Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   CPU Andauernt auf 100%! (https://www.trojaner-board.de/148014-cpu-andauernt-100-a.html)

ReZeR 16.01.2014 01:19
CPU Andauernt auf 100%!
 
Hallo,

Also wie im Titel schon beschrieben läuft mein CPU meines Sony Vaio Laptop´s dauernt auf 100%.
Ich hatte im Taskmanager mal geschaut welches Programm am meisten die Prozente hoch steigen lässt es ist Diensthost: Lokaler Dienst.

Aber ich glaube das nur der Diensthost alleine schuld ist.

Habe auch schon einen OTL Scan gemacht und die log files unten eingefügt
Bitte um Hilfe.:)
Code:
OTL logfile created on: 16.01.2014 00:55:52 - Run 1
OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\Rezer\Downloads
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,95 Gb Total Physical Memory | 1,47 Gb Available Physical Memory | 37,24% Memory free
15,95 Gb Paging File | 10,97 Gb Available in Paging File | 68,80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 428,71 Gb Total Space | 324,00 Gb Free Space | 75,58% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 48,64 Gb Free Space | 10,44% Space Free | Partition Type: NTFS
 
Computer Name: REZER_PC | User Name: Rezer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Rezer\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe (APN LLC.)
PRC - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN)
PRC - C:\ProgramData\WPM\wprotectmanager.exe (Cherished Technololgy LIMITED)
PRC - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
PRC - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe (Microsoft Corporation.)
PRC - C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe ()
PRC - C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe (Opera Software)
PRC - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe (Smartbar)
PRC - C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\bclient.exe (SSL)
PRC - C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe (Bake Cake)
PRC - C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe (cake bake)
PRC - C:\Programme\McAfeeEx\MOCP\core\OcpTray.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe (Aeria Games & Entertainment)
PRC - C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
PRC - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros)
PRC - C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
PRC - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
PRC - C:\Programme\Sony\VAIO Care\listener.exe ()
PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
PRC - C:\Users\Rezer\Desktop\virtualdj_pro.exe (Atomix Productions)
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
MOD - C:\Program Files (x86)\Opera\18.0.1284.68\libglesv2.dll ()
MOD - C:\Program Files (x86)\Opera\18.0.1284.68\libegl.dll ()
MOD - C:\Program Files (x86)\Opera\18.0.1284.68\ffmpegsumo.dll ()
MOD - C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe ()
MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsForm0b574481#\afb23fbeab3f42a296d2267ff818226b\WindowsFormsIntegration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\dce9de99d0b6d6951b3e4bb96cdf8eb2\UIAutomationTypes.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\e6dc080a4287b7bd34a8df7bc3060287\System.Web.Services.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\1b66c3a9184d6f58a4ea4c9fda959ae1\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\9e55130078215e51257977a651b0696b\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\eac55000ab752ad6469e74bc2031a3ef\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\e846f72e7c00312a5d9c04e7f70fa4a8\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\5a86b00da9227fe7c9a1f6ca95c1850c\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\0cc1da9cd31b490f4ec04cb6c2aa0519\mscorlib.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\7c74d7aeea0b6338a41a568338ac0d44\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\38576feb5219017651ccabc47d762721\System.Xaml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5bfb986816df97dad53f0f8805034c13\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Transactions\236909def26d8a0afa1e3a3c1a565029\System.Transactions.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\bcf96bb3f336510eb9cb0528246b6286\System.Runtime.Serialization.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\f81d9811e7e3e49c6368eae04b82821e\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\7fc996267c8fdbf5f4a99648b2b4a764\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Data\a91958b0b36fad1117db357453c678e6\System.Data.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\4de0819b5866a864a353b401accbe99f\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\09a79e2680eb455c3bd86986a1a3ebc6\PresentationFramework.Aero2.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\43edf387058448969f5b045416e7a61f\PresentationFramework.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\cd8b0635d40858825092519b467e2051\PresentationCore.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\360aceaa71f85cd70876356d6f4a5019\WindowsBase.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\c4998b0a19973793e409d92b5ffb39de\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\7fb8b50f254a60f46417d8698735943a\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\f53cfbc3ae73aedfcdab4e4cfe531a4b\mscorlib.ni.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srut.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srsbs.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srpdm.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srns.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\srau.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\spbl.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sppsm.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\siem.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sgml.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\MACTrackBarLib.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\sgmu.dll ()
MOD - C:\Users\Rezer\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll ()
MOD - C:\Programme\McAfeeEx\MOCP\core\OCP_LD.dll ()
MOD - C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll ()
MOD - C:\WINDOWS\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_de_b77a5c561934e089\System.Xml.resources.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.resources\2.0.0.0_de_b77a5c561934e089\System.resources.dll ()
MOD - C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\zlib1.dll ()
MOD - C:\Program Files (x86)\Aeria Games\Ignite\AGAkamai.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll ()
MOD - C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll ()
MOD - C:\Programme\Sony\VAIO Care\listener.exe ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\dsp_Phaser.dll ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\VideoTransition\satelliteboom.dll ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\brake.dll ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\backspin.dll ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\VideoEffect\Sonique.dll ()
MOD - C:\Users\Rezer\Documents\VirtualDJ\Plugins\SoundEffect\BeatGrid.dll ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (SampleCollector) -- C:\Program Files\Sony\VAIO Care\VCPerfService.exe ()
SRV - (APNMCP) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe (APN LLC.)
SRV - (Wpm) -- C:\ProgramData\WPM\wprotectmanager.exe (Cherished Technololgy LIMITED)
SRV - (BBUpdate) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe (Microsoft Corporation.)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe (Microsoft Corporation.)
SRV - (SProtection) -- C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe (Iminent)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (OverwolfUpdaterService) -- C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf)
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirWebService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (BRSptSvc) -- C:\ProgramData\BitRaider\BRSptSvc.exe (BitRaider, LLC)
SRV - (lfsvc) -- C:\Windows\SysWOW64\GeofenceMonitorService.dll (Microsoft Corporation)
SRV - (NetworkSupport) -- C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe (Sony Corporation)
SRV - (BackupStack) -- C:\Program Files (x86)\MyPC Backup\BackupStack.exe (Just Develop It)
SRV - (PrintNotify) -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (Update WL) -- C:\Program Files (x86)\Web Layers\updateWebLayers.exe ()
SRV - (WebCakeUpdater) -- C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe (cake bake)
SRV - (mfeicfcoreocp) -- C:\Programme\McAfeeEx\MOCP\core\mfeicfcore.exe (McAfee, Inc.)
SRV - (VUAgent) -- C:\Programme\Sony\VAIO Update\VUAgent.exe (Sony Corporation)
SRV - (AtherosSvc) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Qualcomm Atheros Commnucations)
SRV - (ZAtheros Bt and Wlan Coex Agent) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros)
SRV - (SOHDms) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe (Sony Corporation)
SRV - (SOHDs) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe (Sony Corporation)
SRV - (SOHCImp) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe (Sony Corporation)
SRV - (VCService) -- C:\Programme\Sony\VAIO Care\VCService.exe (Sony Corporation)
SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
SRV - (VCFw) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation)
SRV - (AdobeARMservice) -- c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (VAIO Event Service) -- C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation)
SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation)
SRV - (VAIO Power Management) -- C:\Programme\Sony\VAIO Power Management\SPMService.exe (Sony Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation)
SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation)
SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation)
SRV - (SpfService) -- C:\Programme\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe (Sony Corporation)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (avnetflt) -- C:\Windows\SysNative\drivers\avnetflt.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (LSI_SAS3) -- C:\Windows\SysNative\drivers\lsi_sas3.sys (LSI Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\drivers\UCX01000.SYS (Microsoft Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (ReFS) -- C:\WINDOWS\SysNative\drivers\refs.sys (Microsoft Corporation)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc63.sys (Microsoft Corporation)
DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\drivers\BthLEEnum.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (StillCam) -- C:\Windows\SysNative\drivers\serscan.sys (Microsoft Corporation)
DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\drivers\fxppm.sys (Microsoft Corporation)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (RTL8168) -- C:\Windows\SysNative\drivers\Rt630x64.sys (Realtek                                            )
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athw8x.sys (Qualcomm Atheros Communications, Inc.)
DRV:64bit: - (mferkdet) -- C:\Windows\SysNative\drivers\mferkdet.sys (McAfee, Inc.)
DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\drivers\iaStorA.sys (Intel Corporation)
DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\drivers\btfilter.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_VDP) -- C:\Windows\SysNative\drivers\btath_vdp.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_RCP) -- C:\Windows\SysNative\drivers\btath_rcp.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_LWFLT) -- C:\Windows\SysNative\drivers\btath_lwflt.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_HCRP) -- C:\Windows\SysNative\drivers\btath_hcrp.sys (Qualcomm Atheros)
DRV:64bit: - (AthBTPort) -- C:\Windows\SysNative\drivers\btath_flt.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_A2DP) -- C:\Windows\SysNative\drivers\btath_a2dp.sys (Qualcomm Atheros)
DRV:64bit: - (btath_avdt) -- C:\Windows\SysNative\drivers\btath_avdt.sys (Qualcomm Atheros)
DRV:64bit: - (BTATH_BUS) -- C:\Windows\SysNative\drivers\btath_bus.sys (Qualcomm Atheros)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys (Synaptics Incorporated)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW86.sys (Advanced Micro Devices)
DRV:64bit: - (RSPCIESTOR) -- C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (SFEP) -- C:\Windows\SysNative\drivers\SFEP.sys (Sony Corporation)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (CLVirtualDrive) -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys (CyberLink)
DRV:64bit: - (SOWS) -- C:\Windows\SysNative\drivers\sows.sys (Sony Corporation)
DRV:64bit: - (HipShieldK) -- C:\Windows\SysNative\drivers\HipShieldK.sys (McAfee, Inc.)
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
IE - HKLM\..\URLSearchHook: {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN21121999732636817&UM=2&ctid=CT3312331
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKCU\..\SearchScopes,DefaultScope = {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB}
IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\..\SearchScopes\{1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB}: "URL" = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2
IE - HKCU\..\SearchScopes\{248E7D94-A51C-47C2-A4E2-3B9A7A1E9F54}: "URL" = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
IE - HKCU\..\SearchScopes\{98D8DE1A-26F3-41F6-9D9E-A488FDF1975A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
IE - HKCU\..\SearchScopes\{EEC7FB7A-1844-4173-83DC-C6B09E0A6DB2}: "URL" = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=0ebbb5bf000000000000161731e9add1&r=812
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\mcafee\msc\npMcSnFFPl64.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll File not found
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: c:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\seesimilar02@SeeSimilar.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedtestanalysis@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com [2013.12.31 14:52:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\seesimilar02@SeeSimilar.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\seesimilar02@SeeSimilar.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\zulagames@ZulaGames.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013.09.28 20:52:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedtestanalysis@SpeedAnalysis.com: C:\Users\Rezer\AppData\Roaming\Mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com [2013.12.31 14:52:57 | 000,000,000 | ---D | M]
 
[2013.12.31 14:52:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions
[2013.09.28 20:52:16 | 000,000,000 | ---D | M] (SeeSimilar02) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\seesimilar02@SeeSimilar.com
[2013.09.28 20:52:16 | 000,000,000 | ---D | M] (Speed Analysis 2) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
[2013.12.31 14:52:57 | 000,000,000 | ---D | M] (Speed Test Analysis) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\speedtestanalysis@SpeedAnalysis.com
[2013.09.28 20:52:16 | 000,000,000 | ---D | M] (Zula Games) -- C:\Users\Rezer\AppData\Roaming\mozilla\Extensions\zulagames@ZulaGames.com
[2013.08.20 01:42:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
 
O1 HOSTS File: ([2013.08.22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Plus-HD-4.9) - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho64.dll (Plus HD)
O2:64bit: - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
O2:64bit: - BHO: (Speed Test Analysis) - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files (x86)\Speed Test Analysis\ScriptHost64.dll (SpeedAnalysis.com)
O2:64bit: - BHO: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Plus-HD-4.9) - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho.dll (Plus HD)
O2 - BHO: (Speed Analysis 2) - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll (SpeedAnalysis.com)
O2 - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Speed Test Analysis) - {310D38FE-EB4C-467C-8781-B7C2AEB7847D} - C:\Program Files (x86)\Speed Test Analysis\ScriptHost.dll (SpeedAnalysis.com)
O2 - BHO: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
O2 - BHO: (appbarioDE Toolbar) - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (SeeSimilar02) - {93488930-185C-4CED-AFEB-0FD4930F8423} - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll (SeeSimilar.com)
O2 - BHO: (Web Layers) - {976d7863-9e6c-4066-8c67-0993db9de35f} - C:\Program Files (x86)\Web Layers\WebLayersbho.dll (Web Layers)
O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN)
O2 - BHO: (Zula Games) - {A9337080-7CBF-4E3E-80C1-3867BEDD88E0} - C:\Program Files (x86)\Zula Games\ScriptHost.dll (ZulaGames.com)
O2 - BHO: (delta Helper Object) - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.5\bh\delta.dll (Delta-search.com)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com)
O3:64bit: - HKLM\..\Toolbar: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
O3:64bit: - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (appbarioDE Toolbar) - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Delta Toolbar) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.5\deltaTlbr.dll (Delta-search.com)
O3 - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
O3 - HKCU\..\Toolbar\WebBrowser: (appbarioDE Toolbar) - {525BA996-1CE4-4677-91C5-9FC4EAD2D245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [BtTray] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe (Qualcomm Atheros)
O4:64bit: - HKLM..\Run: [BtvStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Communications)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Aeria Ignite] C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe (Aeria Games & Entertainment)
O4 - HKLM..\Run: [ApnTBMon] C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe (Iminent)
O4 - HKLM..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (Iminent)
O4 - HKLM..\Run: [Intel AppUp(R) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [BackgroundContainer] C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (Conduit Ltd.)
O4 - HKCU..\Run: [Browser Infrastructure Helper] C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe (Smartbar)
O4 - HKCU..\Run: [HP Deskjet 3520 series (NET)] C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKCU..\Run: [NextLive] C:\Users\Rezer\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe)
O4 - HKCU..\Run: [NTRedirect] C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll ()
O4 - HKCU..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe (Overwolf)
O4 - HKCU..\Run: [WebCake Desktop] C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe (Bake Cake)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aeriagames.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: aeriagames.com ([]https in Trusted sites)
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1A0A1E4C-842E-4469-B497-F2B174B1A3C7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E60843F7-BC1D-4A43-93B3-C9627732CE7A}: DhcpNameServer = 192.54.112.29
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) -  File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{482c464e-5b0b-11e3-824f-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{482c464e-5b0b-11e3-824f-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\setup.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014.01.14 00:42:48 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Sony Online Entertainment
[2014.01.11 21:04:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014.01.11 01:49:36 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Desktop\Ordner vom 11.01
[2014.01.11 00:07:13 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org
[2014.01.11 00:06:34 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
[2014.01.11 00:06:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyPC Backup
[2014.01.11 00:05:57 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Deployment
[2014.01.11 00:05:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector
[2014.01.11 00:05:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Systweak
[2014.01.11 00:05:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced System Protector
[2014.01.11 00:05:22 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM
[2014.01.11 00:04:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
[2014.01.11 00:04:43 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\systweak
[2014.01.11 00:04:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RegClean Pro
[2014.01.10 23:54:51 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Iggels
[2014.01.10 23:51:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Plus-HD-4.9
[2014.01.10 19:49:16 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Desktop\Bilder
[2014.01.09 15:50:58 | 000,000,000 | ---D | C] -- C:\Crash
[2014.01.09 14:28:46 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\SCE
[2014.01.09 14:28:36 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll
[2014.01.09 14:28:36 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll
[2014.01.09 14:28:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll
[2014.01.09 14:28:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll
[2014.01.09 14:28:35 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll
[2014.01.09 14:28:35 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll
[2014.01.09 14:28:34 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll
[2014.01.09 14:28:34 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll
[2014.01.09 14:28:34 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll
[2014.01.09 14:28:34 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll
[2014.01.09 14:28:32 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll
[2014.01.09 14:28:32 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll
[2014.01.09 14:28:31 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll
[2014.01.09 14:28:31 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll
[2014.01.09 14:28:30 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll
[2014.01.09 14:28:30 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll
[2014.01.05 08:46:57 | 000,246,784 | ---- | C] (DelphiZip) -- C:\WINDOWS\SysWow64\DelZip179.dll
[2014.01.05 08:46:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Berichtsheft Pro 3
[2014.01.05 08:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Berichtsheft Pro 3
[2013.12.31 15:42:53 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
[2013.12.31 15:42:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ
[2013.12.31 15:41:29 | 038,445,769 | ---- | C] (ChattChitto RG©) -- C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
[2013.12.31 14:53:36 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
[2013.12.31 14:53:35 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Documents\VirtualDJ
[2013.12.31 14:53:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VirtualDJ
[2013.12.31 14:52:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Speed Test Analysis
[2013.12.31 14:52:54 | 000,000,000 | ---D | C] -- C:\Users\Rezer\.android
[2013.12.31 14:52:53 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis
[2013.12.31 14:52:52 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\cache
[2013.12.31 14:52:51 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\newnext.me
[2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\Documents\Mobogenie
[2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Mobogenie
[2013.12.31 14:52:50 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\genienext
[2013.12.31 14:52:14 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
[2013.12.31 14:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobogenie
[2013.12.26 20:46:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.12.26 20:45:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013.12.26 20:45:36 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe
[2013.12.26 20:45:32 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe
[2013.12.26 20:45:32 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe
[2013.12.26 20:45:32 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
[2013.12.26 20:44:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.12.25 09:47:54 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Local\Google
[2013.12.25 09:47:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Softonic
[2013.12.25 04:56:47 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\Youtube Downloader HD
[2013.12.25 04:56:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD
[2013.12.25 04:56:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Youtube Downloader HD
[2013.12.25 04:56:26 | 000,000,000 | ---D | C] -- C:\Users\Rezer\AppData\Roaming\OpenCandy
[2013.12.23 13:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013.12.22 05:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Advanced Micro Devices, Inc
[2013.12.22 05:13:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
[2013.12.22 05:12:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2013.12.22 05:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2013.12.22 05:08:54 | 000,000,000 | ---D | C] -- C:\AMD
[2013.12.22 05:05:13 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2013.12.17 16:29:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013.12.17 16:29:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Overwolf
 
========== Files - Modified Within 30 Days ==========
 
[2014.01.16 00:15:00 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014.01.15 23:52:00 | 000,001,346 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-updater.job
[2014.01.15 23:52:00 | 000,001,298 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-codedownloader.job
[2014.01.15 23:52:00 | 000,001,170 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-enabler.job
[2014.01.15 23:51:02 | 000,002,014 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-chromeinstaller.job
[2014.01.15 23:51:01 | 000,002,144 | ---- | M] () -- C:\WINDOWS\tasks\Plus-HD-4.9-firefoxinstaller.job
[2014.01.15 23:10:36 | 001,776,918 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014.01.15 23:10:36 | 000,765,582 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat
[2014.01.15 23:10:36 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014.01.15 23:10:36 | 000,159,366 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat
[2014.01.15 23:10:36 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014.01.15 22:48:01 | 001,370,833 | ---- | M] () -- C:\Users\Rezer\Desktop\Planetside-2-Wallpaper.jpg
[2014.01.15 17:48:50 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014.01.15 17:46:48 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014.01.15 17:46:46 | 3391,741,952 | -HS- | M] () -- C:\hiberfil.sys
[2014.01.15 15:02:13 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job
[2014.01.15 00:58:13 | 000,000,503 | ---- | M] () -- C:\Users\Rezer\Desktop\Neues RTF-Dokument.rtf
[2014.01.15 00:05:20 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RegClean Pro_UPDATES.job
[2014.01.11 02:05:13 | 000,831,315 | ---- | M] () -- C:\Users\Rezer\Desktop\24008-video_games_planetside_2_wallpaper.jpg
[2014.01.11 02:03:00 | 000,378,868 | ---- | M] () -- C:\Users\Rezer\Desktop\mario-mario-wallpaper-hd-games.jpg
[2014.01.11 00:06:34 | 000,001,109 | ---- | M] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
[2014.01.10 20:18:58 | 002,180,938 | ---- | M] () -- C:\Users\Rezer\Desktop\20140108_200421.jpg
[2014.01.09 18:54:30 | 000,001,029 | ---- | M] () -- C:\Users\Rezer\Desktop\Prüfungsmenü Steven Schulz.rtf
[2014.01.09 14:27:29 | 000,002,545 | ---- | M] () -- C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
[2014.01.09 12:12:01 | 000,007,607 | ---- | M] () -- C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
[2014.01.06 23:31:05 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014.01.06 23:31:05 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014.01.05 08:46:58 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Berichtsheft Pro 3.lnk
[2014.01.03 07:43:10 | 000,357,888 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2013.12.31 15:42:25 | 038,445,769 | ---- | M] (ChattChitto RG©) -- C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
[2013.12.27 18:10:50 | 000,020,312 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\WINDOWS\SysNative\roboot64.exe
[2013.12.23 14:07:47 | 000,145,688 | ---- | M] () -- C:\WINDOWS\hpoins18.dat
 
========== Files Created - No Company Name ==========
 
[2014.01.15 22:48:00 | 001,370,833 | ---- | C] () -- C:\Users\Rezer\Desktop\Planetside-2-Wallpaper.jpg
[2014.01.15 00:00:04 | 000,000,503 | ---- | C] () -- C:\Users\Rezer\Desktop\Neues RTF-Dokument.rtf
[2014.01.11 02:05:13 | 000,831,315 | ---- | C] () -- C:\Users\Rezer\Desktop\24008-video_games_planetside_2_wallpaper.jpg
[2014.01.11 02:02:59 | 000,378,868 | ---- | C] () -- C:\Users\Rezer\Desktop\mario-mario-wallpaper-hd-games.jpg
[2014.01.11 01:16:52 | 000,001,108 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
[2014.01.11 00:06:34 | 000,001,109 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
[2014.01.11 00:05:38 | 000,016,896 | ---- | C] () -- C:\WINDOWS\SysNative\sasnative64.exe
[2014.01.11 00:05:19 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RegClean Pro_DEFAULT.job
[2014.01.11 00:05:17 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\RegClean Pro_UPDATES.job
[2014.01.10 23:52:15 | 000,001,346 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-updater.job
[2014.01.10 23:52:11 | 000,001,170 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-enabler.job
[2014.01.10 23:52:02 | 000,001,298 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-codedownloader.job
[2014.01.10 23:51:51 | 000,002,144 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-firefoxinstaller.job
[2014.01.10 23:51:36 | 000,002,014 | ---- | C] () -- C:\WINDOWS\tasks\Plus-HD-4.9-chromeinstaller.job
[2014.01.10 19:49:02 | 002,180,938 | ---- | C] () -- C:\Users\Rezer\Desktop\20140108_200421.jpg
[2014.01.09 14:27:29 | 000,002,575 | ---- | C] () -- C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
[2014.01.09 14:27:29 | 000,002,545 | ---- | C] () -- C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
[2014.01.09 12:12:01 | 000,007,607 | ---- | C] () -- C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
[2014.01.05 08:46:58 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Berichtsheft Pro 3.lnk
[2013.12.23 14:07:46 | 000,145,688 | ---- | C] () -- C:\WINDOWS\hpoins18.dat
[2013.12.23 14:07:46 | 000,006,600 | ---- | C] () -- C:\WINDOWS\hpomdl18.dat
[2013.12.23 13:19:34 | 000,001,029 | ---- | C] () -- C:\Users\Rezer\Desktop\Prüfungsmenü Steven Schulz.rtf
[2013.12.13 10:23:24 | 000,995,342 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe
[2013.12.13 10:23:24 | 000,798,734 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe
[2013.12.13 10:23:14 | 000,123,392 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll
[2013.12.02 05:39:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013.08.29 22:21:56 | 001,169,609 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2013.08.29 22:21:55 | 000,086,529 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2013.08.22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013.08.22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013.08.22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013.08.22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013.08.22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013.08.22 04:17:46 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013.08.22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013.08.22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013.07.28 14:16:26 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013.02.21 02:52:22 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat
[2013.02.21 02:52:20 | 000,026,936 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsnl.dat
[2013.02.21 02:52:14 | 000,003,917 | ---- | C] () -- C:\WINDOWS\SysWow64\atipblag.dat
[2013.02.21 02:52:12 | 000,000,025 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsny.dat
[2013.02.21 02:52:10 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat
[2013.01.29 05:51:00 | 000,074,703 | ---- | C] () -- C:\WINDOWS\SysWow64\mfc45.dll
[2012.05.10 16:35:16 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\kdbsdk32.dll
[2012.04.20 13:59:44 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll
 
========== ZeroAccess Check ==========
 
[2014.01.11 00:06:52 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.12.02 05:33:06 | 021,196,664 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.12.02 05:33:06 | 018,642,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013.08.22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013.08.22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013.08.22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== Files - Unicode (All) ==========
[2013.11.16 00:37:15 | 104,513,208 | ---- | M] ()(C:\WINDOWS\SysWow64\??LH) -- C:\WINDOWS\SysWow64\⫙LĤ
[2013.11.16 00:37:15 | 104,513,208 | ---- | C] ()(C:\WINDOWS\SysWow64\??LH) -- C:\WINDOWS\SysWow64\⫙LĤ
[2013.11.07 10:37:00 | 102,894,578 | ---- | M] ()(C:\WINDOWS\SysWow64\??Lc) -- C:\WINDOWS\SysWow64\⁺釈Lċ
[2013.11.07 10:37:00 | 102,894,578 | ---- | C] ()(C:\WINDOWS\SysWow64\??Lc) -- C:\WINDOWS\SysWow64\⁺釈Lċ
[2013.11.05 19:49:16 | 105,017,276 | ---- | M] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\ꊪL‘
[2013.11.05 00:25:46 | 105,017,276 | ---- | C] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\ꊪL‘
[2013.10.26 19:40:57 | 103,214,166 | ---- | M] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\冿殡LŸ
[2013.10.25 20:31:18 | 103,214,166 | ---- | C] ()(C:\WINDOWS\SysWow64\??L?) -- C:\WINDOWS\SysWow64\冿殡LŸ
[2013.10.25 14:30:58 | 102,975,063 | ---- | M] ()(C:\WINDOWS\SysWow64\??Ll) -- C:\WINDOWS\SysWow64\如곝Lĺ
[2013.10.24 19:53:12 | 102,975,063 | ---- | C] ()(C:\WINDOWS\SysWow64\??Ll) -- C:\WINDOWS\SysWow64\如곝Lĺ
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 237 bytes -> C:\Users\Rezer\SkyDrive:ms-properties

< End of report >
Falls ein Program bei sein sollte was "illegal" ist bitte bescheid sagen.
Hab nicht sehr viel ahnung von allem .

schrauber 16.01.2014 07:48
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


ReZeR 27.01.2014 13:24
Entschuldigung das ich mich erst jetzt melde hatte von Arbeit aus ein Außeneinsatz.

hier die beiden Dokumente.

Achso jetzt ist auch bei meinen Windows 8 Laptop der Datenträger dauerhaft auf 100% auslastung. Nach dem Taskmanager zurfolge ist allgmein das System schuld.
Schonmal danke für die antwort.:)

Gruß Steven

schrauber 28.01.2014 10:44
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

ReZeR 28.01.2014 11:42
Hier bitte schön:)

Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014
Ran by Rezer (administrator) on REZER_PC on 27-01-2014 13:16:47
Running from C:\Users\Rezer\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Iminent) C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
() C:\Program Files (x86)\Web Layers\updateWebLayers.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(cake bake) C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Akamai Technologies, Inc.) C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Akamai Technologies, Inc.) C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe
(Bake Cake) C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe
(Smartbar) C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe
(Overwolf) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Somoto) C:\Users\Rezer\AppData\Local\FilesFrog Update Checker\update_checker.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(McAfee, Inc.) C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(Aeria Games & Entertainment) C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(SSL) C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\bclient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\ipmgui.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Users\Rezer\AppData\Local\Lollipop\lollipop_01271202.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Conduit) C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
(Conduit) C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.EXE
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] - C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [766080 2012-11-05] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-11-05] (Atheros Communications)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2930488 2012-10-23] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(R) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-10-04] (Intel Corporation)
HKLM-x32\...\Run: [Aeria Ignite] - C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2014-01-11] (APN)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Iminent] - C:\Program Files (x86)\Iminent\Iminent.exe [1074736 2013-08-08] (Iminent)
HKLM-x32\...\Run: [IminentMessenger] - C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [884784 2013-08-08] (Iminent)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761536 2013-12-31] ()
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Rezer\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [HP Deskjet 3520 series (NET)] - C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKCU\...\Run: [NTRedirect] - C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll [187888 2013-08-22] ()
HKCU\...\Run: [WebCake Desktop] - C:\Users\Rezer\AppData\Roaming\Tepfel\WebCakeDesktop.exe [52504 2013-08-10] (Bake Cake)
HKCU\...\Run: [BackgroundContainer] - C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll [319264 2013-10-14] (Conduit Ltd.) <===== ATTENTION
HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Rezer\AppData\Local\Smartbar\Application\SnapDo.exe [21536 2013-10-31] (Smartbar)
HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe [35768 2013-12-09] (Overwolf)
HKCU\...\Run: [NextLive] - C:\Users\Rezer\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe)
HKCU\...\Run: [SDP] - C:\Users\Rezer\AppData\Local\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKCU\...\Run: [lollipop_01271202] - c:\users\rezer\appdata\local\lollipop\lollipop_01271202.exe [2788352 2014-01-27] ()
MountPoints2: {482c464e-5b0b-11e3-824f-806e6f6e6963} - "D:\setup.exe"
HKU\Gast\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1344800 2014-01-20] (Conduit)
AppInit_DLLs: C:\PROGRA~2\SUPPOR~1\SUPPOR~2.DLL => C:\Program Files (x86)\Supporter\Supporter_x64.dll [4229120 2014-01-23] ()
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1037600 2014-01-20] (Conduit)
AppInit_DLLs-x32: c:\progra~2\suppor~1\suppor~1.dll => C:\Program Files (x86)\Supporter\Supporter.dll [4105216 2014-01-23] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&CUI=UN21121999732636817&UM=2&ctid=CT3312331&UP=SP4786A570-BB5A-425F-B7A8-9E6D8BBA9821&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
URLSearchHook: HKLM-x32 - appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
URLSearchHook: HKCU - UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKCU - DefaultScope {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=bf21a708-efc3-f61b-02d1-4a88a18074b9&searchtype=ds&q={searchTerms}&installDate=29/08/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {1B1754E0-DAFA-4969-BE0A-AFA8D9D69EAB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3312331&CUI=UN21121999732636817&UM=2
SearchScopes: HKCU - {248E7D94-A51C-47C2-A4E2-3B9A7A1E9F54} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1389395095&from=cor&uid=TOSHIBAXMQ01ABD050_Y2QGC1G9TXXY2QGC1G9T&q={searchTerms}
SearchScopes: HKCU - {98D8DE1A-26F3-41F6-9D9E-A488FDF1975A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKCU - {EEC7FB7A-1844-4173-83DC-C6B09E0A6DB2} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=0ebbb5bf000000000000161731e9add1&r=812
BHO: Plus-HD-4.9 - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho64.dll (Plus HD)
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Plus-HD-4.9 - {11111111-1111-1111-1111-110411591118} - C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-bho.dll (Plus HD)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
BHO-x32: appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: SeeSimilar02 - {93488930-185C-4CED-AFEB-0FD4930F8423} - C:\Program Files (x86)\SeeSimilar02\ScriptHost.dll (SeeSimilar.com)
BHO-x32: Web Layers - {976d7863-9e6c-4066-8c67-0993db9de35f} - C:\Program Files (x86)\Web Layers\WebLayersbho.dll (Web Layers)
BHO-x32: IMinent WebBooster (BHO) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN)
BHO-x32: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.5\bh\delta.dll (Delta-search.com)
BHO-x32: ViewPassword - {c75769ca-5da6-4f06-b061-424316dfb486} - C:\Program Files (x86)\ViewPassword\150.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Ask Toolbar - {4F524A2D-5637-006A-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - appbarioDE Toolbar - {525ba996-1ce4-4677-91c5-9fc4ead2d245} - C:\Program Files (x86)\appbarioDE\prxtbappb.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {525BA996-1CE4-4677-91C5-9FC4EAD2D245} -  No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR Extension: (Docs) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-26]
CHR Extension: (Google Drive) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-26]
CHR Extension: (YouTube) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-26]
CHR Extension: (Google Search) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-26]
CHR Extension: (Softonic Chrome Toolbar) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-12-25]
CHR Extension: (Delta Toolbar) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2014-01-26]
CHR Extension: (SeeSimilar02) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fegpgkakakkgjlnfdfoghgoohkbcejpm [2014-01-26]
CHR Extension: (Zula Games) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-01-26]
CHR Extension: (Plus-HD-4.9) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjflmfkjppbmejlfbhlpgjnomdoefkfa [2014-01-10]
CHR Extension: (ViewPassword) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmojojliiicbbihpjmiepllaiflnjobc [2014-01-26]
CHR Extension: (No Name) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckgnnipheglejoddfhekdjpbdbinhmb [2013-12-31]
CHR Extension: (Google Wallet) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-26]
CHR Extension: (Gmail) - C:\Users\Rezer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-26]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Rezer\AppData\Roaming\BabSolution\CR\Delta.crx [2013-08-20]
CHR HKLM-x32\...\Chrome\Extension: [fegpgkakakkgjlnfdfoghgoohkbcejpm] - C:\Users\Rezer\AppData\Roaming\SeeSimilar02\SeeSimilar02.crx [2013-06-11]
CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Rezer\AppData\Roaming\zulagames\zulagames.crx [2013-07-01]
CHR HKLM-x32\...\Chrome\Extension: [jmojojliiicbbihpjmiepllaiflnjobc] - C:\Program Files (x86)\ViewPassword\150.crx [2014-01-23]
CHR HKLM-x32\...\Chrome\Extension: [kckgnnipheglejoddfhekdjpbdbinhmb] - C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis\SpeedTestAnalysis.crx [2013-09-30]

==================== Services (Whitelisted) =================

U2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-27] (Avira Operations GmbH & Co. KG)
U4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-01-11] (APN LLC.)
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231040 2012-11-05] (Qualcomm Atheros Commnucations)
U2 be0fb33b; C:\Program Files (x86)\Supporter\SupporterSvc.dll [183632 2014-01-23] ()
U3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2013-11-25] (BitRaider, LLC)
U2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2301216 2014-01-20] (Conduit)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
U2 mfeicfcoreocp; C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe [2776256 2013-08-08] (McAfee, Inc.)
U3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
U2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
U3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
U2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
U2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
U2 SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2905408 2013-12-11] (Iminent)
U2 Update WL; C:\Program Files (x86)\Web Layers\updateWebLayers.exe [199968 2013-08-17] ()
U3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation)
U3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U2 WebCakeUpdater; C:\Program Files (x86)\Tepfel\WebCakeDesktop.Updater.exe [51992 2013-08-10] (cake bake)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2014-01-11] (Cherished Technololgy LIMITED)
U2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-11-05] (Atheros)

==================== Drivers (Whitelisted) ====================

U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-10-22] (Advanced Micro Devices)
U2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-27] (Avira Operations GmbH & Co. KG)
U1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132600 2013-11-27] (Avira Operations GmbH & Co. KG)
U1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
U2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [83160 2013-11-27] (Avira Operations GmbH & Co. KG)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-05] (Qualcomm Atheros)
U3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-11-05] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106552 2013-02-19] (McAfee, Inc.)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-23] (Synaptics Incorporated)
U3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-12-02] (Microsoft Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-27 13:16 - 2014-01-27 13:17 - 00031452 _____ C:\Users\Rezer\Downloads\FRST.txt
2014-01-27 13:16 - 2014-01-27 13:16 - 00000000 ____D C:\FRST
2014-01-27 13:15 - 2014-01-27 13:15 - 02078208 _____ (Farbar) C:\Users\Rezer\Downloads\FRST64.exe
2014-01-27 13:06 - 2014-01-27 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\SearchProtect
2014-01-27 13:02 - 2014-01-27 13:02 - 00003370 _____ C:\WINDOWS\System32\Tasks\BackgroundContainer Startup Task
2014-01-26 15:03 - 2014-01-27 13:03 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-26 15:02 - 2014-01-27 13:13 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-26 15:02 - 2014-01-27 13:02 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-26 15:02 - 2014-01-26 15:08 - 00004098 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-26 15:02 - 2014-01-26 15:08 - 00003862 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-26 15:02 - 2014-01-26 15:02 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-26 15:01 - 2014-01-26 15:01 - 00819192 _____ (Google Inc.) C:\Users\Rezer\Downloads\ChromeSetup.exe
2014-01-25 20:35 - 2014-01-26 15:15 - 00000259 _____ C:\Users\Rezer\Desktop\Neues Textdokument.txt
2014-01-23 07:27 - 2014-01-23 07:27 - 00000000 ____D C:\WINDOWS\PCHEALTH
2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-23 07:24 - 2014-01-26 23:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 __RHD C:\MSOCache
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Users\Rezer\AppData\Local\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-23 07:18 - 2014-01-23 07:20 - 704809728 _____ (Microsoft Corporation) C:\Users\Rezer\Desktop\X17-22376.exe
2014-01-23 07:15 - 2014-01-23 07:15 - 00002226 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 07:09 - 2014-01-26 23:50 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Supporter
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-23 07:04 - 2014-01-27 13:15 - 00000000 ____D C:\Users\Rezer\AppData\Local\Lollipop
2014-01-23 07:04 - 2014-01-27 13:06 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2014-01-23 07:04 - 2014-01-27 13:05 - 00000000 ____D C:\Program Files (x86)\Wajam
2014-01-23 07:04 - 2014-01-27 13:02 - 00000416 _____ C:\WINDOWS\Tasks\ViewPassword Update.job
2014-01-23 07:04 - 2014-01-23 07:04 - 00003056 _____ C:\WINDOWS\System32\Tasks\ViewPassword Update
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\SearchProtect
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\ViewPassword
2014-01-23 07:03 - 2014-01-23 07:03 - 00250224 _____ (Rapiddown) C:\Users\Rezer\Downloads\Microsoft Word.exe
2014-01-22 16:24 - 2014-01-27 12:54 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-22 16:24 - 2014-01-22 16:24 - 2315084775 _____ C:\WINDOWS\MEMORY.DMP
2014-01-22 16:24 - 2014-01-22 16:24 - 00279720 _____ C:\WINDOWS\Minidump\012214-21140-01.dmp.old
2014-01-20 00:14 - 2014-01-20 04:39 - 00000000 ____D C:\Users\Rezer\Desktop\Berichtsheft neu
2014-01-19 21:55 - 2014-01-19 21:55 - 00047564 _____ C:\Users\Rezer\Documents\ts3_clientui-win32-1382530211-2014-01-19 21_55_37.650061.dmp
2014-01-18 18:36 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Local\AthbtTrayPhone
2014-01-18 18:33 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\(78-F7-BE-C8-39-63)
2014-01-16 01:07 - 2014-01-16 01:07 - 00090814 _____ C:\Users\Rezer\Downloads\Extras.Txt
2014-01-16 01:06 - 2014-01-16 01:06 - 00142782 _____ C:\Users\Rezer\Downloads\OTL.Txt
2014-01-16 00:45 - 2014-01-16 00:45 - 00602112 _____ (OldTimer Tools) C:\Users\Rezer\Downloads\OTL.exe
2014-01-15 11:26 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 11:26 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 11:26 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 11:26 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 11:26 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 11:26 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 11:26 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 11:26 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 11:26 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 11:26 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 11:26 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 14:00 - 2014-01-14 14:31 - 00000737 _____ C:\Users\Rezer\Desktop\Einkaufs und Rezept liste.txt
2014-01-14 00:42 - 2014-01-14 21:07 - 00000000 ____D C:\Users\Rezer\AppData\Local\Sony Online Entertainment
2014-01-11 01:49 - 2014-01-11 01:51 - 00000000 ____D C:\Users\Rezer\Desktop\Ordner vom 11.01
2014-01-11 01:16 - 2014-01-11 01:16 - 00001108 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-11 00:07 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org
2014-01-11 00:06 - 2014-01-27 13:07 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2014-01-11 00:05 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Local\Deployment
2014-01-11 00:05 - 2014-01-11 00:05 - 00000000 ____D C:\ProgramData\WPM
2014-01-11 00:04 - 2014-01-27 12:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\systweak
2014-01-11 00:04 - 2014-01-11 00:02 - 02056176 _____ (VASoftOnline) C:\Users\Rezer\Downloads\VASoftOnlineMySpaceMP3DownloaderSetup.exe
2014-01-11 00:02 - 2014-01-11 00:02 - 00692768 _____ C:\Users\Rezer\Downloads\myspace-mp3-downloader_setup.exe
2014-01-10 23:59 - 2014-01-10 23:59 - 00000000 ____D C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1)
2014-01-10 23:58 - 2014-01-10 23:58 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1).zip
2014-01-10 23:56 - 2014-01-10 23:56 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00423981 _____ C:\Users\Rezer\Downloads\MyMusicDownloader.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Iggels
2014-01-10 23:52 - 2014-01-27 12:59 - 00001346 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2014-01-10 23:52 - 2014-01-27 12:59 - 00001298 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job
2014-01-10 23:52 - 2014-01-27 12:59 - 00001170 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
2014-01-10 23:52 - 2014-01-10 23:52 - 00004350 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-updater
2014-01-10 23:52 - 2014-01-10 23:52 - 00004302 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-codedownloader
2014-01-10 23:52 - 2014-01-10 23:52 - 00004174 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-enabler
2014-01-10 23:51 - 2014-01-27 12:59 - 00002144 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2014-01-10 23:51 - 2014-01-27 12:59 - 00002014 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2014-01-10 23:51 - 2014-01-10 23:52 - 00000000 ____D C:\Program Files (x86)\Plus-HD-4.9
2014-01-10 23:50 - 2014-01-10 23:50 - 00401776 _____ (Softonic                                        ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_myspace-music-downloader.exe
2014-01-10 19:49 - 2014-01-11 01:51 - 00000000 ____D C:\Users\Rezer\Desktop\Bilder
2014-01-09 15:50 - 2014-01-09 15:50 - 00000000 ____D C:\Crash
2014-01-09 14:28 - 2014-01-09 14:28 - 00000000 ____D C:\Users\Rezer\AppData\Local\SCE
2014-01-09 14:28 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-01-09 14:28 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-01-09 14:28 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-09 14:27 - 2014-01-09 14:27 - 20095616 _____ C:\Users\Rezer\Downloads\PS2_PSG_setup.exe
2014-01-09 14:27 - 2014-01-09 14:27 - 00002575 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00002545 _____ C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2014-01-09 12:12 - 2014-01-09 12:12 - 00007607 _____ C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
2014-01-05 08:46 - 2014-01-27 12:51 - 00000000 ____D C:\Program Files (x86)\Berichtsheft Pro 3
2014-01-05 08:45 - 2014-01-05 08:46 - 13264251 _____ C:\Users\Rezer\Downloads\Berichtsheft-Pro_3.zip
2013-12-31 15:42 - 2013-12-31 15:42 - 00000834 _____ C:\Users\Gast\Desktop\Virtual DJ Pro.lnk
2013-12-31 15:42 - 2013-12-31 15:42 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
2013-12-31 15:41 - 2013-12-31 15:42 - 38445769 _____ (ChattChitto RG©) C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
2013-12-31 14:53 - 2014-01-24 11:16 - 00000000 ____D C:\Users\Rezer\Documents\VirtualDJ
2013-12-31 14:53 - 2013-12-31 15:42 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-12-31 14:53 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2013-12-31 14:52 - 2014-01-27 13:00 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\newnext.me
2013-12-31 14:52 - 2014-01-27 12:55 - 00016669 _____ C:\Users\Rezer\daemonprocess.txt
2013-12-31 14:52 - 2014-01-02 15:27 - 00000000 ____D C:\Users\Rezer\AppData\Local\Mobogenie
2013-12-31 14:52 - 2013-12-31 15:09 - 00000000 ____D C:\Users\Rezer\AppData\Local\cache
2013-12-31 14:52 - 2013-12-31 15:08 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\Documents\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\genienext
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\.android
2013-12-31 14:50 - 2013-12-31 14:50 - 00401784 _____ (Softonic                                        ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_virtual-dj-free-home-edition.exe

==================== One Month Modified Files and Folders =======

2014-01-27 13:17 - 2014-01-27 13:16 - 00031452 _____ C:\Users\Rezer\Downloads\FRST.txt
2014-01-27 13:16 - 2014-01-27 13:16 - 00000000 ____D C:\FRST
2014-01-27 13:15 - 2014-01-27 13:15 - 02078208 _____ (Farbar) C:\Users\Rezer\Downloads\FRST64.exe
2014-01-27 13:15 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\Lollipop
2014-01-27 13:15 - 2013-07-17 17:24 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-27 13:15 - 2013-01-29 04:49 - 00000000 ____D C:\ProgramData\MOCP
2014-01-27 13:13 - 2014-01-26 15:02 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-27 13:11 - 2013-07-03 18:58 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3742882051-674819057-3509049254-1001
2014-01-27 13:07 - 2014-01-11 00:06 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2014-01-27 13:07 - 2013-12-09 23:19 - 00003930 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BBAC1DD8-4656-4C81-8F19-C1FCD5DCDC76}
2014-01-27 13:07 - 2013-12-02 05:58 - 01805889 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-27 13:06 - 2014-01-27 13:06 - 00000000 ____D C:\WINDOWS\SysWOW64\SearchProtect
2014-01-27 13:06 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2014-01-27 13:06 - 2013-09-30 05:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-27 13:06 - 2013-09-30 04:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-27 13:06 - 2013-09-30 04:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-27 13:05 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\Wajam
2014-01-27 13:03 - 2014-01-26 15:03 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-27 13:02 - 2014-01-27 13:02 - 00003370 _____ C:\WINDOWS\System32\Tasks\BackgroundContainer Startup Task
2014-01-27 13:02 - 2014-01-26 15:02 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-27 13:02 - 2014-01-23 07:04 - 00000416 _____ C:\WINDOWS\Tasks\ViewPassword Update.job
2014-01-27 13:02 - 2013-12-04 23:18 - 00000000 ____D C:\Users\Rezer\AppData\Local\Overwolf
2014-01-27 13:02 - 2013-12-02 06:24 - 00000000 __RDO C:\Users\Rezer\SkyDrive
2014-01-27 13:02 - 2013-08-29 22:21 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Tepfel
2014-01-27 13:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-27 13:00 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\newnext.me
2014-01-27 12:59 - 2014-01-10 23:52 - 00001346 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job
2014-01-27 12:59 - 2014-01-10 23:52 - 00001298 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job
2014-01-27 12:59 - 2014-01-10 23:52 - 00001170 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job
2014-01-27 12:59 - 2014-01-10 23:51 - 00002144 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job
2014-01-27 12:59 - 2014-01-10 23:51 - 00002014 _____ C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job
2014-01-27 12:58 - 2013-09-29 20:04 - 00007592 _____ C:\WINDOWS\PFRO.log
2014-01-27 12:58 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-27 12:57 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-27 12:55 - 2013-12-31 14:52 - 00016669 _____ C:\Users\Rezer\daemonprocess.txt
2014-01-27 12:55 - 2013-07-03 18:50 - 00000000 ___RD C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-27 12:54 - 2014-01-22 16:24 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-27 12:54 - 2014-01-11 00:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\systweak
2014-01-27 12:51 - 2014-01-05 08:46 - 00000000 ____D C:\Program Files (x86)\Berichtsheft Pro 3
2014-01-27 12:38 - 2013-12-04 23:18 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\TS3Client
2014-01-27 02:39 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2014-01-26 23:52 - 2014-01-23 07:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-26 23:50 - 2014-01-23 07:09 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-26 22:35 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-26 22:31 - 2013-08-22 15:44 - 00499792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-26 15:15 - 2014-01-25 20:35 - 00000259 _____ C:\Users\Rezer\Desktop\Neues Textdokument.txt
2014-01-26 15:08 - 2014-01-26 15:02 - 00004098 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-26 15:08 - 2014-01-26 15:02 - 00003862 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-26 15:02 - 2014-01-26 15:02 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-26 15:02 - 2013-12-25 09:47 - 00000000 ____D C:\Users\Rezer\AppData\Local\Google
2014-01-26 15:01 - 2014-01-26 15:01 - 00819192 _____ (Google Inc.) C:\Users\Rezer\Downloads\ChromeSetup.exe
2014-01-24 11:16 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\Documents\VirtualDJ
2014-01-23 07:27 - 2014-01-23 07:27 - 00000000 ____D C:\WINDOWS\PCHEALTH
2014-01-23 07:27 - 2013-09-30 04:59 - 00000000 ____D C:\WINDOWS\ShellNew
2014-01-23 07:27 - 2013-01-29 04:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-23 07:25 - 2014-01-23 07:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-23 07:25 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 __RHD C:\MSOCache
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Users\Rezer\AppData\Local\Microsoft Help
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-23 07:24 - 2014-01-23 07:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-23 07:24 - 2012-07-26 06:26 - 00000199 _____ C:\WINDOWS\win.ini
2014-01-23 07:20 - 2014-01-23 07:18 - 704809728 _____ (Microsoft Corporation) C:\Users\Rezer\Desktop\X17-22376.exe
2014-01-23 07:15 - 2014-01-23 07:15 - 00002226 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00002132 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\ProgramData\Microsoft SkyDrive
2014-01-23 07:15 - 2014-01-23 07:15 - 00000000 ____D C:\Program Files (x86)\Microsoft SkyDrive
2014-01-23 07:09 - 2013-07-03 18:48 - 00000000 ____D C:\Users\Rezer\AppData\Local\VirtualStore
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\FilesFrog Update Checker
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Supporter
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Minibar
2014-01-23 07:05 - 2014-01-23 07:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-23 07:04 - 2014-01-23 07:04 - 00003056 _____ C:\WINDOWS\System32\Tasks\ViewPassword Update
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Users\Rezer\AppData\Local\SearchProtect
2014-01-23 07:04 - 2014-01-23 07:04 - 00000000 ____D C:\Program Files (x86)\ViewPassword
2014-01-23 07:03 - 2014-01-23 07:03 - 00250224 _____ (Rapiddown) C:\Users\Rezer\Downloads\Microsoft Word.exe
2014-01-22 21:50 - 2013-12-02 05:44 - 00000000 ____D C:\Users\Rezer
2014-01-22 16:24 - 2014-01-22 16:24 - 2315084775 _____ C:\WINDOWS\MEMORY.DMP
2014-01-22 16:24 - 2014-01-22 16:24 - 00279720 _____ C:\WINDOWS\Minidump\012214-21140-01.dmp.old
2014-01-21 17:02 - 2013-07-03 18:57 - 00000000 ____D C:\Users\Rezer\AppData\Local\Akamai
2014-01-20 09:46 - 2013-08-22 15:46 - 00328672 _____ C:\WINDOWS\setupact.log
2014-01-20 04:39 - 2014-01-20 00:14 - 00000000 ____D C:\Users\Rezer\Desktop\Berichtsheft neu
2014-01-19 21:55 - 2014-01-19 21:55 - 00047564 _____ C:\Users\Rezer\Documents\ts3_clientui-win32-1382530211-2014-01-19 21_55_37.650061.dmp
2014-01-18 18:36 - 2014-01-18 18:36 - 00000000 ____D C:\Users\Rezer\AppData\Local\AthbtTrayPhone
2014-01-18 18:36 - 2014-01-18 18:33 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\(78-F7-BE-C8-39-63)
2014-01-16 02:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-16 01:07 - 2014-01-16 01:07 - 00090814 _____ C:\Users\Rezer\Downloads\Extras.Txt
2014-01-16 01:06 - 2014-01-16 01:06 - 00142782 _____ C:\Users\Rezer\Downloads\OTL.Txt
2014-01-16 00:45 - 2014-01-16 00:45 - 00602112 _____ (OldTimer Tools) C:\Users\Rezer\Downloads\OTL.exe
2014-01-15 21:29 - 2013-08-14 21:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 21:28 - 2013-12-02 05:44 - 00000000 ____D C:\Users\Gast
2014-01-15 21:26 - 2013-07-04 10:57 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 15:06 - 2013-07-03 18:47 - 00000000 ____D C:\Users\Rezer\AppData\Local\Packages
2014-01-14 21:07 - 2014-01-14 00:42 - 00000000 ____D C:\Users\Rezer\AppData\Local\Sony Online Entertainment
2014-01-14 14:31 - 2014-01-14 14:00 - 00000737 _____ C:\Users\Rezer\Desktop\Einkaufs und Rezept liste.txt
2014-01-11 01:51 - 2014-01-11 01:49 - 00000000 ____D C:\Users\Rezer\Desktop\Ordner vom 11.01
2014-01-11 01:51 - 2014-01-10 19:49 - 00000000 ____D C:\Users\Rezer\Desktop\Bilder
2014-01-11 01:16 - 2014-01-11 01:16 - 00001108 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2014-01-11 01:16 - 2013-07-03 18:50 - 00000908 _____ C:\Users\Rezer\Downloads\Downloads.lnk
2014-01-11 00:07 - 2014-01-11 00:07 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASoftOnline.org
2014-01-11 00:07 - 2014-01-11 00:05 - 00000000 ____D C:\Users\Rezer\AppData\Local\Deployment
2014-01-11 00:06 - 2013-09-11 20:02 - 00000000 ____D C:\Users\Rezer\AppData\Local\Apps\2.0
2014-01-11 00:05 - 2014-01-11 00:05 - 00000000 ____D C:\ProgramData\WPM
2014-01-11 00:02 - 2014-01-11 00:04 - 02056176 _____ (VASoftOnline) C:\Users\Rezer\Downloads\VASoftOnlineMySpaceMP3DownloaderSetup.exe
2014-01-11 00:02 - 2014-01-11 00:02 - 00692768 _____ C:\Users\Rezer\Downloads\myspace-mp3-downloader_setup.exe
2014-01-10 23:59 - 2014-01-10 23:59 - 00000000 ____D C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1)
2014-01-10 23:58 - 2014-01-10 23:58 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456 (1).zip
2014-01-10 23:56 - 2014-01-10 23:56 - 00423981 _____ C:\Users\Rezer\Downloads\myspace-music-downloader_21456.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00423981 _____ C:\Users\Rezer\Downloads\MyMusicDownloader.zip
2014-01-10 23:54 - 2014-01-10 23:54 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Iggels
2014-01-10 23:52 - 2014-01-10 23:52 - 00004350 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-updater
2014-01-10 23:52 - 2014-01-10 23:52 - 00004302 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-codedownloader
2014-01-10 23:52 - 2014-01-10 23:52 - 00004174 _____ C:\WINDOWS\System32\Tasks\Plus-HD-4.9-enabler
2014-01-10 23:52 - 2014-01-10 23:51 - 00000000 ____D C:\Program Files (x86)\Plus-HD-4.9
2014-01-10 23:50 - 2014-01-10 23:50 - 00401776 _____ (Softonic                                        ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_myspace-music-downloader.exe
2014-01-09 15:50 - 2014-01-09 15:50 - 00000000 ____D C:\Crash
2014-01-09 14:28 - 2014-01-09 14:28 - 00000000 ____D C:\Users\Rezer\AppData\Local\SCE
2014-01-09 14:27 - 2014-01-09 14:27 - 20095616 _____ C:\Users\Rezer\Downloads\PS2_PSG_setup.exe
2014-01-09 14:27 - 2014-01-09 14:27 - 00002575 _____ C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00002545 _____ C:\Users\Rezer\Desktop\PlanetSide 2 PSG.lnk
2014-01-09 14:27 - 2014-01-09 14:27 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2014-01-09 12:12 - 2014-01-09 12:12 - 00007607 _____ C:\Users\Rezer\AppData\Local\Resmon.ResmonCfg
2014-01-08 12:36 - 2013-08-29 22:21 - 00000000 ____D C:\Program Files (x86)\Tepfel
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-05 08:46 - 2014-01-05 08:45 - 13264251 _____ C:\Users\Rezer\Downloads\Berichtsheft-Pro_3.zip
2014-01-02 15:27 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\Mobogenie
2013-12-31 15:42 - 2013-12-31 15:42 - 00000834 _____ C:\Users\Gast\Desktop\Virtual DJ Pro.lnk
2013-12-31 15:42 - 2013-12-31 15:42 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
2013-12-31 15:42 - 2013-12-31 15:41 - 38445769 _____ (ChattChitto RG©) C:\Users\Rezer\Desktop\Virtual-DJ-v7.0-PRO---Crack.exe
2013-12-31 15:42 - 2013-12-31 14:53 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-12-31 15:09 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\cache
2013-12-31 15:08 - 2013-12-31 14:52 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-31 14:53 - 2013-12-31 14:53 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\Documents\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\SpeedTestAnalysis
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\AppData\Local\genienext
2013-12-31 14:52 - 2013-12-31 14:52 - 00000000 ____D C:\Users\Rezer\.android
2013-12-31 14:50 - 2013-12-31 14:50 - 00401784 _____ (Softonic                                        ) C:\Users\Rezer\Downloads\SoftonicDownloader_fuer_virtual-dj-free-home-edition.exe

Files to move or delete:
====================
C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll


Some content of TEMP:
====================
C:\Users\Rezer\AppData\Local\Temp\1cbf5764_.exe
C:\Users\Rezer\AppData\Local\Temp\3fdf4ece_.exe
C:\Users\Rezer\AppData\Local\Temp\4a1b6d54_.exe
C:\Users\Rezer\AppData\Local\Temp\avgnt.exe
C:\Users\Rezer\AppData\Local\Temp\BackupSetup.exe
C:\Users\Rezer\AppData\Local\Temp\install_helper.exe
C:\Users\Rezer\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Rezer\AppData\Local\Temp\Mobogenie_Setup_2-1-35_517.exe
C:\Users\Rezer\AppData\Local\Temp\nse6F7A.exe
C:\Users\Rezer\AppData\Local\Temp\nsl99F6.exe
C:\Users\Rezer\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Rezer\AppData\Local\Temp\plus-hd.exe
C:\Users\Rezer\AppData\Local\Temp\SpeedAnalysisSetup.exe
C:\Users\Rezer\AppData\Local\Temp\SPSetup.exe
C:\Users\Rezer\AppData\Local\Temp\vcredist_x64.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-27 06:58

==================== End Of Log ============================
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2014
Ran by Rezer at 2014-01-27 13:17:50
Running from C:\Users\Rezer\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Enabled - Out of date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Out of date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

ACID Music Studio 9.0 (x32 Version: 9.0.35 - Sony)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI  MUI (x32 Version: 11.0.00 - Adobe Systems Incorporated)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Akamai NetSession Interface (HKCU Version:  - Akamai Technologies, Inc)
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
AMD Accelerated Video Transcoding (Version: 12.5.100.21010 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
appbarioDE Toolbar for IE (x32 Version: 6.16.2.2 - appbarioDE)
Ask Toolbar (x32 Version: 12.10.0.18 - APN, LLC) <==== ATTENTION
Avira Free Antivirus (x32 Version: 14.0.1.749 - Avira)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bing Bar (x32 Version: 7.3.124.0 - Microsoft Corporation)
BitRaider Web Client (x32 Version: 1.1.9.4 - BitRaider, LLC)
Build-a-lot: On Vacation (x32 Version: 2.2.0.110 - WildTangent) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.1010.1519.25530 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.) Hidden
CyberLink PowerDVD (x32 Version: 9.0.5728.52 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 9.0.5728.52 - CyberLink Corp.) Hidden
Definition update for Microsoft Office 2010 (KB982726) (x32 Version:  - Microsoft)
Delta Chrome Toolbar (x32 Version:  - Visual Tools) <==== ATTENTION
Delta toolbar  (x32 Version: 1.8.24.5 - Delta) <==== ATTENTION
DVD Architect Studio 5.0 (x32 Version: 5.0.161 - Sony)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FilesFrog Update Checker (x32 Version:  - ) <==== ATTENTION
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
GrandFantasia-DE (x32 Version:  - )
Heroes of Hellas 3: Athens (x32 Version: 3.0.2.32 - WildTangent) Hidden
HP Deskjet 3520 series - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (x32 Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (x32 Version: 27.0.0 - Hewlett Packard)
HP Photo Creations (x32 Version: 1.0.0.7702 - HP)
HP Update (x32 Version: 5.003.003.001 - Hewlett-Packard)
Iminent (x32 Version: 6.32.41.0 - Iminent) <==== ATTENTION
Iminent (x32 Version: 6.32.41.0 - Iminent) Hidden <==== ATTENTION
Intel AppUp(R) center (x32 Version: 3.8.0.41505.25 - Intel)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.6.0.1030 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java 7 Update 9 (64-bit) (Version: 7.0.90 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Lollipop (HKCU Version:  - Lollipop Network, S.L.) <==== ATTENTION
Loong - Dragonblood (x32 Version: 2.04.0 - gamigo AG)
Luxor HD (x32 Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
McAfee Parental Controls (x32 Version: 2.2.122.12 - McAfee, Inc.)
Microsoft Office 365 Home Premium - de-de (Version: 15.0.4551.1512 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Outlook Social Connector (KB2289116) ªº§ó·s (x32 Version:  - Microsoft)
Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_x86 (x32 Version: 1.0.0 - Microsoft)
Mobogenie (x32 Version:  - Mobogenie.com) <==== ATTENTION
Movie Studio Platinum 12.0 (64-bit) (Version: 12.0.530 - Sony)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MySpace MP3 Downloader (HKCU Version: 2.1.0.1 - VASoftOnline.org)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Opera Stable 18.0.1284.68 (x32 Version: 18.0.1284.68 - Opera Software ASA)
Overwolf (x32 Version: 0.47.284 - Overwolf)
PlanetSide 2 (HKCU Version: 1.0.3.183 - Sony Online Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (x32 Version: 6.3.02.07270 - Sony Corporation)
Plus-HD-4.9 (x32 Version: 1.33.153.1 - Plus HD) <==== ATTENTION
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.214 - Qualcomm Atheros Communications)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.1.8400.28121 - Realtek Semiconductor Corp.)
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Search Protect (x32 Version: 2.9.60.20 - Conduit) <==== ATTENTION
SeeSimilar02 (x32 Version: 1.0.0.2 - SeeSimilar.com)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Snap.Do (x32 Version: 10.242.1.13231 - ReSoft Ltd.) <==== ATTENTION
Snap.Do Engine (HKCU Version: 10.242.1.13231 - ReSoft Ltd.) <==== ATTENTION
Sound Forge Audio Studio 10.0 (x32 Version: 10.0.178 - Sony)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Star Wars The Old Republic (x32 Version: 7.0.0.22 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
Studie zur Verbesserung von HP Deskjet 3520 series Produkten (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Supporter 1.80 (x32 Version:  - ShoppingChip) <==== ATTENTION
Synaptics Pointing Device Driver (Version: 16.2.16.2 - Synaptics Incorporated)
TeamSpeak 3 Client (x32 Version: 3.0.13 - TeamSpeak Systems GmbH)
Update for Microsoft Office 2010 (KB2202188) (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2413186) (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2433299) (x32 Version:  - Microsoft)
Update for Microsoft Outlook Social Connector (KB2289116) (x32 Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Xperia Link (x32 Version: 1.1.0.11020 - Sony Corporation)
VAIO Care (Version: 8.1.0.10120 - Sony Corporation)
VAIO Control Center (x32 Version: 6.1.0.10300 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 1.3.0.09290 - Sony Corporation) Hidden
VAIO Gate (x32 Version: 3.0.0.08140 - Sony Corporation)
VAIO Gate Default (x32 Version: 3.1.0.10240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.1.0.10220 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.1.0.10220 - Sony Corporation) Hidden
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (x32 Version: 2.1.0.10220 - Sony Corporation)
VAIO Media Server Settings (Version: 1.0.1.10170 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation) Hidden
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Update (x32 Version: 6.3.0.08010 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (x32 Version: 1.1.0.09200 - Sony Corporation)
VAIO-Handbuch (x32 Version: 3.0.0.08100 - Sony Corporation)
VAIO-Hardwarediagnose-Plugin für VAIO Care (x32 Version: 4.7.0.11070 - Sony Corporation)
VAIO-Support für Übertragungen (x32 Version: 1.9.0.11060 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Video Downloader version 2.0 (x32 Version: 2.0 - )
ViewPassword (x32 Version:  - ViewPassword Software)
Virtual DJ Pro Full - Atomix Productions (x32 Version:  - )
Virtual Villagers 5 - New Believers (x32 Version: 3.0.2.32 - WildTangent) Hidden
VirtualDJ Home FREE (x32 Version: 7.4 - Atomix Productions)
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Web Layers 3.0.0 (Version: 3.0.0 - Web Layers)
Web-Cake 3.00 (Version: 3.00 - Web Cake LLC) <==== ATTENTION
WildTangent Games App (x32 Version: 4.0.9.7 - WildTangent) Hidden
WildTangent-Spiele (x32 Version: 1.0.4.0 - WildTangent)
WPM17.8.0.3297 (x32 Version: 17.8.0.3297 - Cherished Technololgy LIMITED) <==== ATTENTION
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
YouTube Song Downloader (x32 Version: 8.2 - Abelssoft)

==================== Restore Points  =========================

10-01-2014 23:09:55 RegClean Pro Sa, Jan 11, 14  00:09
14-01-2014 05:17:16 Windows Update
17-01-2014 12:18:51 Windows Update
21-01-2014 04:40:12 Windows Update
23-01-2014 06:23:39 Installed Microsoft Office Professional 2010 Trial

==================== Hosts content: ==========================

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0A45FB58-DD7F-4340-A48C-3C102F716435} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0DDC8144-DFFF-485A-AC74-B99A3D3B0440} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {0F67A2BD-F75D-4384-A7D4-CE524A8F7390} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2012-11-01] (Sony Corporation)
Task: {1A13DA72-4CEF-4EAE-9194-E578B72356A8} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {1F5A5A70-8B89-4539-B0E9-2949E4CD3BF8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {1FD2F3D1-FDD2-4216-8711-045216935BB9} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-10-23] (Sony Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2A5F5D01-5B26-4EDD-BD85-14044E0C8BF1} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {2BB7FD6D-95C1-41F5-86A9-E23AC36DCA4D} - System32\Tasks\Plus-HD-4.9-updater => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-updater.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2E17F9EC-5AFD-4EDD-8BE4-78E033FEAB16} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {2FFFEA1B-047D-4789-9598-628C37C324A9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-01-26] (Microsoft Corporation)
Task: {30B0046B-EB87-4BE6-BA14-D0D07D1938AE} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {310A727A-3DD3-424E-920A-65625F894065} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {312A6156-8021-4E94-941E-57130B92315A} - System32\Tasks\Plus-HD-4.9-firefoxinstaller => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3651D4F2-4357-4A11-A823-9B4809F3596B} - System32\Tasks\ViewPassword Update => C:\Program Files (x86)\ViewPassword\ViewPassword.exe [2014-01-23] ()
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4D9ABAA8-5F8A-44DB-98CD-FEAAAF159E36} - System32\Tasks\Sony Corporation\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-11-08] (Sony Corporation)
Task: {52CBE68F-8072-4D8C-9D1F-6325843275D3} - System32\Tasks\Plus-HD-4.9-chromeinstaller => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {5A416DD2-8CE0-4D79-83AB-0724560FC542} - System32\Tasks\Plus-HD-4.9-codedownloader => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6F26E9BB-6DAC-4C76-B661-EEE536F4E4FE} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {70762985-E9E4-45B8-9B9A-B1322B025D27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {87DCB9FD-BB2D-44D5-9AC0-E21CA47DB3F7} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-10-31] (Microsoft Corporation)
Task: {89C6851E-036C-4AC5-AC61-80B00E3D82C2} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {8B83898D-9C05-4A35-9217-38A3E136DA64} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-10-22] (Sony Corporation)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8DA5E0C0-882B-4094-99DD-015BD7E268F3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {90124D33-9EAD-41FA-9082-470AE32614AF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0EB04D0-110F-4653-878C-BF4BD9888437} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {B2866DD3-BD5F-41AB-81C6-D23277F94ACA} - System32\Tasks\Plus-HD-4.9-enabler => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-enabler.exe [2014-01-10] (Plus HD) <==== ATTENTION
Task: {BDB267FA-F947-4A8B-88D7-ADB31321B680} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {C05EC041-B69C-471D-9EDB-B578609AA7A7} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-09-06] (Sony Corporation)
Task: {CA3DDF28-BED2-41FF-A4B8-EF5FC2930BBD} - System32\Tasks\EPUpdater => C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D00F299B-9701-417C-82DD-138DCB386F59} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DF3B7825-A320-4685-8BB1-53F55571B747} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EDB32402-89F8-4A61-AD14-5F33A359F541} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\Rezer\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION
Task: {F97D79E3-57D9-42AF-98D3-970DAE057DB6} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: {FDFCF419-9332-4CDC-A398-6717A371D9BC} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-codedownloader.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-enabler.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-4.9-updater.job => C:\Program Files (x86)\Plus-HD-4.9\Plus-HD-4.9-updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: C:\WINDOWS\Tasks\ViewPassword Update.job => C:\Program Files (x86)\ViewPassword\ViewPassword.exe

==================== Loaded Modules (whitelisted) =============

2013-12-09 12:08 - 2013-12-09 12:08 - 00045608 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorer-20125.dll
2012-11-05 19:28 - 2012-11-05 19:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-11-05 19:23 - 2012-11-05 19:23 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-11-05 19:26 - 2012-11-05 19:26 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00039464 _____ () C:\Program Files (x86)\Overwolf\x64\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00721960 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorerLauncher.dll
2013-08-09 21:44 - 2013-07-18 07:02 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-23 07:05 - 2014-01-23 07:05 - 00183632 _____ () C:\Program Files (x86)\Supporter\SupporterSvc.dll
2014-01-23 07:05 - 2014-01-23 07:05 - 04105216 _____ () C:\Program Files (x86)\Supporter\Supporter.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00079400 _____ () C:\Program Files (x86)\Overwolf\OWExplorer-20125.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00034848 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00056864 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srau.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00150560 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00112672 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 01981472 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00055840 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\spbl.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00013344 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\siem.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00049184 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sppsm.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00728096 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00082464 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014368 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00017440 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00031264 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srut.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00020512 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srsbs.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014368 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sgml.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00053280 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00014880 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srpdm.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00048160 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00026144 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00025632 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2013-10-31 15:17 - 2013-10-31 15:17 - 00193056 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\sgmu.dll
2013-10-31 15:16 - 2013-10-31 15:16 - 00068640 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2013-10-31 15:44 - 2013-10-31 15:44 - 00248864 _____ () C:\Users\Rezer\AppData\Local\Smartbar\Application\srns.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00015288 _____ () C:\Program Files (x86)\Overwolf\ODK.AddIns.V2.HostView.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00134696 _____ () C:\Program Files (x86)\Overwolf\OWService.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00970792 _____ () C:\Program Files (x86)\Overwolf\OWServer.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00038440 _____ () C:\Program Files (x86)\Overwolf\OWLog.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00839720 _____ () C:\Program Files (x86)\Overwolf\OWAgent.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00025600 _____ () C:\Program Files (x86)\Overwolf\CoreAudioApi.dll
2013-01-29 04:49 - 2013-09-10 13:38 - 00277416 _____ () C:\Program Files\McAfeeEx\MOCP\core\OCP_LD.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00016896 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00020480 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00446976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2013-01-29 04:47 - 2012-10-04 21:21 - 00064512 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2013-11-20 09:06 - 2013-07-08 06:21 - 00061440 _____ () C:\Users\Rezer\AppData\Roaming\Tepfel\dat\NSupport\zlib1.dll
2013-12-09 12:08 - 2013-12-09 12:08 - 00029224 _____ () C:\Program Files (x86)\Overwolf\OWExplorerLauncher.dll
2013-01-29 04:05 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-08-20 01:41 - 2013-08-22 11:02 - 00187888 _____ () C:\Users\Rezer\AppData\Roaming\BabSolution\Shared\enhancedNT.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00886624 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libglesv2.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00108896 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libegl.dll
2013-12-18 08:24 - 2013-12-12 10:15 - 00879968 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Rezer\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Could not start eventlog service, could not read events.

Der angeforderte Dienst wurde bereits gestartet.

Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.


==================== Memory info ===========================

Percentage of memory in use: 52%
Total physical RAM: 4043.27 MB
Available physical RAM: 1909.88 MB
Total Pagefile: 16331.27 MB
Available Pagefile: 13301.61 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:428.71 GB) (Free:315.52 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 20B45D39)

Partition: GPT Partition Type
==================== End Of Log ============================

schrauber 29.01.2014 09:53
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:10 Uhr.

Copyright ©2000-2024, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129