\toolbar@web.de.xpi [2013-04-01]
FF Extension: Adblock Plus - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-23]
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2012-12-20]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012-07-30]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2012-09-09]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2012-12-01]
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon
FF HKLM-x32\...\Firefox\Extensions: [dnshelp@dnshelp.com] - C:\Users\Holzii\AppData\Roaming\Helper
FF Extension: Helper - C:\Users\Holzii\AppData\Roaming\Helper [2013-02-08]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha467.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha467\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha467\ff [2014-01-30]
FF HKCU\...\Firefox\Extensions: [firejump@firejump.net] - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\extensions\firejump@firejump.net
FF Extension: FireJump - C:\Users\Holzii\AppData\Roaming\Mozilla\Firefox\Profiles\85qddl7f.default\extensions\firejump@firejump.net [2013-02-07]
FF HKCU\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
FF Extension: No Name - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi [2013-05-02]
FF HKCU\...\Firefox\Extensions: [{43a7141d-3b82-4576-af55-f89abdc2f8ab}] - C:\Program Files (x86)\LyricsContainer\131.xpi
FF Extension: LyricsContainer - C:\Program Files (x86)\LyricsContainer\131.xpi [2013-08-29]
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\firefox\firefox.exe

Chrome: 
=======
CHR DefaultSearchKeyword: search.certified-toolbar.com
CHR DefaultSearchProvider: Web Search
CHR DefaultSearchURL: hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=5.6&ts=1376042655157.000005&tguid=46364-3869-1376042655157-5E4EE82BB3011C1AB698208FF6246A7A&q={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (Ask Toolbar) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaakfopmidbfddimafofbdngbkidf [2013-08-22]
CHR Extension: (LyricsContainer) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\abfmigjiaapipflmopkaaooigcjjdojh [2013-08-22]
CHR Extension: (Google Docs) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-22]
CHR Extension: (Google Drive) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-22]
CHR Extension: (YouTube) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-22]
CHR Extension: (Google Search) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-22]
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-08-22]
CHR Extension: (HomeTab) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgibjgmnimooanbagcfpnkmngejcojaf [2013-08-22]
CHR Extension: (NCH EN) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gclijllifhfpomppedeljakfegbcpojn [2013-08-22]
CHR Extension: (FTdownloader) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkjoindjjcmbdpbfppabdgflnkgbbcli [2014-02-19]
CHR Extension: (Safe Money) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-08-22]
CHR Extension: (Dangerous Websites Blocker) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-01-26]
CHR Extension: (Proxy link for YouTube™) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpccpcaielehgefaagocjkkgkafaabdp [2013-09-17]
CHR Extension: (Lightning Newtab) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo [2013-08-22]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-08-22]
CHR Extension: (SweetIM for Facebook) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn [2013-08-22]
CHR Extension: (Wajam) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp [2013-08-22]
CHR Extension: (Yontoo) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc [2013-08-22]
CHR Extension: (Google Wallet) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2013-08-22]
CHR Extension: (Vuze Remote) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojpijjmpahflnipadmlpgbjmagmjchkk [2014-01-02]
CHR Extension: (GoPhoto.it) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2013-08-22]
CHR Extension: (Gmail) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-22]
CHR Extension: (Anti-Banner) - C:\Users\Holzii\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2013-08-22]
CHR HKCU\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\Holzii\AppData\Local\CRE\gclijllifhfpomppedeljakfegbcpojn.crx [2012-05-31]
CHR HKCU\...\Chrome\Extension: [ojpijjmpahflnipadmlpgbjmagmjchkk] - C:\Users\Holzii\AppData\Local\CRE\ojpijjmpahflnipadmlpgbjmagmjchkk.crx [2013-12-30]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S2 dealplylive; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-12] (DealPly Technologies Ltd)
S3 dealplylivem; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-12] (DealPly Technologies Ltd)
S4 Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [1564368 2012-12-01] ()
R2 HerculesDJControlMP3; C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [20480 2007-11-21] ()
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-09-02] (Nero AG)
R2 ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [247872 2012-03-20] ()
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 OMSI download service; D:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1638696 2013-11-05] (O&O Software GmbH)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-07-31] (Overwolf Ltd)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-11-02] ()
R2 SearchAnonymizer; C:\Users\Holzii\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe [40960 2013-02-07] ()
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [297984 2014-03-02] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
S4 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2013-05-02] (Wajam)
S4 Yontoo Desktop Updater; C:\Users\Holzii\AppData\Roaming\Yontoo\YontooDesktop.exe [42784 2013-03-23] (Yontoo LLC)

==================== Drivers (Whitelisted) ====================

S3 Andbus; C:\Windows\System32\DRIVERS\lgandbus64.sys [19456 2012-03-02] (LG Electronics Inc.)
S3 AndDiag; C:\Windows\System32\DRIVERS\lganddiag64.sys [27648 2012-03-02] (LG Electronics Inc.)
S3 AndGps; C:\Windows\System32\DRIVERS\lgandgps64.sys [27136 2012-03-02] (LG Electronics Inc.)
S3 ANDModem; C:\Windows\System32\DRIVERS\lgandmodem64.sys [34304 2012-03-02] (LG Electronics Inc.)
S3 androidusb; C:\Windows\System32\Drivers\lgandadb.sys [31744 2010-08-02] (Google Inc)
S3 Bulk; C:\Windows\System32\Drivers\HDJBulk.sys [154112 2009-10-02] (© Guillemot R&D, 2009. All rights reserved.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-02-28] (DT Soft Ltd)
S3 HDJMidi; C:\Windows\System32\DRIVERS\HDJMidi.sys [144896 2009-10-02] (© Guillemot R&D, 2009. All rights reserved.)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\EVGA Precision X\RTCore64.sys [15176 2012-10-17] ()
S3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Realtek Semiconductor Corporation                           )
S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [113704 2008-10-21] (MCCI Corporation)
S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [19496 2008-10-21] (MCCI Corporation)
S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [152616 2008-10-21] (MCCI Corporation)
S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [133160 2008-10-21] (MCCI Corporation)
S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [34856 2008-10-21] (MCCI Corporation)
S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [128552 2008-10-21] (MCCI Corporation)
S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [145960 2008-10-21] (MCCI Corporation)
S3 s1018bus; C:\Windows\System32\DRIVERS\s1018bus.sys [113704 2009-03-25] (MCCI Corporation)
S3 s1018mdfl; C:\Windows\System32\DRIVERS\s1018mdfl.sys [19496 2009-03-25] (MCCI Corporation)
S3 s1018mdm; C:\Windows\System32\DRIVERS\s1018mdm.sys [153128 2009-03-25] (MCCI Corporation)
S3 s1018mgmt; C:\Windows\System32\DRIVERS\s1018mgmt.sys [133160 2009-03-25] (MCCI Corporation)
S3 s1018nd5; C:\Windows\System32\DRIVERS\s1018nd5.sys [34856 2009-03-25] (MCCI Corporation)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [128552 2009-03-25] (MCCI Corporation)
S3 s1018unic; C:\Windows\System32\DRIVERS\s1018unic.sys [146472 2009-03-25] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-05-28] (Duplex Secure Ltd.)
S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [128000 2010-07-28] (MCCI Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
U3 axctzbed; C:\Windows\System32\Drivers\axctzbed.sys [0 ] (Advanced Micro Devices)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-02 13:05 - 2014-03-02 13:06 - 00000000 ____D () C:\FRST
2014-03-01 16:15 - 2014-03-01 16:16 - 00049152 _____ () C:\Users\Holzii\Documents\cc_20140301_161549.reg
2014-03-01 16:06 - 2014-03-01 16:16 - 00001069 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-03-01 16:06 - 2014-03-01 16:16 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-01 16:06 - 2014-03-01 16:06 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Malwarebytes
2014-03-01 16:06 - 2014-03-01 16:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-01 16:06 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-01 15:49 - 2014-03-01 15:49 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-01 15:04 - 2014-03-02 12:31 - 00000470 _____ () C:\Windows\Tasks\ParetoLogic Registration3.job
2014-03-01 15:04 - 2014-03-02 12:31 - 00000444 _____ () C:\Windows\Tasks\ParetoLogic Update Version3.job
2014-03-01 15:04 - 2014-03-02 12:31 - 00000402 _____ () C:\Windows\Tasks\PC Health Advisor Defrag.job
2014-03-01 15:04 - 2014-03-02 12:31 - 00000384 _____ () C:\Windows\Tasks\PC Health Advisor.job
2014-03-01 15:04 - 2014-03-01 15:04 - 00003300 _____ () C:\Windows\System32\Tasks\PC Health Advisor
2014-03-01 15:04 - 2014-03-01 15:04 - 00003280 _____ () C:\Windows\System32\Tasks\PC Health Advisor Defrag
2014-03-01 15:04 - 2014-03-01 15:04 - 00003262 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3
2014-03-01 15:04 - 2014-03-01 15:04 - 00003136 _____ () C:\Windows\System32\Tasks\ParetoLogic Registration3
2014-03-01 15:04 - 2014-03-01 15:04 - 00001057 _____ () C:\Users\Holzii\Desktop\ParetoLogic PC Health Advisor.lnk
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\DriverCure
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\ProgramData\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Program Files (x86)\ParetoLogic
2014-02-28 17:51 - 2014-02-28 17:51 - 00000000 ___DC () C:\Users\Holzii\AppData\Local\MigWiz
2014-02-27 19:42 - 2014-02-27 19:42 - 00001089 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-02-27 19:42 - 2014-02-27 19:42 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-02-27 15:25 - 2014-03-02 12:31 - 00006058 _____ () C:\Windows\PFRO.log
2014-02-27 15:21 - 2014-02-27 15:21 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-19 19:04 - 2014-02-19 19:04 - 00342656 _____ () C:\Users\Holzii\Downloads\Player Setup.exe
2014-02-19 17:22 - 2014-02-19 17:22 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-19 17:21 - 2014-02-08 17:18 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-02-19 17:20 - 2014-03-02 12:31 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-19 17:20 - 2014-02-08 18:42 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-19 17:20 - 2014-02-08 18:42 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-19 17:20 - 2014-02-08 18:42 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-19 17:20 - 2014-02-08 18:42 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-19 17:20 - 2014-02-08 18:42 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-19 17:20 - 2014-02-08 18:42 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-19 17:20 - 2014-02-05 18:52 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-19 17:19 - 2014-02-08 19:34 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-19 17:19 - 2014-02-08 19:34 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-19 17:17 - 2014-02-08 19:34 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-19 17:17 - 2014-02-08 19:34 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-19 17:02 - 2014-03-02 12:31 - 00004052 _____ () C:\Windows\setupact.log
2014-02-19 17:02 - 2014-02-19 17:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-19 16:54 - 2014-02-19 16:54 - 00000000 ____D () C:\NVIDIA
2014-02-18 12:56 - 2014-02-18 12:56 - 00000920 _____ () C:\Users\Holzii\Downloads\Bushido_-_Sonny_Black_Limited_Deluxe_Box_Set_2014_ (1).dlc
2014-02-18 12:55 - 2014-02-18 12:55 - 00000920 _____ () C:\Users\Holzii\Downloads\Bushido_-_Sonny_Black_Limited_Deluxe_Box_Set_2014_.dlc
2014-02-10 11:07 - 2014-02-10 11:07 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-10 11:07 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-09 17:14 - 2014-02-09 17:14 - 00016242 _____ () C:\Users\Holzii\Downloads\VengeanceIsMine-MeinistdieRache2014@www.torrent.to.torrent
2014-02-09 17:14 - 2014-02-09 17:14 - 00013073 _____ () C:\Users\Holzii\Downloads\Stalled2014@www.torrent.to.torrent
2014-02-06 14:36 - 2014-02-06 14:36 - 00000000 ____D () C:\Users\Holzii\Desktop\AUTOTEILE FOTOS
2014-02-04 00:15 - 2014-03-01 17:15 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-02-04 00:15 - 2014-02-14 08:15 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-04 00:15 - 2014-02-04 00:15 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\DigitalSites

==================== One Month Modified Files and Folders =======

2014-03-02 13:06 - 2014-03-02 13:05 - 00000000 ____D () C:\FRST
2014-03-02 12:54 - 2012-04-11 15:10 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-02 12:36 - 2013-08-09 11:04 - 00004208 _____ () C:\Windows\System32\Tasks\Software Updater
2014-03-02 12:36 - 2013-08-09 11:04 - 00004172 _____ () C:\Windows\System32\Tasks\Software Updater Ui
2014-03-02 12:35 - 2012-02-21 22:21 - 02089382 _____ () C:\Windows\WindowsUpdate.log
2014-03-02 12:34 - 2013-10-25 10:37 - 00000000 ____D () C:\Users\Holzii\AppData\Local\HTC MediaHub
2014-03-02 12:32 - 2013-09-10 14:14 - 00000360 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-03-02 12:31 - 2014-03-01 15:04 - 00000470 _____ () C:\Windows\Tasks\ParetoLogic Registration3.job
2014-03-02 12:31 - 2014-03-01 15:04 - 00000444 _____ () C:\Windows\Tasks\ParetoLogic Update Version3.job
2014-03-02 12:31 - 2014-03-01 15:04 - 00000402 _____ () C:\Windows\Tasks\PC Health Advisor Defrag.job
2014-03-02 12:31 - 2014-03-01 15:04 - 00000384 _____ () C:\Windows\Tasks\PC Health Advisor.job
2014-03-02 12:31 - 2014-02-27 15:25 - 00006058 _____ () C:\Windows\PFRO.log
2014-03-02 12:31 - 2014-02-19 17:20 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-02 12:31 - 2014-02-19 17:02 - 00004052 _____ () C:\Windows\setupact.log
2014-03-02 12:31 - 2013-08-12 20:16 - 00000902 _____ () C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
2014-03-02 12:31 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-01 17:49 - 2012-03-11 21:25 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Azureus
2014-03-01 17:49 - 2009-07-14 05:45 - 00012208 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-01 17:49 - 2009-07-14 05:45 - 00012208 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-01 17:23 - 2013-01-17 19:58 - 00000000 ____D () C:\Users\Holzii\AppData\Local\CrashDumps
2014-03-01 17:21 - 2013-08-12 20:16 - 00000906 _____ () C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
2014-03-01 17:15 - 2014-02-04 00:15 - 00000296 _____ () C:\Windows\Tasks\Digital Sites.job
2014-03-01 17:15 - 2013-08-12 20:15 - 00000294 _____ () C:\Windows\Tasks\Dealply.job
2014-03-01 17:15 - 2013-08-12 20:15 - 00000290 _____ () C:\Windows\Tasks\DSite.job
2014-03-01 17:07 - 2009-07-14 18:58 - 00700562 _____ () C:\Windows\system32\perfh007.dat
2014-03-01 17:07 - 2009-07-14 18:58 - 00149462 _____ () C:\Windows\system32\perfc007.dat
2014-03-01 17:07 - 2009-07-14 06:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-01 16:40 - 2012-06-20 18:14 - 00000000 ____D () C:\Users\Holzii\Desktop\audi fotos
2014-03-01 16:23 - 2012-02-24 12:50 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\vlc
2014-03-01 16:16 - 2014-03-01 16:15 - 00049152 _____ () C:\Users\Holzii\Documents\cc_20140301_161549.reg
2014-03-01 16:16 - 2014-03-01 16:06 - 00001069 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-03-01 16:16 - 2014-03-01 16:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-01 16:06 - 2014-03-01 16:06 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Malwarebytes
2014-03-01 16:06 - 2014-03-01 16:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-01 15:49 - 2014-03-01 15:49 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-03-01 15:04 - 2014-03-01 15:04 - 00003300 _____ () C:\Windows\System32\Tasks\PC Health Advisor
2014-03-01 15:04 - 2014-03-01 15:04 - 00003280 _____ () C:\Windows\System32\Tasks\PC Health Advisor Defrag
2014-03-01 15:04 - 2014-03-01 15:04 - 00003262 _____ () C:\Windows\System32\Tasks\ParetoLogic Update Version3
2014-03-01 15:04 - 2014-03-01 15:04 - 00003136 _____ () C:\Windows\System32\Tasks\ParetoLogic Registration3
2014-03-01 15:04 - 2014-03-01 15:04 - 00001057 _____ () C:\Users\Holzii\Desktop\ParetoLogic PC Health Advisor.lnk
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\DriverCure
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\ProgramData\ParetoLogic
2014-03-01 15:04 - 2014-03-01 15:04 - 00000000 ____D () C:\Program Files (x86)\ParetoLogic
2014-03-01 12:15 - 2013-08-12 22:15 - 00000214 _____ () C:\Users\Holzii\AppData\Roaming\WB.CFG
2014-02-28 17:51 - 2014-02-28 17:51 - 00000000 ___DC () C:\Users\Holzii\AppData\Local\MigWiz
2014-02-27 19:42 - 2014-02-27 19:42 - 00001089 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-02-27 19:42 - 2014-02-27 19:42 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-02-27 15:39 - 2012-09-12 16:21 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-27 15:21 - 2014-02-27 15:21 - 00002207 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-27 15:21 - 2012-05-26 08:20 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-27 11:20 - 2013-11-02 17:41 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-02-27 11:10 - 2013-11-02 17:41 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-02-27 11:08 - 2012-02-22 23:24 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-27 11:05 - 2012-11-29 19:06 - 00000000 ____D () C:\Program Files (x86)\EVGA Precision X
2014-02-27 10:26 - 2013-08-09 11:20 - 00000410 _____ () C:\Windows\Tasks\LyricsContainer Update.job
2014-02-27 07:52 - 2012-02-22 23:24 - 00000000 ____D () C:\ProgramData\Origin
2014-02-26 18:26 - 2012-03-08 20:17 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\Skype
2014-02-24 17:13 - 2013-10-07 21:01 - 00003778 _____ () C:\Users\Holzii\Desktop\audi´s.txt
2014-02-22 16:54 - 2012-04-11 15:10 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-22 16:54 - 2012-04-11 15:10 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-22 16:54 - 2012-02-22 01:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-19 19:04 - 2014-02-19 19:04 - 00342656 _____ () C:\Users\Holzii\Downloads\Player Setup.exe
2014-02-19 17:22 - 2014-02-19 17:22 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-02-19 17:22 - 2012-02-21 22:50 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-19 17:20 - 2012-02-21 22:49 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-19 17:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2014-02-19 17:19 - 2013-08-12 14:00 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-19 17:18 - 2012-02-24 06:15 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\NVIDIA
2014-02-19 17:02 - 2014-02-19 17:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-19 16:54 - 2014-02-19 16:54 - 00000000 ____D () C:\NVIDIA
2014-02-18 12:56 - 2014-02-18 12:56 - 00000920 _____ () C:\Users\Holzii\Downloads\Bushido_-_Sonny_Black_Limited_Deluxe_Box_Set_2014_ (1).dlc
2014-02-18 12:55 - 2014-02-18 12:55 - 00000920 _____ () C:\Users\Holzii\Downloads\Bushido_-_Sonny_Black_Limited_Deluxe_Box_Set_2014_.dlc
2014-02-14 08:15 - 2014-02-04 00:15 - 00003240 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-02-12 02:15 - 2012-05-26 08:20 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-12 02:15 - 2012-05-26 08:20 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-11 14:23 - 2012-05-26 08:20 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 14:23 - 2012-05-26 08:20 - 00003856 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-10 11:08 - 2013-10-21 11:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-10 11:07 - 2014-02-10 11:07 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-10 11:07 - 2012-07-30 16:58 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-09 17:14 - 2014-02-09 17:14 - 00016242 _____ () C:\Users\Holzii\Downloads\VengeanceIsMine-MeinistdieRache2014@www.torrent.to.torrent
2014-02-09 17:14 - 2014-02-09 17:14 - 00013073 _____ () C:\Users\Holzii\Downloads\Stalled2014@www.torrent.to.torrent
2014-02-08 19:34 - 2014-02-19 17:19 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-08 19:34 - 2014-02-19 17:19 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 31432480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 23683360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 18257576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 17715784 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 15740232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 14669032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 12324640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-02-08 19:34 - 2014-02-19 17:17 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 03142432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 03090184 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 02956576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 02782496 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 02713728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 02410784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433489.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433489.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00947296 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00892192 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00875296 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00863520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00844576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00832424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00148528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-02-08 19:34 - 2014-02-19 17:17 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-02-08 18:42 - 2014-02-19 17:20 - 06712608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-08 18:42 - 2014-02-19 17:20 - 03498272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-02-08 18:42 - 2014-02-19 17:20 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-08 18:42 - 2014-02-19 17:20 - 00923936 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-08 18:42 - 2014-02-19 17:20 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-08 18:42 - 2014-02-19 17:20 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-08 17:18 - 2014-02-19 17:21 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-02-08 12:58 - 2012-07-04 21:04 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-02-08 12:58 - 2012-02-25 00:51 - 00000000 ____D () C:\Users\Holzii\AppData\Local\Downloaded Installations
2014-02-08 06:05 - 2013-12-10 00:06 - 00000000 ____D () C:\Windows\System32\Tasks\SystemSockets
2014-02-08 06:05 - 2013-08-09 13:17 - 00000000 ____D () C:\Windows\System32\Tasks\ProtectedSearch
2014-02-08 06:05 - 2013-08-09 11:05 - 00000000 ____D () C:\Windows\System32\Tasks\Browser Updater
2014-02-08 06:05 - 2013-08-09 11:05 - 00000000 ____D () C:\Program Files (x86)\HomeTab
2014-02-06 14:36 - 2014-02-06 14:36 - 00000000 ____D () C:\Users\Holzii\Desktop\AUTOTEILE FOTOS
2014-02-06 14:04 - 2013-10-25 10:37 - 00001991 _____ () C:\Users\Public\Desktop\HTC Sync Manager.lnk
2014-02-05 18:52 - 2014-02-19 17:20 - 03573739 _____ () C:\Windows\system32\nvcoproc.bin
2014-02-04 06:36 - 2013-08-09 11:05 - 00033864 _____ () C:\Windows\Launcher.exe
2014-02-04 00:15 - 2014-02-04 00:15 - 00000000 ____D () C:\Users\Holzii\AppData\Roaming\DigitalSites
2014-02-02 21:32 - 2013-12-25 14:07 - 00000000 ____D () C:\Users\Holzii\AppData\Local\genienext

Some content of TEMP:
====================
C:\Users\Holzii\AppData\Local\Temp\i4jdel0.exe
C:\Users\Holzii\AppData\Local\Temp\NVI2_29.DLL
C:\Users\Holzii\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Holzii\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-28 18:18

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-03-2014 01
Ran by Holzii at 2014-03-02 13:07:24
Running from D:\
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Advanced System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1) (Version: 2.1.1000.12150 - Systweak Software) <==== ATTENTION
Apple Application Support (HKLM-x32\...\{CCE825DB-347A-4004-A186-5F4A6FDD8547}) (Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}) (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
Azureus (HKLM-x32\...\Azureus) (Version: 2.5.0.4 - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.4.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.1.0.1 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty 4: Modern Warfare (HKLM-x32\...\Steam App 7940) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version:  - Infinity Ward - Sledgehammer Games)
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
Classic Link Drivers (HKLM-x32\...\{B1549CC1-EB81-4E7C-9C7C-8B97CD9FD37A}) (Version: 3.2.2.1 - Hercules)
Codec Pack Packages (HKCU\...\Codec Pack Packages) (Version:  - ) <==== ATTENTION
Curse Client (HKCU\...\101a9f93b8f0bb6f) (Version: 5.1.1.792 - Curse)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.3.0297 - DT Soft Ltd)
Dealply (HKCU\...\Dealply) (Version:  - ) <==== ATTENTION
DealPly (remove only) (HKLM-x32\...\DealPly) (Version: 4.8.7.3 - DealPly Technologies Ltd.) <==== ATTENTION
Desktop Icon für Amazon (HKLM\...\DesktopIconAmazon) (Version: 1.0.1 (de) - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.87 - DivX, LLC)
Drumaxx (HKLM-x32\...\Drumaxx) (Version:  - Image-Line)
DX10 (HKLM-x32\...\DX10) (Version:  - Image-Line)
Edison (HKLM-x32\...\Edison) (Version:  - Image-Line bvba)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Europa Universalis IV (HKLM-x32\...\Europa Universalis IV_is1) (Version:  - Paradox Interactive)
EVGA Precision 2.1.2 (HKLM-x32\...\Precision) (Version: 2.1.2 - EVGA Corporation)
EVGA Precision X 3.0.4 (HKLM-x32\...\PrecisionX) (Version: 3.0.4 - EVGA Corporation)
ExpressFiles (HKCU\...\ExpressFiles) (Version: 2.0.4 - hxxp://www.express-files.com/) <==== ATTENTION
FireJump (HKLM-x32\...\{D85FFE92-BF14-4E9B-BCCD-E5C16069E65F}_is1) (Version: 1.0.2.5 - FireJump.net)
FL Studio 10 (HKLM-x32\...\FL Studio 10) (Version:  - Image-Line)
Free M4a to MP3 Converter 7.0 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
Free YouTube to MP3 Converter version 3.12.8.717 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.8.717 - DVDVideoSoft Ltd.)
FTDownloader (HKLM-x32\...\1ClickDownload) (Version: 2.1 Build 26473 - FTDownloader.com) <==== ATTENTION
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Guard.ICQ (HKLM-x32\...\Guard.Mail.ru) (Version:  - Mail.ru) <==== ATTENTION
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version:  - )
Hardcore (HKLM-x32\...\Hardcore) (Version:  - Image-Line bvba)
Hercules DJ Products Series drivers (HKLM-x32\...\{33999F1F-EA46-4E55-A239-1BA803235396}) (Version: 4.HDJS.2009 - Hercules)
HomeTab 5.7 (HKLM-x32\...\{3a4935b3-b7a0-4065-8ccc-0030471b33f1}_is1) (Version: 5.7 - HomeTab)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.10.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{368E4EF8-E840-40EE-A224-50B8D1DC2B12}) (Version: 2.4.36.0 - HTC)
ICQ 8.1 (build 6337) (HKCU\...\ICQ) (Version: 8.1.6337.0 - Mail.Ru)
ICQ Sparberater (HKLM-x32\...\{0766C1B9-B2DC-46E5-8934-4F3D6B42B1BD}) (Version: 1.3.671 - solute gmbh)
ICQ Toolbar (HKLM-x32\...\ICQToolbar) (Version: 3.0.0 - ICQ)
IL Autogun (HKLM-x32\...\IL Autogun) (Version:  - Image-Line)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
IL DrumSynth Live (HKLM-x32\...\IL DrumSynth Live) (Version:  - Image-Line)
IL Gross Beat (HKLM-x32\...\IL Gross Beat) (Version:  - Image-Line)
IL Harmless (HKLM-x32\...\IL Harmless) (Version:  - Image-Line)
IL Harmor (HKLM-x32\...\IL Harmor) (Version:  - Image-Line)
IL Juice Pack (HKLM-x32\...\IL Juice Pack) (Version:  - Image-Line)
IL Ogun (HKLM-x32\...\IL Ogun) (Version:  - Image-Line)
IL Slicex (HKLM-x32\...\IL Slicex) (Version:  - Image-Line)
IL Vocodex (HKLM-x32\...\IL Vocodex) (Version:  - Image-Line)
iLivid (HKLM-x32\...\iLivid) (Version: 5.0.0.4151 - Bandoo Media Inc) <==== ATTENTION
Internet Explorer Toolbar 4.6 by SweetPacks (HKLM-x32\...\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}) (Version: 4.6.0004 - SweetIM Technologies Ltd.) <==== ATTENTION
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{0E5D76AD-A3FB-48D5-8400-8903B10317D3}) (Version: 11.0.1.12 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 37 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.370 - Oracle)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\{918A9082-6287-4D25-9002-5E5D5E4971CB}) (Version: 1.02.0000 - Riot Games)
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.7.2.0 - LG Electronics)
loadtbs-2.1 (HKLM-x32\...\loadtbs-2.1) (Version:  - )
LyricsContainer (HKLM-x32\...\{e0c9fcc2-8274-45a4-9a18-1dc627293d6d}) (Version:  - RYD Software) <==== ATTENTION
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Maximus (HKLM-x32\...\Maximus) (Version:  - Image-Line)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.285.6 - McAfee, Inc.)
Media Player (HKLM-x32\...\MediaPlayerV1alpha467) (Version: 1.1 - Media Player)
MediaMonkey 4.0 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.0 - Ventis Media Inc.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Moozy (HKLM-x32\...\{739126B3-1B80-4F9F-8D59-312A19633E1A}_is1) (Version:  - )
Morphine (HKLM-x32\...\Morphine) (Version:  - Image-Line bvba)
Mozilla Firefox 21.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 21.0 (x86 de)) (Version: 21.0 - Mozilla)
Mozilla Firefox 27.0.1 (x86 de) (HKCU\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 21.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Nero 11 v11.2.4.100 (x64) (HKLM\...\Nero 11 v11.2.4.100 (x64)11.2.4.100) (Version: 11.2.4.100 - Friends in War)
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
NVIDIA 3D Vision Controller-Treiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 334.89 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 334.89 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3489 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
O&O Defrag Professional (HKLM\...\{65A784CB-1272-42A2-AF46-595FE04C0D2B}) (Version: 17.0.468 - O&O Software GmbH)
OpenSource Flash Video Splitter 1.0.0.5 (HKLM-x32\...\OpenSource Flash Video Splitter) (Version: 1.0.0.5 - )
Opera Stable 19.0.1326.63 (HKLM-x32\...\Opera 19.0.1326.63) (Version: 19.0.1326.63 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4550 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{E46894B8-52C3-452E-86A2-D60BC6E650DA}) (Version: 0.43.251 - Overwolf)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.6 - Pando Networks Inc.)
ParetoLogic PC Health Advisor (HKLM-x32\...\{3CBF3EBB-235D-4c29-A68B-2BB1F428586E}) (Version: 3.1.0.0 - ParetoLogic, Inc.)
PC Connectivity Solution (HKLM-x32\...\{7390478C-8581-415E-92E9-2997D9306B81}) (Version: 12.0.32.0 - Nokia)
PoiZone (HKLM-x32\...\PoiZone) (Version:  - Image-Line)
PricePeep (HKLM-x32\...\PricePeep) (Version: 2.1.0.22 - betwikx LLC) <==== ATTENTION
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Runes of Magic (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 5.0.0.2535 - Frogster Online Gaming GmbH)
Sakura (HKLM-x32\...\Sakura) (Version:  - Image-Line)
Samsung Networking Wizard (HKLM-x32\...\{0C485220-4029-48E7-9F27-965DA4A78D5E}) (Version: 1.0.10091.1 - Samsung Electronics Co., Ltd. )
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1100.0 - SAMSUNG Electronics Co., Ltd.)
Sawer (HKLM-x32\...\Sawer) (Version:  - Image-Line)
Scanned Text Editor 1 (HKLM-x32\...\Scanned Text Editor 1) (Version:  - )
SearchAnonymizer (HKLM\...\SearchAnonymizer) (Version: 1.0.1 (de) - )
Searchqu Toolbar (HKLM-x32\...\Searchqu Toolbar) (Version: 4.1.0.2790 - Bandoo Media Inc) <==== ATTENTION
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V Brave New World (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uVg==_is1) (Version: 1 - )
SimSynth (HKLM-x32\...\SimSynth) (Version:  - Image-Line)
Skype™ 5.8 (HKLM-x32\...\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}) (Version: 5.8.158 - Skype Technologies S.A.)
Softonic toolbar  on IE (HKLM-x32\...\Softonic) (Version:  - Softonic) <==== ATTENTION
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.3.8 - ) <==== ATTENTION
Sony Ericsson PC Suite 6.011.00 (HKLM-x32\...\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}) (Version: 6.011.00 - Sony Ericsson)
Sony Ericsson Update Engine (HKLM-x32\...\Update Engine) (Version: 2.13.4.16 - Sony Ericsson Communications AB)
Sony PC Companion 2.10.136 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.136 - Sony)
SpellForce (HKLM-x32\...\SpellForce) (Version: SpellForce v1.36 - JoWooD Productions Software AG)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.100 - Firefly Studios)
Stronghold Crusader Extreme (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.20.0000 - Firefly Studios)
SweetIM for Messenger 3.7 (HKLM-x32\...\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}) (Version: 3.7.0007 - SweetIM Technologies Ltd.) <==== ATTENTION
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sytrus (HKLM-x32\...\Sytrus) (Version:  - Image-Line)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Total War ROME II (HKLM-x32\...\VG90YWxXYXJST01FSUk=_is1) (Version: 1 - )
Toxic Biohazard (HKLM-x32\...\Toxic Biohazard) (Version:  - Image-Line bvba)
TuneUp Utilities 2013 (HKLM-x32\...\TuneUp Utilities 2013) (Version: 13.0.3020.2 - TuneUp Software)
TuneUp Utilities 2013 (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Update for Codec Pack (HKCU\...\DSite) (Version:  - ) <==== ATTENTION
Update Manager for SweetPacks 1.1 (HKLM-x32\...\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}) (Version: 1.1.0008 - SweetIM Technologies Ltd.) <==== ATTENTION
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtual DJ Pro Full - Atomix Productions (HKLM-x32\...\Virtual DJ Pro Full - Atomix Productions) (Version:  - )
VLC media player 2.0.0 (HKLM-x32\...\VLC media player) (Version: 2.0.0 - VideoLAN)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.2.0.0 - Azureus Software, Inc.)
Wajam (HKLM-x32\...\Wajam) (Version: 1.81 - Wajam) <==== ATTENTION
Windows Mobile Device Updater Component (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Windows Utils (HKLM-x32\...\Windows Utils) (Version:  - )
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 17.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D7}) (Version: 17.0.10283 - WinZip Computing, S.L. )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Yontoo 2.051 (HKLM\...\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}) (Version: 2.051 - Yontoo LLC) <==== ATTENTION
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)
Zune (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHT) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CSY) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DAN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ELL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FIN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (HUN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (IND) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (JPN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (KOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (MSL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PLK) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (RUS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (SVE) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {04E4B2FF-E9FC-4CBA-B83F-ABB2ECF3233B} - System32\Tasks\DSite => C:\Users\Holzii\AppData\Roaming\DSite\UpdateProc\UpdateTask.exe [2013-08-12] () <==== ATTENTION
Task: {0CEB7FC2-E819-422C-A9E3-40113A369A67} - System32\Tasks\PC Health Advisor => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe [2011-03-30] (ParetoLogic, Inc.)
Task: {1C245DE0-8E59-4256-9185-4EAA6A2F9224} - System32\Tasks\PC Health Advisor Defrag => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe [2011-03-30] (ParetoLogic, Inc.)
Task: {2FDEA080-BB94-4C6C-AEDA-9B28D71F3463} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {38E02284-98BD-4A96-9FAC-BAB1BEE8B541} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-19] ()
Task: {3E3793D5-C6F3-4C09-BEC4-A0DAC0037588} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\HomeTab\WBrowserDefender.exe [2014-02-04] ()
Task: {3E52315A-3D2F-4838-8380-8396BDBCCE71} - System32\Tasks\DealPlyLiveUpdateTaskMachineCore => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-12] (DealPly Technologies Ltd) <==== ATTENTION
Task: {4302DC63-7C3F-4014-AAD4-2399B5F14C4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-26] (Google Inc.)
Task: {451188D2-E646-4F8F-87E3-66C431C9DFC5} - System32\Tasks\Browser Updater\Browser Updater => C:\Program Files (x86)\HomeTab\WBrowserUpdater.exe [2014-02-04] ()
Task: {46E91032-DFC0-41A6-8B01-EFD8143DD870} - System32\Tasks\DealPlyLiveUpdateTaskMachineUA => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [2013-08-12] (DealPly Technologies Ltd) <==== ATTENTION
Task: {598487A1-77CD-4A61-91B4-3A830081C2FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-26] (Google Inc.)
Task: {5D955A97-238A-4F20-BDAC-1A46CF94B9F6} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {6F2DD78D-B2CB-41EA-9476-EE135D320F92} - System32\Tasks\AmiUpdXp => C:\Users\Holzii\AppData\Local\SwvUpdater\Updater.exe [2013-09-10] (Àmònetíze ltd.) <==== ATTENTION
Task: {7144AFF2-E305-46AA-8B8F-73E7135D7058} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe [2013-12-25] () <==== ATTENTION
Task: {8D63F689-0BC6-47C6-8411-F47F1FA45D08} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [2013-10-04] (Systweak) <==== ATTENTION
Task: {8EB938CC-CCA3-48A6-BFE8-1F5BF3957239} - System32\Tasks\SystemSockets\SystemSockets => C:\Program Files (x86)\HomeTab\WBrowserProductivity.exe [2014-01-09] ()
Task: {924C59B4-6863-4FE9-AB61-7CD27FC31E00} - System32\Tasks\ParetoLogic Update Version3 => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2011-03-30] (ParetoLogic Inc.)
Task: {B6291D96-B73C-4100-BEB3-C1CB5C73EC06} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {BF8F9557-2334-4982-B719-A9FC41002E55} - System32\Tasks\Dealply => C:\Users\Holzii\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {C1EA5612-943D-4802-BBD5-9823D2DF070E} - System32\Tasks\LyricsContainer Update => C:\Program Files (x86)\LyricsContainer\LrcsCtrUpdr.exe [2013-08-29] () <==== ATTENTION
Task: {CC4FBFCD-0035-433A-814F-91B16622ED00} - System32\Tasks\DealPlyUpdate => C:\Program
Task: {D75CFFD4-A738-4DAA-855C-C7410CC7D0E4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D9E9499A-9CAC-4704-A1B1-D71B00E8868E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {DB00FCCA-869C-4667-9CCC-78856FE2191A} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-19] ()
Task: {E696A11F-3E2D-449B-95B9-EFB239CBF662} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {EA0FA2FF-9A14-41AA-8542-50D21F5384A8} - System32\Tasks\Digital Sites => C:\Users\Holzii\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {F2A6F4C7-3A88-4BAC-A0CE-7EB6A1A5977A} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
Task: {F2E7D01F-D09D-4F27-AD8D-0FA6A0A98005} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-22] (Adobe Systems Incorporated)
Task: {FCA16BDB-1D7E-40E6-8037-02716AF353CF} - System32\Tasks\{6D295AC2-431B-44E1-9160-98A40D4F9D68} => E:\setup.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Holzii\AppData\Local\SwvUpdater\Updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\Dealply.job => C:\Users\Holzii\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Holzii\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\DSite.job => C:\Users\Holzii\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\LyricsContainer Update.job => C:\Program Files (x86)\LyricsContainer\LrcsCtrUpdr.exe <==== ATTENTION
Task: C:\Windows\Tasks\ParetoLogic Registration3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\UUS3.dll
Task: C:\Windows\Tasks\ParetoLogic Update Version3.job => C:\Program Files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\Windows\Tasks\PC Health Advisor Defrag.job => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe
Task: C:\Windows\Tasks\PC Health Advisor.job => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe

==================== Loaded Modules (whitelisted) =============

2014-02-19 17:20 - 2014-02-08 18:42 - 00117024 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-03-07 21:52 - 2007-11-21 12:16 - 00020480 _____ () C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
2012-12-01 12:31 - 2012-03-20 11:16 - 00247872 _____ () C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
2013-12-10 00:06 - 2014-01-09 08:16 - 00034376 _____ () C:\Program Files (x86)\HomeTab\WBrowserProductivity.exe
2012-05-26 17:11 - 2009-04-30 10:23 - 00090112 _____ () D:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
2012-12-07 17:27 - 2012-12-07 17:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2013-11-02 17:41 - 2013-11-02 17:41 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-02-07 22:30 - 2013-02-07 22:30 - 00040960 _____ () C:\Users\Holzii\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
2014-01-26 11:55 - 2014-01-26 11:55 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2012-10-17 11:21 - 2012-10-17 11:21 - 00553800 _____ () C:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exe
2012-10-17 11:21 - 2012-10-17 11:21 - 00168776 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTSS.exe
2013-10-17 15:40 - 2013-10-17 15:40 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-01-26 11:54 - 2014-01-26 11:54 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2013-10-17 15:40 - 2013-10-17 15:40 - 00044392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2013-10-17 15:40 - 2013-10-17 15:40 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2013-10-17 15:40 - 2013-10-17 15:40 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2013-10-17 15:42 - 2013-10-17 15:42 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2013-11-14 21:34 - 2013-11-14 21:34 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2012-06-05 08:23 - 2012-06-05 08:23 - 00122880 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTSSHooks.dll
2014-02-28 17:41 - 2014-02-28 17:41 - 03578992 _____ () D:\Program Files (x86)\firefox\mozjs.dll
2014-02-22 16:54 - 2014-02-22 16:54 - 16265096 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll
2012-06-30 05:18 - 2012-06-30 05:18 - 00061440 _____ () C:\Program Files (x86)\EVGA Precision X\RTMUI.dll
2012-06-30 05:17 - 2012-06-30 05:17 - 00061440 _____ () C:\Program Files (x86)\EVGA Precision X\RTFC.dll
2012-06-30 05:17 - 2012-06-30 05:17 - 00225280 _____ () C:\Program Files (x86)\EVGA Precision X\RTCore.dll
2012-06-30 05:17 - 2012-06-30 05:17 - 00147456 _____ () C:\Program Files (x86)\EVGA Precision X\RTUI.dll
2012-06-30 05:18 - 2012-06-30 05:18 - 00335872 _____ () C:\Program Files (x86)\EVGA Precision X\RTHAL.dll
2011-05-01 07:04 - 2011-05-01 07:04 - 00013312 _____ () C:\Program Files (x86)\EVGA Precision X\RTTSH.dll
2012-06-05 07:02 - 2012-06-05 07:02 - 00061440 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTFC.dll
2012-06-05 07:02 - 2012-06-05 07:02 - 00147456 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTUI.dll
2012-06-05 07:03 - 2012-06-05 07:03 - 00061440 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTMUI.dll
2011-05-01 07:04 - 2011-05-01 07:04 - 00013312 _____ () C:\Program Files (x86)\EVGA Precision X\Bundle\OSDServer\RTTSH.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/02/2014 01:07:25 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (03/02/2014 01:07:25 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (03/01/2014 05:22:31 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: nvspcaps64.exe, Version: 10.11.15.0, Zeitstempel: 0x52a67660
Name des fehlerhaften Moduls: d3d9.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdebc
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000423c1
ID des fehlerhaften Prozesses: 0xf2c
Startzeit der fehlerhaften Anwendung: 0xnvspcaps64.exe0
Pfad der fehlerhaften Anwendung: nvspcaps64.exe1
Pfad des fehlerhaften Moduls: nvspcaps64.exe2
Berichtskennung: nvspcaps64.exe3

Error: (03/01/2014 04:17:35 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ehshell.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bd053
Name des fehlerhaften Moduls: d3d9.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdebc
Ausnahmecode: 0xc0000096
Fehleroffset: 0x0000000000017ac4
ID des fehlerhaften Prozesses: 0x%9
Startzeit der fehlerhaften Anwendung: 0xehshell.exe0
Pfad der fehlerhaften Anwendung: ehshell.exe1
Pfad des fehlerhaften Moduls: ehshell.exe2
Berichtskennung: ehshell.exe3

Error: (03/01/2014 04:17:20 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: pcha.exe, Version: 3.1.0.1, Zeitstempel: 0x4d926883
Name des fehlerhaften Moduls: pcha.exe, Version: 3.1.0.1, Zeitstempel: 0x4d926883
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001347b9
ID des fehlerhaften Prozesses: 0xcf4
Startzeit der fehlerhaften Anwendung: 0xpcha.exe0
Pfad der fehlerhaften Anwendung: pcha.exe1
Pfad des fehlerhaften Moduls: pcha.exe2
Berichtskennung: pcha.exe3

Error: (03/01/2014 04:02:08 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (03/01/2014 04:02:07 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (03/01/2014 04:02:07 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error: (03/01/2014 03:59:30 PM) (Source: Application Hang) (User: )
Description: Programm otl.exe, Version 3.2.69.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1114

Startzeit: 01cf355e7bba7950

Endzeit: 4

Anwendungspfad: D:\otl.exe

Berichts-ID:

Error: (03/01/2014 02:58:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bca54
Name des fehlerhaften Moduls: d3d9.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdebc
Ausnahmecode: 0xc000041d
Fehleroffset: 0x000000000004338a
ID des fehlerhaften Prozesses: 0xf90
Startzeit der fehlerhaften Anwendung: 0xDllHost.exe0
Pfad der fehlerhaften Anwendung: DllHost.exe1
Pfad des fehlerhaften Moduls: DllHost.exe2
Berichtskennung: DllHost.exe3


System errors:
=============
Error: (03/02/2014 00:59:11 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:59:05 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:58:23 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:58:19 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:58:05 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:49:00 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:48:56 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:38:05 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:37:46 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (03/02/2014 00:34:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058


Microsoft Office Sessions:
=========================
Error: (03/02/2014 01:07:25 PM) (Source: VSS)(User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (03/02/2014 01:07:25 PM) (Source: VSS)(User: )
Description: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}SW_PROV0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (03/01/2014 05:22:31 PM) (Source: Application Error)(User: )
Description: nvspcaps64.exe10.11.15.052a67660d3d9.dll6.1.7600.163854a5bdebcc000000500000000000423c1f2c01cf356a6aec7a90C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exeC:\Windows\system32\d3d9.dllafa23ad0-a15d-11e3-ad34-0030678f9f36

Error: (03/01/2014 04:17:35 PM) (Source: Application Error)(User: )
Description: ehshell.exe6.1.7600.163854a5bd053d3d9.dll6.1.7600.163854a5bdebcc00000960000000000017ac4

Error: (03/01/2014 04:17:20 PM) (Source: Application Error)(User: )
Description: pcha.exe3.1.0.14d926883pcha.exe3.1.0.14d926883c0000005001347b9cf401cf356155a4b070C:\Program Files (x86)\ParetoLogic\PCHA\pcha.exeC:\Program Files (x86)\ParetoLogic\PCHA\pcha.exe94c1f1f0-a154-11e3-ad34-0030678f9f36

Error: (03/01/2014 04:02:08 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestD:\Downloads\SoftonicDownloader_fuer_icq.exe

Error: (03/01/2014 04:02:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestD:\Downloads\SoftonicDownloader21313.exe

Error: (03/01/2014 04:02:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestD:\Downloads\SoftonicDownloader58808.exe

Error: (03/01/2014 03:59:30 PM) (Source: Application Hang)(User: )
Description: otl.exe3.2.69.0111401cf355e7bba79504D:\otl.exe

Error: (03/01/2014 02:58:22 PM) (Source: Application Error)(User: )
Description: DllHost.exe6.1.7600.163854a5bca54d3d9.dll6.1.7600.163854a5bdebcc000041d000000000004338af9001cf35564e2ceb60C:\Windows\system32\DllHost.exeC:\Windows\system32\d3d9.dll8cb0fa20-a149-11e3-ad34-0030678f9f36


CodeIntegrity Errors:
===================================
  Date: 2014-02-26 15:25:53.386
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-26 15:25:53.384
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-26 15:25:53.383
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-26 15:25:53.361
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-26 15:25:53.360
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-26 15:25:53.358
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-24 17:57:42.727
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-24 17:57:42.725
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-24 17:57:42.723
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-24 17:57:42.698
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 41%
Total physical RAM: 4095.37 MB
Available physical RAM: 2414.61 MB
Total Pagefile: 8188.88 MB
Available Pagefile: 6360.23 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:68.26 GB) (Free:1.12 GB) NTFS
Drive d: (Volume) (Fixed) (Total:397.4 GB) (Free:14.9 GB) NTFS
Drive i: (Volume) (Fixed) (Total:931.51 GB) (Free:177.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 45B22130)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=68 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=397 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 5C909149)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
__________________

Alt 03.03.2014, 13:04   #4
schrauber
/// the machine
/// TB-Ausbilder
 

OTL logfiles - Standard

OTL logfiles



hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu OTL logfiles
definitiv, gescannt, logfile, logfiles, otl logfile, programm, runtergeladen, schrott, virus, windows



Ähnliche Themen: OTL logfiles


  1. Logfiles - First / Addition
    Mülltonne - 11.10.2013 (1)
  2. OTL Logfiles auswerten
    Log-Analyse und Auswertung - 29.04.2013 (4)
  3. w32/patched.uc - logfiles
    Plagegeister aller Art und deren Bekämpfung - 15.04.2013 (17)
  4. logfiles von hijackthis,
    Plagegeister aller Art und deren Bekämpfung - 23.01.2013 (56)
  5. GUV-Trojaner Logfiles
    Plagegeister aller Art und deren Bekämpfung - 11.01.2013 (2)
  6. GVU-Trojaner - Logfiles
    Log-Analyse und Auswertung - 03.01.2013 (3)
  7. OTL logfiles auswerten.
    Log-Analyse und Auswertung - 02.12.2012 (11)
  8. GVU 2.07 Trojaner mit Logfiles
    Log-Analyse und Auswertung - 28.07.2012 (13)
  9. Hätte gerne eine Auswertung meiner HJT-logfiles und meiner OTL+Extras-logfiles
    Log-Analyse und Auswertung - 26.07.2012 (15)
  10. Gvu trojaner - logfiles
    Plagegeister aller Art und deren Bekämpfung - 11.07.2012 (1)
  11. otl logfiles auswertung
    Log-Analyse und Auswertung - 18.03.2012 (6)
  12. 50-€ Virus Logfiles von OTL
    Log-Analyse und Auswertung - 04.03.2012 (3)
  13. AKM Virus 50€ Logfiles
    Log-Analyse und Auswertung - 04.03.2012 (1)
  14. Logfiles!!!
    Log-Analyse und Auswertung - 01.09.2007 (1)
  15. Überprüfung von Logfiles
    Log-Analyse und Auswertung - 03.06.2006 (4)
  16. smitfraud.c logfiles
    Log-Analyse und Auswertung - 27.08.2005 (4)
  17. Logfiles in Ordnung??
    Log-Analyse und Auswertung - 14.07.2005 (1)

Zum Thema OTL logfiles - hallo, bei mir am pc geht garnix mehr ich kann kein virus programm drauf machen ,garnix mehr meine windows ist schrott habe definitiv n virus drauf nun habe ich mir - OTL logfiles...
Archiv
Du betrachtest: OTL logfiles auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.