|
Plagegeister aller Art und deren Bekämpfung: Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
29.07.2013, 14:54 | #16 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Dann muss die fixlist auch im Ordner Download sein
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
29.07.2013, 15:13 | #17 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Ja. Hier schicke ich Dir 'mal einen Bildschirmabdruck als Anhang. |
29.07.2013, 15:41 | #18 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? das Ding heisst fixlist.txt, nicht fixlog . Fixlog ist es erst nach erfolgreichem Fix
__________________Noch Probleme mit der Kiste?
__________________ |
29.07.2013, 15:42 | #19 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? das Ding heisst fixlist.txt, nicht fixlog . Fixlog ist es erst nach erfolgreichem Fix Noch Probleme mit der Kiste?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
29.07.2013, 17:06 | #20 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo schrauber, jetzt habe ich es nocheinmal genau gemacht. Hier der Inhalt der Fixlog.txt : Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-07-2013 Ran by wolfgang at 2013-07-29 17:59:09 Run:1 Running from C:\Users\wolfgang\Downloads Boot Mode: Normal ============================================== ==== End of Fixlog ==== |
29.07.2013, 19:48 | #21 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Das ist doch zum Mäuse melken. Merkst Du das nicht? Das Fixlog ist leer, da müssten aber genau die gleichen Zeilen drin stehen wie in der Fixlist, nur mit dem Zusatz delete successfully. frisches FRST Scanlog bitte. Noch Probleme?
__________________ --> Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? |
30.07.2013, 13:12 | #22 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo schrauber, es steht noch mal dort: frisches FRST Scanlog --- deswegen mache ich es : FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-07-2013 Ran by wolfgang (administrator) on 30-07-2013 14:03:16 Running from C:\Users\wolfgang\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2013\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Microsoft Corporation) C:\Windows\system32\SLsvc.exe (Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe () C:\jQuerybuch\xampp\mysql\bin\mysqld.exe (Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe () C:\Program Files\CyberLink\Shared Files\RichVideo.exe (Secunia) C:\Program Files\Secunia\PSI\PSIA.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe (Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe (Secunia) C:\Program Files\Secunia\PSI\sua.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe (Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe (Microsoft Corporation) C:\Windows\System32\mobsync.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) C:\Program Files\Windows Mail\WinMail.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Microsoft Corporation) C:\Windows\system32\conime.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink) HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG) HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia) HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.) HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.) HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.) HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.) HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor) HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4408368 2013-04-29] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation) HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.) HKU\Default\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\Sidebar.exe [ 2009-04-11] (Microsoft Corporation) HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) HKU\Default User\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\Sidebar.exe [ 2009-04-11] (Microsoft Corporation) HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files\Secunia\PSI\psi_tray.exe (Secunia) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/ StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe" SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll () Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File Toolbar: HKCU -No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll () DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ Chrome: ======= CHR HomePage: hxxp://www.google.de/ CHR RestoreOnStartup: "hxxp://www.google.de/" CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Java\jre7\bin\plugin2\npjp2.dll No File CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll No File CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0 CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0 CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0 CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx ========================== Services (Whitelisted) ================= R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation) R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-14] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.) S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project) R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] () R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] () R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] () R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia) ==================== Drivers (Whitelisted) ==================== R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.) R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-03-29] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [170808 2013-02-08] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [245048 2013-02-08] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-02-08] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.) S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation) R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia) R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.) R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.) S3 catchme; \??\C:\Users\wolfgang\AppData\Local\Temp\catchme.sys [x] S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x] S3 IpInIp; system32\DRIVERS\ipinip.sys [x] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-30 14:03 - 2013-07-30 14:03 - 00000000 ____D C:\FRST 2013-07-29 19:35 - 2013-07-29 19:35 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu(1).exe 2013-07-28 17:54 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Desktop\SecurityCheck.exe 2013-07-28 17:52 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Downloads\SecurityCheck.exe 2013-07-28 15:06 - 2013-07-28 15:06 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe 2013-07-27 17:30 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Desktop\JRT.exe 2013-07-27 17:29 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT.exe 2013-07-27 16:40 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner.exe 2013-07-27 16:39 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner.exe 2013-07-27 11:50 - 2013-07-27 11:50 - 01220544 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe 2013-07-26 18:36 - 2013-07-30 07:49 - 00003778 _____ C:\Windows\PFRO.log 2013-07-26 18:20 - 2013-07-26 18:20 - 00000040 _____ C:\Users\wolfgang\Documents\spywareblaster1.txt 2013-07-26 18:13 - 2013-07-26 18:13 - 00000032 _____ C:\Users\wolfgang\Documents\spywareblaster.txt 2013-07-26 17:35 - 2013-07-26 17:35 - 00448512 _____ (OldTimer Tools) C:\Users\wolfgang\Desktop\TFC.exe 2013-07-26 16:41 - 2013-07-26 16:41 - 00000836 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\ProgramData\Licenses 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\Program Files\SpywareBlaster 2013-07-26 16:41 - 2011-11-04 05:13 - 01070352 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX 2013-07-26 16:41 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\system32\MSSTDFMT.DLL 2013-07-26 16:39 - 2013-07-26 16:39 - 04095448 _____ (BrightFort LLC ) C:\Users\wolfgang\Downloads\spywareblastersetup50.exe 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Secunia PSI 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Program Files\Secunia 2013-07-26 16:32 - 2013-07-26 16:32 - 03272136 _____ (Secunia) C:\Users\wolfgang\Downloads\PSISetup711.exe 2013-07-26 16:04 - 2013-07-26 16:04 - 00000866 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-07-26 16:04 - 2013-07-26 16:04 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2013-07-26 16:04 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-07-26 16:01 - 2013-07-26 16:01 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\wolfgang\Downloads\mbam-setup-1.75.0.1300(1).exe 2013-07-26 15:34 - 2013-07-26 15:34 - 00706916 _____ C:\Users\wolfgang\Downloads\delfix.exe 2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT 2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe 2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue 2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax 2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages 2013-07-24 17:54 - 2013-07-26 15:37 - 00000000 ____D C:\Windows\ERUNT 2013-07-24 15:51 - 2013-07-26 14:47 - 00000000 ____D C:\Windows\erdnt 2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe 2013-07-11 18:03 - 2013-07-26 17:34 - 00000000 ____D C:\littleboxesbeispiel 2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime 2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe 2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe 2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-03 10:32 - 2013-07-03 10:32 - 00016024 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_x86.sys 2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt 2013-07-01 19:02 - 2013-07-01 19:07 - 00001672 _____ C:\Windows\system32\ASOROSet.bin 2013-07-01 18:54 - 2013-07-03 11:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk 2013-07-01 18:54 - 2013-07-03 11:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio ==================== One Month Modified Files and Folders ======= 2013-07-30 14:03 - 2013-07-30 14:03 - 00000000 ____D C:\FRST 2013-07-30 13:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-30 13:50 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype 2013-07-30 13:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job 2013-07-30 13:47 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-30 13:47 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-30 13:39 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-30 12:50 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job 2013-07-30 11:54 - 2008-01-21 03:35 - 01952589 _____ C:\Windows\WindowsUpdate.log 2013-07-30 11:53 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData 2013-07-30 11:49 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job 2013-07-30 11:47 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-07-30 08:59 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-07-30 07:49 - 2013-07-26 18:36 - 00003778 _____ C:\Windows\PFRO.log 2013-07-29 19:35 - 2013-07-29 19:35 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu(1).exe 2013-07-29 17:50 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes 2013-07-29 17:40 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files 2013-07-29 17:10 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang 2013-07-28 17:52 - 2013-07-28 17:54 - 00891062 _____ C:\Users\wolfgang\Desktop\SecurityCheck.exe 2013-07-28 17:52 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Downloads\SecurityCheck.exe 2013-07-28 15:06 - 2013-07-28 15:06 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe 2013-07-27 17:55 - 2012-09-22 16:30 - 00000041 _____ C:\Windows\Filzip.ini 2013-07-27 17:29 - 2013-07-27 17:30 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Desktop\JRT.exe 2013-07-27 17:29 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT.exe 2013-07-27 16:39 - 2013-07-27 16:40 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner.exe 2013-07-27 16:39 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner.exe 2013-07-27 11:50 - 2013-07-27 11:50 - 01220544 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe 2013-07-26 18:34 - 2009-12-16 16:30 - 00000000 ____D C:\ProgramData\Ulead Systems 2013-07-26 18:33 - 2009-12-16 15:57 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-07-26 18:20 - 2013-07-26 18:20 - 00000040 _____ C:\Users\wolfgang\Documents\spywareblaster1.txt 2013-07-26 18:13 - 2013-07-26 18:13 - 00000032 _____ C:\Users\wolfgang\Documents\spywareblaster.txt 2013-07-26 17:35 - 2013-07-26 17:35 - 00448512 _____ (OldTimer Tools) C:\Users\wolfgang\Desktop\TFC.exe 2013-07-26 17:34 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel 2013-07-26 16:47 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2013-07-26 16:47 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2013-07-26 16:45 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java 2013-07-26 16:44 - 2013-01-12 10:05 - 00000000 ____D C:\Java 2013-07-26 16:41 - 2013-07-26 16:41 - 00000836 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\ProgramData\Licenses 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\Program Files\SpywareBlaster 2013-07-26 16:39 - 2013-07-26 16:39 - 04095448 _____ (BrightFort LLC ) C:\Users\wolfgang\Downloads\spywareblastersetup50.exe 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Secunia PSI 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Program Files\Secunia 2013-07-26 16:32 - 2013-07-26 16:32 - 03272136 _____ (Secunia) C:\Users\wolfgang\Downloads\PSISetup711.exe 2013-07-26 16:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\IME 2013-07-26 16:04 - 2013-07-26 16:04 - 00000866 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-07-26 16:04 - 2013-07-26 16:04 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2013-07-26 16:01 - 2013-07-26 16:01 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\wolfgang\Downloads\mbam-setup-1.75.0.1300(1).exe 2013-07-26 15:37 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT 2013-07-26 15:34 - 2013-07-26 15:34 - 00706916 _____ C:\Users\wolfgang\Downloads\delfix.exe 2013-07-26 14:47 - 2013-07-24 15:51 - 00000000 ____D C:\Windows\erdnt 2013-07-26 11:57 - 2009-12-17 09:48 - 00000000 ____D C:\Program Files\Google 2013-07-26 11:36 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google 2013-07-26 11:36 - 2009-12-17 09:48 - 00000000 ____D C:\ProgramData\Google 2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT 2013-07-26 09:33 - 2013-05-29 16:25 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard 2013-07-26 09:16 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther 2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe 2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue 2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax 2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages 2013-07-24 16:11 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default 2013-07-24 16:08 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini 2013-07-24 16:07 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public 2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM 2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe 2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla 2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe 2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1 2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk 2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype 2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype 2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT 2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer 2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI 2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal 2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache 2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages 2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE 2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat 2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat 2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-09 10:04 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk 2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime 2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe 2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe 2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera 2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk 2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio 2013-07-03 10:32 - 2013-07-03 10:32 - 00016024 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_x86.sys 2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt 2013-07-01 19:07 - 2013-07-01 19:02 - 00001672 _____ C:\Windows\system32\ASOROSet.bin 2013-07-01 19:07 - 2006-11-02 12:22 - 42467328 _____ C:\Windows\system32\config\software.bak 2013-07-01 19:07 - 2006-11-02 12:22 - 28835840 _____ C:\Windows\system32\config\system.bak 2013-07-01 19:07 - 2006-11-02 12:22 - 00024576 _____ C:\Windows\system32\config\security.bak 2013-07-01 19:05 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\sam.bak 2013-07-01 19:02 - 2013-06-02 16:34 - 00000000 ____D C:\Windows\system32\config\RCCBakup 2013-06-30 14:38 - 2012-07-18 19:21 - 00000000 ____D C:\Users\wolfgang\websitehersbruck2 ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-30 11:58 ==================== End Of Log ============================ --- --- --- --- --- --- Das ist die Datei FRST.txt . Ist das so richtig? Auf jeden Fall habe ich jetzt auf "Scan" geklickt. Gruß wolfgangti |
30.07.2013, 14:05 | #23 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter 2013-07-30 11:48 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job 2013-07-30 11:48 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Denk dran. Fixlist.txt muss am gleichen Ort liegen wie die FRST.exe Und berichte bitte ob der Rechner noch Probleme macht.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
30.07.2013, 14:41 | #24 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo schrauber, hier der Inhalt der Fixlog.txt : Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-07-2013 Ran by wolfgang at 2013-07-30 15:13:16 Run:1 Running from C:\Users\wolfgang\Downloads Boot Mode: Normal ============================================== C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job => Moved successfully. C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job => Moved successfully. C:\Windows\Tasks\Plus-HD-2.4-updater.job => Moved successfully. C:\Windows\Tasks\Plus-HD-2.4-enabler.job => Moved successfully. ==== End of Fixlog ==== Die Fehlermeldung ist leider noch da! Schreibe bitte, was für Beweise ich Dir schicken soll. Ich meine damit, dass Du sehen kannst, dass ich alles so gemacht habe, wie Du mir geschrieben hast. Gruss wolfgangti |
31.07.2013, 06:51 | #25 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Ich glaub dir auch so Öffne bitte FRST, setz nen Haken bei Additional und scanne, poste beide Logfiles
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
31.07.2013, 13:36 | #26 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo schrauber, ich stoße da auf Schwierigkeiten: anbei schicke ich Dir ein Screenshot, an dem Du siehst wie weit es geht. Ab diesem geht es dann nicht mehr vorwärts. Hoffentlich weißt Du einen Ausweg. Gruß wolfgangti |
31.07.2013, 19:21 | #27 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? mach den Haken bei Additional mal raus.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
01.08.2013, 08:02 | #28 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo, hier das FRST : FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-07-2013 Ran by wolfgang (administrator) on 01-08-2013 08:53:15 Running from C:\Users\wolfgang\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2013\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Microsoft Corporation) C:\Windows\system32\SLsvc.exe (Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe () C:\jQuerybuch\xampp\mysql\bin\mysqld.exe (Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe (Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe () C:\Program Files\CyberLink\Shared Files\RichVideo.exe (Secunia) C:\Program Files\Secunia\PSI\PSIA.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe (Secunia) C:\Program Files\Secunia\PSI\sua.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe (Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Microsoft Corporation) C:\Windows\System32\mobsync.exe (Google Inc.) C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.) C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe () C:\Users\wolfgang\AppData\Local\Google\Update\Install\{E902C82B-E72E-4FFE-9BF4-CFB7E5A4B2D4}\28.0.1500.95_28.0.1500.72_chrome_updater.exe (Google Inc.) C:\Users\wolfgang\AppData\Local\Temp\CR_623A0.tmp\setup.exe (Microsoft Corporation) C:\Program Files\Windows Mail\WinMail.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink) HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG) HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia) HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.) HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.) HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.) HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.) HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor) HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4411440 2013-07-01] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation) HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.) HKU\Default\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\Sidebar.exe [ 2009-04-11] (Microsoft Corporation) HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) HKU\Default User\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\Sidebar.exe [ 2009-04-11] (Microsoft Corporation) HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\System32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files\Secunia\PSI\psi_tray.exe (Secunia) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/ StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe" SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll () Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File Toolbar: HKCU -No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll () DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ Chrome: ======= CHR HomePage: hxxp://www.google.de/ CHR RestoreOnStartup: "hxxp://www.google.de/" CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Java\jre7\bin\plugin2\npjp2.dll No File CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll No File CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0 CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0 CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0 CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx ========================== Services (Whitelisted) ================= R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation) R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.) S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project) R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] () R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] () R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] () R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia) ==================== Drivers (Whitelisted) ==================== R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.) R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-07-20] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [171320 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-07-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-07-10] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.) S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation) R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia) R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.) R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.) S3 catchme; \??\C:\Users\wolfgang\AppData\Local\Temp\catchme.sys [x] S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x] S3 IpInIp; system32\DRIVERS\ipinip.sys [x] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-31 18:41 - 2013-07-31 18:42 - 00016383 _____ C:\Users\wolfgang\Downloads\Addition.txt 2013-07-31 14:24 - 2013-07-31 14:24 - 00000000 ____D C:\FRST 2013-07-29 19:35 - 2013-07-29 19:35 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu(1).exe 2013-07-28 17:54 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Desktop\SecurityCheck.exe 2013-07-28 17:52 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Downloads\SecurityCheck.exe 2013-07-28 15:06 - 2013-07-28 15:06 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe 2013-07-27 17:30 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Desktop\JRT.exe 2013-07-27 17:29 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT.exe 2013-07-27 16:40 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner.exe 2013-07-27 16:39 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner.exe 2013-07-27 11:50 - 2013-07-27 11:50 - 01220544 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe 2013-07-26 18:36 - 2013-07-30 07:49 - 00003778 _____ C:\Windows\PFRO.log 2013-07-26 18:20 - 2013-07-26 18:20 - 00000040 _____ C:\Users\wolfgang\Documents\spywareblaster1.txt 2013-07-26 18:13 - 2013-07-26 18:13 - 00000032 _____ C:\Users\wolfgang\Documents\spywareblaster.txt 2013-07-26 17:35 - 2013-07-26 17:35 - 00448512 _____ (OldTimer Tools) C:\Users\wolfgang\Desktop\TFC.exe 2013-07-26 16:41 - 2013-07-26 16:41 - 00000836 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\ProgramData\Licenses 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\Program Files\SpywareBlaster 2013-07-26 16:41 - 2011-11-04 05:13 - 01070352 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX 2013-07-26 16:41 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\Windows\system32\MSSTDFMT.DLL 2013-07-26 16:39 - 2013-07-26 16:39 - 04095448 _____ (BrightFort LLC ) C:\Users\wolfgang\Downloads\spywareblastersetup50.exe 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Secunia PSI 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Program Files\Secunia 2013-07-26 16:32 - 2013-07-26 16:32 - 03272136 _____ (Secunia) C:\Users\wolfgang\Downloads\PSISetup711.exe 2013-07-26 16:04 - 2013-07-26 16:04 - 00000866 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-07-26 16:04 - 2013-07-26 16:04 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2013-07-26 16:04 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-07-26 16:01 - 2013-07-26 16:01 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\wolfgang\Downloads\mbam-setup-1.75.0.1300(1).exe 2013-07-26 15:34 - 2013-07-26 15:34 - 00706916 _____ C:\Users\wolfgang\Downloads\delfix.exe 2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT 2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe 2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue 2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax 2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages 2013-07-24 17:54 - 2013-07-26 15:37 - 00000000 ____D C:\Windows\ERUNT 2013-07-24 15:51 - 2013-07-26 14:47 - 00000000 ____D C:\Windows\erdnt 2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe 2013-07-20 01:51 - 2013-07-20 01:51 - 00246072 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avglogx.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00208184 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00171320 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00060216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidshx.sys 2013-07-11 18:03 - 2013-07-26 17:34 - 00000000 ____D C:\littleboxesbeispiel 2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-10 01:32 - 2013-07-10 01:32 - 00039224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx86.sys 2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime 2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe 2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe 2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-03 10:32 - 2013-07-03 10:32 - 00016024 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_x86.sys 2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt ==================== One Month Modified Files and Folders ======= 2013-08-01 08:52 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData 2013-08-01 08:50 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype 2013-08-01 08:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job 2013-08-01 08:48 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-08-01 08:48 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-08-01 08:48 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-08-01 08:48 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-31 18:42 - 2013-07-31 18:41 - 00016383 _____ C:\Users\wolfgang\Downloads\Addition.txt 2013-07-31 18:42 - 2008-01-21 03:35 - 01097764 _____ C:\Windows\WindowsUpdate.log 2013-07-31 18:42 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-07-31 18:40 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-31 14:24 - 2013-07-31 14:24 - 00000000 ____D C:\FRST 2013-07-31 13:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-31 13:41 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk 2013-07-31 13:36 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files 2013-07-30 19:27 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes 2013-07-30 12:50 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job 2013-07-30 07:49 - 2013-07-26 18:36 - 00003778 _____ C:\Windows\PFRO.log 2013-07-29 19:35 - 2013-07-29 19:35 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu(1).exe 2013-07-29 17:10 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang 2013-07-28 17:52 - 2013-07-28 17:54 - 00891062 _____ C:\Users\wolfgang\Desktop\SecurityCheck.exe 2013-07-28 17:52 - 2013-07-28 17:52 - 00891062 _____ C:\Users\wolfgang\Downloads\SecurityCheck.exe 2013-07-28 15:06 - 2013-07-28 15:06 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe 2013-07-27 17:55 - 2012-09-22 16:30 - 00000041 _____ C:\Windows\Filzip.ini 2013-07-27 17:29 - 2013-07-27 17:30 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Desktop\JRT.exe 2013-07-27 17:29 - 2013-07-27 17:29 - 00561198 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT.exe 2013-07-27 16:39 - 2013-07-27 16:40 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner.exe 2013-07-27 16:39 - 2013-07-27 16:39 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner.exe 2013-07-27 11:50 - 2013-07-27 11:50 - 01220544 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe 2013-07-26 18:34 - 2009-12-16 16:30 - 00000000 ____D C:\ProgramData\Ulead Systems 2013-07-26 18:33 - 2009-12-16 15:57 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-07-26 18:20 - 2013-07-26 18:20 - 00000040 _____ C:\Users\wolfgang\Documents\spywareblaster1.txt 2013-07-26 18:13 - 2013-07-26 18:13 - 00000032 _____ C:\Users\wolfgang\Documents\spywareblaster.txt 2013-07-26 17:35 - 2013-07-26 17:35 - 00448512 _____ (OldTimer Tools) C:\Users\wolfgang\Desktop\TFC.exe 2013-07-26 17:34 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel 2013-07-26 16:47 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2013-07-26 16:47 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2013-07-26 16:45 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java 2013-07-26 16:44 - 2013-01-12 10:05 - 00000000 ____D C:\Java 2013-07-26 16:41 - 2013-07-26 16:41 - 00000836 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\ProgramData\Licenses 2013-07-26 16:41 - 2013-07-26 16:41 - 00000000 ____D C:\Program Files\SpywareBlaster 2013-07-26 16:39 - 2013-07-26 16:39 - 04095448 _____ (BrightFort LLC ) C:\Users\wolfgang\Downloads\spywareblastersetup50.exe 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Secunia PSI 2013-07-26 16:34 - 2013-07-26 16:34 - 00000000 ____D C:\Program Files\Secunia 2013-07-26 16:32 - 2013-07-26 16:32 - 03272136 _____ (Secunia) C:\Users\wolfgang\Downloads\PSISetup711.exe 2013-07-26 16:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\IME 2013-07-26 16:04 - 2013-07-26 16:04 - 00000866 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-07-26 16:04 - 2013-07-26 16:04 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2013-07-26 16:01 - 2013-07-26 16:01 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\wolfgang\Downloads\mbam-setup-1.75.0.1300(1).exe 2013-07-26 15:37 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT 2013-07-26 15:34 - 2013-07-26 15:34 - 00706916 _____ C:\Users\wolfgang\Downloads\delfix.exe 2013-07-26 14:47 - 2013-07-24 15:51 - 00000000 ____D C:\Windows\erdnt 2013-07-26 11:57 - 2009-12-17 09:48 - 00000000 ____D C:\Program Files\Google 2013-07-26 11:36 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google 2013-07-26 11:36 - 2009-12-17 09:48 - 00000000 ____D C:\ProgramData\Google 2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT 2013-07-26 09:33 - 2013-05-29 16:25 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard 2013-07-26 09:16 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther 2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe 2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue 2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax 2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages 2013-07-24 16:11 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default 2013-07-24 16:08 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini 2013-07-24 16:07 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public 2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM 2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe 2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla 2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe 2013-07-20 01:51 - 2013-07-20 01:51 - 00246072 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avglogx.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00208184 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00171320 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys 2013-07-20 01:50 - 2013-07-20 01:50 - 00060216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidshx.sys 2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1 2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk 2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype 2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype 2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET 2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT 2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer 2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI 2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal 2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache 2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages 2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE 2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat 2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat 2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-10 01:32 - 2013-07-10 01:32 - 00039224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx86.sys 2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer 2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime 2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe 2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe 2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera 2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk 2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio 2013-07-03 10:32 - 2013-07-03 10:32 - 00016024 _____ (Secunia) C:\Windows\system32\Drivers\psi_mf_x86.sys 2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-08-01 08:54 ==================== End Of Log ============================ --- --- --- Nun die Addition.txt Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 27-07-2013 Ran by wolfgang at 2013-08-01 08:59:30 Running from C:\Users\wolfgang\Downloads Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Adobe Flash Player 11 ActiveX (Version: 11.8.800.94) Adobe Flash Player 11 Plugin (Version: 11.8.800.94) Adobe Reader X (10.1.7) - Deutsch (Version: 10.1.7) Apple Application Support (Version: 2.3.4) Apple Mobile Device Support (Version: 3.4.0.25) Apple Software Update (Version: 2.1.3.127) ATI Catalyst Install Manager (Version: 3.0.664.0) Audiograbber 1.83 SE (Version: 1.83 SE ) Audiograbber MP3-Plugin (Version: 1.0) AVG 2013 (Version: 13.0.3209) AVG 2013 (Version: 13.0.3392) AVG 2013 (Version: 2013.0.3392) Bonjour (Version: 2.0.2.0) Bonjour-Druckdienste (Version: 2.0.2.0) Canon Easy-PhotoPrint EX Canon Easy-WebPrint EX Canon Inkjet Printer/Scanner/Fax Extended Survey Program Canon MG5100 series Benutzerregistrierung Canon MG5100 series MP Drivers Canon MP Navigator EX 4.0 Canon My Printer Canon Solution Menu EX Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000) Cool Edit 2000 CyberLink PowerDirector (Version: 6.5.2314) Driver Whiz (Version: 8.0.1) FileZilla Client 3.7.1 (Version: 3.7.1) Filzip 3.06 (Version: 3.0.6) Freecorder 6 (Version: 2.1.10) Freecorder 6 Add-on for Firefox (Version: 2.1.9) Freecorder 6 Applications (6.0.0.36) (Version: 6.0.0.36) GIMP 2.8.2 (Version: 2.8.2) GlassFish Server Open Source Edition 3.1.2.2 Google Chrome (HKCU Version: 28.0.1500.95) Google Earth (Version: 5.2.1.1588) Google Update Helper (Version: 1.3.21.153) IrfanView (remove only) (Version: 4.36) Jasc Paint Shop Pro 8 (Version: 8.03.0000) Java 7 Update 25 (Version: 7.0.250) Java Auto Updater (Version: 2.1.9.5) Java SE Development Kit 7 Update 25 (Version: 1.7.0.250) Java(TM) 6 Update 10 (Version: 6.0.100) MakeDisc (Version: 3.0.2601) Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300) MCE Software Encoder 1.1 (Version: 1.1.0.1918) MediaShow (Version: 3.0.4325) Microsoft .NET Framework 3.5 Language Pack SP1 - DEU Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6612.1000) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Works (Version: 9.7.0621) MIDI Converter Studio 5.9 MiKTeX 2.8 (Version: 2.8) Mozilla Firefox 22.0 (x86 de) (Version: 22.0) Mozilla Maintenance Service (Version: 22.0) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) Nero 8 Essentials (Version: 8.3.630) neroxml (Version: 1.0.0) Nokia Connectivity Cable Driver (Version: 7.1.41.0) Nokia Music Player (Version: 2.5.11021) Nokia_Multimedia_Common_Components_2_5 (Version: 2.7.69) Notepad++ (Version: 5.9.8) NVIDIA Drivers Opera 12.16 (Version: 12.16.1860) PC Connectivity Solution (Version: 11.4.15.0) PhotoNow! (Version: 1.0.4310) Play Movie (Version: BD+HD 1.5.3815) PowerDVD (Version: 7.3.3730c.0) PowerProducer (Version: 4.2.2612) PSPad editor (Version: 4.5.7.2450) QuickTime (Version: 7.74.80.86) Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000) Realtek High Definition Audio Driver (Version: 6.0.1.5591) Secunia PSI (3.0.0.7011) (Version: 3.0.0.7011) Security Task Manager 1.8g (Version: 1.8g) Skype™ 6.6 (Version: 6.6.106) SpywareBlaster 5.0 (Version: 5.0.0) StarOffice 7 (HKCU Version: 7) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1) Update for Zip Opener VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0) VCRedistSetup (Version: 1.0.0) Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2) Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0) XAMPP 1.7.4 Zip Opener Packages Zip Opener Packages 61 ==================== Restore Points ========================= 26-07-2013 13:38:24 Ende der Bereinigung 26-07-2013 16:33:07 Entfernt Ulead PhotoImpact 27-07-2013 06:59:23 Installed Bing Bar 28-07-2013 12:34:27 Windows Update ==================== Hosts content: ========================== 2006-11-02 12:23 - 2013-07-24 16:08 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {21C0FE6E-771E-4B9C-B00F-3B274D4828DD} - System32\Tasks\Plus-HD-2.4-updater => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-updater.exe [2013-06-24] (Plus HD) Task: {259EF9A7-FE08-4510-B941-2FF83281FC8F} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation) Task: {289E8CF1-8527-42CE-A953-270352918C5D} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files\HomeTab\ProtectedSearch.exe No File Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {37FEF637-403E-4CE2-B386-08FCA5654864} - System32\Tasks\DealPlyUpdate => C:\Program No File Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {3E211B6A-D582-4A95-9EB4-3D7144703A88} - System32\Tasks\Freemium1ClickMaint => C:\Program Files\Covus Freemium\Free System Utilities\1Click.exe No File Task: {3F2317A9-1DF0-4313-901E-534A1F310963} - System32\Tasks\Microsoft\Windows\WindowsBackup\CheckFull => C:\Windows\System32\sdclt.exe [2010-12-14] (Microsoft Corporation) Task: {428AA965-4E12-4545-B34A-D1E8E8C835CD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-26] (Adobe Systems Incorporated) Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {4D0FD854-A0B8-4D37-9F09-3670457A4A15} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated) Task: {56F7F1E8-09A1-4681-8583-0428626012CB} - System32\Tasks\User_Feed_Synchronization-{5CE90737-6E13-4AFB-94FD-EE06295B11D3} => C:\Windows\system32\msfeedssync.exe [2013-07-10] (Microsoft Corporation) Task: {5E81228C-264E-499C-873E-D9B893722A2F} - System32\Tasks\Plus-HD-2.4-codedownloader => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-codedownloader.exe [2013-06-24] (Plus HD) Task: {63A3F554-2D70-42A1-9435-5636F38E169D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {76161EB8-F1AD-4708-BFC5-0E9B69E3976C} - System32\Tasks\{FFF59432-BD81-4857-A9BF-AC4C85ED30B7} => c:\program files\internet explorer\iexplore.exe [2013-07-10] (Microsoft Corporation) Task: {761C3141-3C8E-47AF-8A27-842D8CEB17D2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation) Task: {79C65BCD-7B3F-4651-959F-5FD79DD18B74} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\schtasks.exe [2008-01-21] (Microsoft Corporation) Task: {7C43CFE9-ADA2-419C-84E7-B93F01DD8DEA} - System32\Tasks\QtraxPlayer => C:\Program Files\Microsoft Silverlight\sllauncher.exe [2013-05-13] (Microsoft Corporation) Task: {83C4DBC7-E2F2-42E9-93DA-EAD1AC83B473} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation) Task: {8413FCE7-4F34-4422-BFAF-920C5EE77238} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA => C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-21] (Google Inc.) Task: {8A96F376-DD13-44BA-975A-DA17B7208AD0} - System32\Tasks\DealPly => C:\Users\wolfgang\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE No File Task: {8CC71ED1-AF2F-4915-8892-7FA938DA1BBB} - System32\Tasks\Plus-HD-2.4-enabler => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-enabler.exe [2013-06-24] (Plus HD) Task: {937907B4-B1ED-494A-9D07-ECB72FDC8948} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\System32\sdclt.exe [2010-12-14] (Microsoft Corporation) Task: {99505256-8E4A-4D6D-904A-E9CB94B58813} - System32\Tasks\Microsoft\Windows\Defrag\ManualDefrag => C:\Windows\system32\defrag.exe [2008-01-21] (Microsoft Corp.) Task: {9D0DC073-5659-402D-B8D3-99600D31016B} - System32\Tasks\Browser Updater\Browser Updater => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation) Task: {A560A6E2-DDAC-455D-8CDC-6CE4C4568A96} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-21] (Google Inc.) Task: {A5B1F77D-74F5-4219-8526-8302CD6BD601} - System32\Tasks\{AA59AA73-3929-4084-86CB-9F94FDEC5FA4} => c:\program files\internet explorer\iexplore.exe [2013-07-10] (Microsoft Corporation) Task: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\OptinNotification => C:\Windows\System32\wsqmcons.exe [2008-01-21] (Microsoft Corporation) Task: {A6BD434A-C962-4696-AF0C-83DEEA8005F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-21] (Google Inc.) Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation) Task: {B3272DB1-8DA7-4E50-979C-D6CDC3D91538} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-12] (Microsoft Corporation) Task: {B60E1113-373D-4484-823A-B9F595924B6E} - System32\Tasks\Microsoft\Windows\RestartManager\{EA6F3EAC-5FEE-4702-9731-9E1C9D137377} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {BE08D9D4-E4D1-4B76-AD80-0EA1928E3C1C} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1845698016-1831174842-4107221023-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe No File Task: {C2D55E6F-6536-480A-A563-3BE95AC57636} - System32\Tasks\Plus-HD-2.4-firefoxinstaller => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-firefoxinstaller.exe [2013-06-24] (Plus HD) Task: {C81CF62A-8ABF-4852-9A8E-5C935B8779CA} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe No File Task: {CAD8EB01-9B3E-40B1-8EB8-EFC3D3D65E49} - System32\Tasks\Google Updater and Installer => C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-21] (Google Inc.) Task: {CF9B5E43-CC07-4C11-A62B-8D2AD3A52761} - System32\Tasks\{1915FF26-0A3C-4164-8132-2F8F4375A4D9} => C:\Program Files\Skype\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.) Task: {D2E5CBB4-C19A-4600-81A9-C074019E20D0} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe No File Task: {D3F5ACEE-4F7D-4DD3-A361-98345EB32E46} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1845698016-1831174842-4107221023-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe No File Task: {DB91C647-F234-4F94-9A2E-E786D1F3238A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core => C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-21] (Google Inc.) Task: {DBB2BD90-7798-4187-8FD7-D2F64B9E89DF} - System32\Tasks\EPUpdater => C:\Users\wolfgang\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe No File Task: {E0610DC0-0CFE-4EDC-A026-918FA8A170C2} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe No File Task: {E4142561-D413-439B-9FB6-80D29370AE3D} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation) Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] () Task: {F8FF3A2A-C726-488E-83A6-7BF4696FE7D9} - System32\Tasks\{BBC2789C-FA93-4D66-B83D-ED3B901CCBDA} => C:\Program Files\Skype\\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.) Task: {FB55702B-DE57-4AA7-BFF7-9335A884E80B} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - wolfgang => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation) Task: {FC126C31-3B36-4A2F-BB18-4BFAA6FE8B2F} - System32\Tasks\{42915779-0629-40ED-8980-B96F78D7D3AB} => c:\program files\internet explorer\iexplore.exe [2013-07-10] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job => C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job => C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/01/2013 08:49:26 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 06:00:29 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 05:06:16 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 02:20:26 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 01:48:06 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 01:27:28 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/31/2013 08:23:15 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/30/2013 05:41:28 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 |
01.08.2013, 09:43 | #29 |
/// the machine /// TB-Ausbilder | Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Zip Opener Packages Zip Opener Packages 61 deinstallieren Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Task: {21C0FE6E-771E-4B9C-B00F-3B274D4828DD} - System32\Tasks\Plus-HD-2.4-updater => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-updater.exe [2013-06-24] (Plus HD) Task: {259EF9A7-FE08-4510-B941-2FF83281FC8F} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation) Task: {289E8CF1-8527-42CE-A953-270352918C5D} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files\HomeTab\ProtectedSearch.exe No File C:\Program Files\Plus-HD-2.4 C:\Program Files\HomeTab Task: {37FEF637-403E-4CE2-B386-08FCA5654864} - System32\Tasks\DealPlyUpdate => C:\Program No File Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {5E81228C-264E-499C-873E-D9B893722A2F} - System32\Tasks\Plus-HD-2.4-codedownloader => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-codedownloader.exe [2013-06-24] (Plus HD) Task: {7C43CFE9-ADA2-419C-84E7-B93F01DD8DEA} - System32\Tasks\QtraxPlayer => C:\Program Files\Microsoft Silverlight\sllauncher.exe [2013-05-13] (Microsoft Corporation) Task: {8A96F376-DD13-44BA-975A-DA17B7208AD0} - System32\Tasks\DealPly => C:\Users\wolfgang\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE No File Task: {8CC71ED1-AF2F-4915-8892-7FA938DA1BBB} - System32\Tasks\Plus-HD-2.4-enabler => C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-enabler.exe [2013-06-24] (Plus HD) Task: {9D0DC073-5659-402D-B8D3-99600D31016B} - System32\Tasks\Browser Updater\Browser Updater => C:\Windows\system32\rundll32.exe [2006-11-02] (Microsoft Corporation) C:\Windows\System32\Tasks\Browser Updater Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
neu starten
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
01.08.2013, 14:59 | #30 |
| Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? Hallo schrauber, hier der gewünschte Inhalt der Fixlog.txt : Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-07-2013 Ran by wolfgang at 2013-08-01 15:49:46 Run:1 Running from C:\Users\wolfgang\Downloads Boot Mode: Normal ============================================== HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{21C0FE6E-771E-4B9C-B00F-3B274D4828DD} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21C0FE6E-771E-4B9C-B00F-3B274D4828DD} => Key deleted successfully. C:\Windows\System32\Tasks\Plus-HD-2.4-updater => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.4-updater => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{259EF9A7-FE08-4510-B941-2FF83281FC8F} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{259EF9A7-FE08-4510-B941-2FF83281FC8F} => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\AutomaticBackup => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{289E8CF1-8527-42CE-A953-270352918C5D} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{289E8CF1-8527-42CE-A953-270352918C5D} => Key deleted successfully. C:\Windows\System32\Tasks\ProtectedSearch\Protected Search => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProtectedSearch\Protected Search => Key deleted successfully. C:\Program Files\Plus-HD-2.4 => Moved successfully. "C:\Program Files\HomeTab" => File/Directory not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37FEF637-403E-4CE2-B386-08FCA5654864} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37FEF637-403E-4CE2-B386-08FCA5654864} => Key deleted successfully. C:\Windows\System32\Tasks\DealPlyUpdate => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Shell\CrawlStartPages => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5E81228C-264E-499C-873E-D9B893722A2F} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E81228C-264E-499C-873E-D9B893722A2F} => Key deleted successfully. C:\Windows\System32\Tasks\Plus-HD-2.4-codedownloader => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.4-codedownloader => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C43CFE9-ADA2-419C-84E7-B93F01DD8DEA} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C43CFE9-ADA2-419C-84E7-B93F01DD8DEA} => Key deleted successfully. C:\Windows\System32\Tasks\QtraxPlayer => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\QtraxPlayer => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8A96F376-DD13-44BA-975A-DA17B7208AD0} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A96F376-DD13-44BA-975A-DA17B7208AD0} => Key deleted successfully. C:\Windows\System32\Tasks\DealPly => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8CC71ED1-AF2F-4915-8892-7FA938DA1BBB} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8CC71ED1-AF2F-4915-8892-7FA938DA1BBB} => Key deleted successfully. C:\Windows\System32\Tasks\Plus-HD-2.4-enabler => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Plus-HD-2.4-enabler => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9D0DC073-5659-402D-B8D3-99600D31016B} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9D0DC073-5659-402D-B8D3-99600D31016B} => Key deleted successfully. C:\Windows\System32\Tasks\Browser Updater\Browser Updater => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Updater\Browser Updater => Key deleted successfully. "C:\Windows\System32\Tasks\Browser Updater" directory move: Could not move "C:\Windows\System32\Tasks\Browser Updater" directory. => Scheduled to move on reboot. =========== Result of Scheduled Files to move =========== "C:\Windows\System32\Tasks\Browser Updater" => Directory could not move. ==== End of Fixlog ==== |
Themen zu Wie kann ich die Fehlermeldung beseitigen "Fehler beim Laden .... Updater.dll"? |
beseitigen, compu, erschein, erscheint, fehlermeldung, files, folge, folgende, gefunde, hochfahren, home, hometab, hometab\tbupdater.dll, laden, modul, nicht mehr, program, reinigen, systems, tbupdater.dll |