Windows XP mit vielen Vieren befallen

SUMA · 13.01.2014, 21:22

Habe ich ja bereits mehrfach entfernt, und komme da nicht weiter mein Rechner braucht fast 1 stunde bis es läuft.
Daher suche ich hier ja die Hilfe auch wenn es für dich sehr einfach ist für mich ist es nicht so einfach.
Daher suche ich die hilfe beim Profi:-)

cosinus · 13.01.2014, 22:32

Nein, da steht eindeutig, dass du die Funde nicht entfernt hast und so durch schwarze Magie von allein oder so kommen die auch nicht wieder!

Mal davon abgesehen, dass du MBAM vor dem Scan nichtmal aktualisiert hast

SUMA · 19.01.2014, 11:30

Hallo,
habe jetzt drei Tage hintereinander den Malwarebytes täglich aktualisiert und laufen lassen
Jetzt steht im Bericht zwar nichts aber in Quarentäne liegt ein Trojaner BP Protector.
Obwohl ich es da raus lösche und Rechner Neustarte und laufen lasse ist dieser dann wieder da aber im Bericht steht nichts drin.
Was kann ich machen ?

Danke

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.19.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Crazydog :: FAMILIESEVGI [Administrator]

19.01.2014 09:09:44
mbam-log-2014-01-19 (09-09-44).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 216055
Laufzeit: 1 Stunde(n), 9 Minute(n), 15 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

cosinus · 19.01.2014, 16:45

Adware/Junkware/Toolbars entfernen

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

SUMA · 21.01.2014, 17:33

Code:

ATTFilter

# AdwCleaner v3.017 - Bericht erstellt am 21/01/2014 um 06:03:42
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Microsoft Windows XP Service Pack 3 (32 bits)
# Benutzername : Crazydog - FAMILIESEVGI
# Gestartet von : C:\Dokumente und Einstellungen\Crazydog\desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\apn
Ordner Gelöscht : C:\Programme\MyPC Backup
Ordner Gelöscht : C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Searchprotect

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\FLEXnet
Schlüssel Gelöscht : HKLM\Software\SearchProtect
Schlüssel Gelöscht : HKLM\Software\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browser ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Google Chrome v32.0.1700.76

[ Datei : C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage

*************************

AdwCleaner[R0].txt - [2645 octets] - [20/01/2014 20:10:06]
AdwCleaner[S0].txt - [2530 octets] - [21/01/2014 06:03:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2590 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Microsoft Windows XP x86
Ran by Crazydog on 21.01.2014 at 17:24:46,32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E774F2C0-8D22-4B8E-9264-C416B539ACBC}



~~~ Files



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21.01.2014 at 17:30:32,79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-01-2014
Ran by Crazydog (administrator) on FAMILIESEVGI on 21-01-2014 17:36:18
Running from C:\Dokumente und Einstellungen\Crazydog\desktop
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal


==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Programme\Microsoft Security Client\MsMpEng.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
(Intel(R) Corporation) C:\Programme\Intel\Wireless\Bin\WLKEEPER.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\WINDOWS\system32\ACMoFlexService.exe
(B.H.A Corporation) C:\WINDOWS\system32\bgsvcgen.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
(Memeo) C:\Programme\Memeo\AutoBackup\MemeoBackgroundService.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDUpdate.exe
(T-Online International AG, Marmiko IT-Solutions GmbH) C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe
(Dell Inc.) C:\Programme\Dell\QuickSet\NicConfigSvc.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe
(Memeo) C:\Programme\Seagate\Seagate Dashboard\SeagateDashboardService.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(SigmaTel, Inc.) C:\WINDOWS\stsystra.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\iFrmewrk.exe
() C:\Programme\Dell\Media Experience\DMXLauncher.exe
(InstallShield Software Corporation) C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
(Sonic Solutions) C:\WINDOWS\system32\dla\tfswctrl.exe
(Microsoft Corporation) C:\Programme\Microsoft Security Client\msseces.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDTray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Nokia) C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer.exe
(Oracle Corporation) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(Nero AG) C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Programme\Microsoft ActiveSync\wcescomm.exe
(Secure Banking) C:\Programme\Secure Banking\SecureBanking.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\Dot1XCfg.exe
(BVRP Software) C:\Programme\Digital Line Detect\DLG.exe
(Panasonic Corporation) C:\Programme\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
() C:\Programme\Secure Banking\sbservice.exe
(Microsoft Corporation) C:\Programme\Microsoft Office\Office10\OUTLOOK.EXE
(Microsoft Corporation) C:\Programme\Microsoft Office\Office10\WINWORD.EXE
(Microsoft® Corporation) C:\Programme\Microsoft Works\WkDStore.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [igfxhkcmd] - C:\WINDOWS\system32\hkcmd.exe [77824 2005-12-13] (Intel Corporation)
HKLM\...\Run: [igfxpers] - C:\WINDOWS\system32\igfxpers.exe [118784 2005-12-13] (Intel Corporation)
HKLM\...\Run: [SigmatelSysTrayApp] - C:\WINDOWS\stsystra.exe [282624 2006-03-24] (SigmaTel, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [761947 2006-03-08] (Synaptics, Inc.)
HKLM\...\Run: [IntelZeroConfig] - C:\Programme\Intel\Wireless\bin\ZCfgSvc.exe [667718 2005-12-28] (Intel Corporation)
HKLM\...\Run: [IntelWireless] - C:\Programme\Intel\Wireless\Bin\ifrmewrk.exe [602182 2005-12-28] (Intel Corporation)
HKLM\...\Run: [DMXLauncher] - C:\Programme\Dell\Media Experience\DMXLauncher.exe [86016 2005-01-27] ()
HKLM\...\Run: [ISUSPM Startup] - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\isuspm.exe [249856 2005-06-10] (InstallShield Software Corporation)
HKLM\...\Run: [ISUSScheduler] - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [81920 2005-06-10] (InstallShield Software Corporation)
HKLM\...\Run: [HPHUPD08] - C:\Programme\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [49152 2005-06-01] (Hewlett-Packard)
HKLM\...\Run: [dla] - C:\WINDOWS\system32\dla\tfswctrl.exe [122941 2005-05-31] (Sonic Solutions)
HKLM\...\Run: [SetDefPrt] - C:\Programme\Brother\Brmfl05a\BrStDvPt.exe [49152 2005-01-26] (Brother Industories, Ltd.)
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [MSC] - c:\Programme\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SDTray] - C:\Programme\Spybot - Search & Destroy 2\SDTray.exe [3825176 2012-11-13] (Safer-Networking Ltd.)
HKLM\...\Run: [NokiaMServer] - C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [QuickTime Task] - C:\Programme\QuickTime\qttask.exe [413696 2008-03-28] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [H/PC Connection Agent] - C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE [405583 2005-01-04] (Microsoft Corporation)
HKCU\...\Run: [Gyeqemat] - "C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Isyx\tioz.exe"
HKCU\...\Run: [SecureBanking] - C:\Programme\Secure Banking\SecureBanking.exe [507904 2013-07-13] (Secure Banking)
HKCU\...\Run: [GoogleChromeAutoLaunch_8193EF5AA782368CAA03EF456EAE5602] - C:\Programme\Google\Chrome\Application\chrome.exe [866584 2014-01-11] (Google Inc.)
HKCU\...\Policies\Explorer: [NoCDBurning] 0
MountPoints2: {14e2763c-f271-11e1-b899-001060b350b8} - E:\DPFMate.exe
MountPoints2: {a42e047e-38b6-11e2-b8bf-001060b350b8} - E:\setup_vmc_lite.exe /checkApplicationPresence
HKU\Default User\...\Run: [ModemOnHold] - C:\Programme\NetWaiting\netwaiting.exe [ 2003-09-10] ()
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Programme\Digital Line Detect\DLG.exe (BVRP Software)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Programme\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\VideoCam Suite 2.0.lnk
ShortcutTarget: VideoCam Suite 2.0.lnk -> C:\Programme\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe (Panasonic Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_Win32.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} hxxp://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82} - C:\Programme\Microsoft ActiveSync\aatp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File
Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll (Broadcom Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchKeyword: dizideizle.org
CHR DefaultSearchProvider: dizideizle.org
CHR DefaultSearchURL: hxxp://www.dizideizle.org/?s={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-05-10]
CHR Extension: (Google Wallet) - C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Programme\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-31]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Programme\Gemeinsame Dateien\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-02]

========================== Services (Whitelisted) =================

S3 ACDaemon; C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe [51712 2007-10-11] (ArcSoft)
R2 ACRamDiskHandler; C:\WINDOWS\system32\ACMoFlexService.exe [702176 2010-01-24] (Softwareentwicklung Remus - ArchiCrypt)
R2 bgsvcgen; C:\WINDOWS\system32\bgsvcgen.exe [145504 2007-06-15] (B.H.A Corporation)
S3 Brother XP spl Service; C:\WINDOWS\system32\brsvc01a.exe [57344 2002-04-12] (brother Industries Ltd)
S3 btwdins; C:\Programme\Sitecom\Bluetooth Software\bin\btwdins.exe [163840 2004-10-01] (Broadcom Corporation)
S3 DfSdkS; C:\Programme\Ashampoo\Ashampoo WinOptimizer Free\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 EvtEng; C:\Programme\Intel\Wireless\Bin\EvtEng.exe [114753 2005-12-28] (Intel Corporation)
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2011-04-05] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2011-04-05] (Google Inc.)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation)
R2 MBAMScheduler; C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MemeoBackgroundService; C:\Programme\Memeo\AutoBackup\MemeoBackgroundService.exe [25824 2011-01-24] (Memeo)
R2 MsMpSvc; c:\Programme\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 MZCCntrl; C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe [61440 2005-11-15] (T-Online International AG, Marmiko IT-Solutions GmbH)
R2 NICCONFIGSVC; C:\Programme\Dell\QuickSet\NICCONFIGSVC.exe [380928 2006-04-06] (Dell Inc.)
R2 RegSrvc; C:\Programme\Intel\Wireless\Bin\RegSrvc.exe [217164 2005-12-28] (Intel Corporation)
R2 S24EventMonitor; C:\Programme\Intel\Wireless\Bin\S24EvMon.exe [540745 2005-12-28] (Intel Corporation )
R2 SDScannerService; C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 SeagateDashboardService; C:\Programme\Seagate\Seagate Dashboard\SeagateDashboardService.exe [14088 2011-06-01] (Memeo)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [628736 2010-12-08] (Nokia)
R2 WLANKEEPER; C:\Programme\Intel\Wireless\Bin\WLKeeper.exe [262217 2005-12-28] (Intel(R) Corporation)
R2 wlidsvc; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE [1529728 2009-08-18] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R1 ACMoFlex; C:\WINDOWS\system32\Drivers\ACMoFlex.sys [23264 2010-01-24] (Softwareentwicklung Remus)
R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21275 2006-06-19] (Meetinghouse Data Communications)
R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.)
R1 APPDRV; C:\Windows\SYSTEM32\DRIVERS\APPDRV.SYS [16128 2005-08-12] (Dell Inc)
S3 BrScnUsb; C:\Windows\System32\Drivers\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [17024 2004-10-01] (Broadcom Corporation)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [30299 2004-10-01] (Broadcom Corporation)
R0 BTKRNL; C:\Windows\System32\drivers\btkrnl.sys [1241482 2004-10-01] (Broadcom Corporation)
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2004-10-01] (Broadcom Corporation)
R2 BTSLBCSP; C:\WINDOWS\system32\drivers\btslbcsp.sys [222876 2004-10-01] (Broadcom Corporation)
R3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [147896 2004-10-01] (Broadcom Corporation)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [54488 2004-10-01] (Broadcom Corporation)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [33408 2006-02-20] (B.H.A Corporation)
R2 drvnddm; C:\Windows\System32\drivers\drvnddm.sys [40544 2005-04-21] (Sonic Solutions)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2004-09-29] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2004-09-29] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2004-09-29] (HP)
R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [201600 2005-07-21] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [1035008 2005-07-21] (Conexant Systems, Inc.)
S3 hwusbfake; C:\Windows\System32\DRIVERS\ewusbfake.sys [102656 2009-06-29] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
S3 PID_0928; C:\Windows\System32\DRIVERS\LV561AV.SYS [495768 2009-04-30] (Logitech Inc.)
S3 QCDonner; C:\Windows\System32\DRIVERS\OVCD.sys [28032 2001-08-17] (Microsoft Corporation)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
R2 s24trans; C:\Windows\System32\DRIVERS\s24trans.sys [13568 2005-12-28] (Intel Corporation)
S3 s716bus; C:\Windows\System32\DRIVERS\s716bus.sys [83208 2007-06-28] (MCCI Corporation)
S3 s716mdfl; C:\Windows\System32\DRIVERS\s716mdfl.sys [15112 2007-06-28] (MCCI Corporation)
S3 s716mdm; C:\Windows\System32\DRIVERS\s716mdm.sys [108552 2007-06-28] (MCCI Corporation)
S3 s716mgmt; C:\Windows\System32\DRIVERS\s716mgmt.sys [100360 2007-06-28] (MCCI Corporation)
S3 s716nd5; C:\Windows\System32\DRIVERS\s716nd5.sys [23176 2007-06-28] (MCCI Corporation)
S3 s716obex; C:\Windows\System32\DRIVERS\s716obex.sys [98568 2007-06-28] (MCCI Corporation)
S3 s716unic; C:\Windows\System32\DRIVERS\s716unic.sys [98952 2007-06-28] (MCCI Corporation)
S3 se59bus; C:\Windows\System32\DRIVERS\se59bus.sys [61536 2006-09-05] (MCCI)
S3 se59mdfl; C:\Windows\System32\DRIVERS\se59mdfl.sys [9360 2006-09-05] (MCCI)
S3 se59mdm; C:\Windows\System32\DRIVERS\se59mdm.sys [97088 2006-09-05] (MCCI)
S3 se59mgmt; C:\Windows\System32\DRIVERS\se59mgmt.sys [88624 2006-09-05] (MCCI)
S3 se59nd5; C:\Windows\System32\DRIVERS\se59nd5.sys [18704 2006-09-05] (MCCI)
S3 se59obex; C:\Windows\System32\DRIVERS\se59obex.sys [86432 2006-09-05] (MCCI)
S3 se59unic; C:\Windows\System32\DRIVERS\se59unic.sys [90800 2006-09-05] (MCCI)
R1 sscdbhk5; C:\Windows\System32\drivers\sscdbhk5.sys [5627 2005-05-13] (Sonic Solutions)
R1 ssrtln; C:\Windows\System32\drivers\ssrtln.sys [23545 2005-05-13] (Sonic Solutions)
R3 STHDA; C:\Windows\System32\drivers\sthda.sys [1156648 2006-03-24] (SigmaTel, Inc.)
R2 tfsnboio; C:\Windows\System32\dla\tfsnboio.sys [25725 2005-05-31] (Sonic Solutions)
R2 tfsncofs; C:\Windows\System32\dla\tfsncofs.sys [34845 2005-05-31] (Sonic Solutions)
R2 tfsndrct; C:\Windows\System32\dla\tfsndrct.sys [4125 2005-05-31] (Sonic Solutions)
R2 tfsndres; C:\Windows\System32\dla\tfsndres.sys [2273 2005-05-31] (Sonic Solutions)
R2 tfsnifs; C:\Windows\System32\dla\tfsnifs.sys [86876 2005-05-31] (Sonic Solutions)
R2 tfsnopio; C:\Windows\System32\dla\tfsnopio.sys [15069 2005-05-31] (Sonic Solutions)
R2 tfsnpool; C:\Windows\System32\dla\tfsnpool.sys [6365 2005-05-31] (Sonic Solutions)
R2 tfsnudf; C:\Windows\System32\dla\tfsnudf.sys [98716 2005-05-31] (Sonic Solutions)
R2 tfsnudfa; C:\Windows\System32\dla\tfsnudfa.sys [100605 2005-05-31] (Sonic Solutions)
R3 w39n51; C:\Windows\System32\DRIVERS\w39n51.sys [1428096 2005-12-04] (Intel® Corporation)
S3 wceusbsh; C:\Windows\System32\DRIVERS\wceusbsh.sys [104064 2004-12-06] (Microsoft Corporation)
S3 ASFWHide; \??\C:\DOKUME~1\Crazydog\LOKALE~1\Temp\ASFWHide [x]
S4 InCDFs; system32\drivers\InCDFs.sys [x]
S1 InCDPass; system32\drivers\InCDPass.sys [x]
S1 InCDRm; system32\drivers\InCDRm.sys [x]
S3 LVcKap; system32\DRIVERS\LVcKap.sys [x]
S3 LVMVDrv; system32\DRIVERS\LVMVDrv.sys [x]
S3 LVPr2Mon; system32\drivers\LVPr2Mon.sys [x]
S3 LVUSBSta; system32\drivers\lvusbsta.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-21 17:36 - 2014-01-21 17:36 - 00023030 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.txt
2014-01-21 17:35 - 2014-01-21 17:33 - 01222144 _____ (Farbar) C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.exe
2014-01-21 17:30 - 2014-01-21 17:31 - 00000731 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\JRT.txt
2014-01-21 08:47 - 2014-01-21 08:47 - 00002670 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\AdwCleaner[S0].txt
2014-01-20 20:09 - 2014-01-21 06:04 - 00000000 ____D C:\AdwCleaner
2014-01-20 20:07 - 2014-01-20 20:07 - 01236282 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\adwcleaner.exe
2014-01-19 08:57 - 2014-01-19 08:57 - 00000000 _____ C:\WINDOWS\system32\jupdate-1.7.0_51-b13.log
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 23:20 - 2014-01-15 23:22 - 00005512 _____ C:\WINDOWS\KB2914368.log
2014-01-08 21:07 - 2014-01-08 21:07 - 00000000 ____D C:\FRST
2014-01-08 21:01 - 2014-01-08 21:01 - 00000000 _____ C:\Dokumente und Einstellungen\Crazydog\defogger_reenable
2014-01-08 21:00 - 2014-01-08 21:00 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Mozilla
2013-12-26 13:38 - 2013-12-26 13:38 - 07123640 _____ (FreeDownloadManager.ORG                                     ) C:\fdminst.exe

==================== One Month Modified Files and Folders =======

2014-01-21 17:36 - 2014-01-21 17:36 - 00023030 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.txt
2014-01-21 17:36 - 2010-07-03 11:33 - 04197222 _____ C:\MemeoSendAddin
2014-01-21 17:33 - 2014-01-21 17:35 - 01222144 _____ (Farbar) C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.exe
2014-01-21 17:31 - 2014-01-21 17:30 - 00000731 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\JRT.txt
2014-01-21 17:26 - 2011-04-05 09:42 - 00001094 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 17:24 - 2013-05-24 19:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-21 16:12 - 2012-06-12 21:36 - 00000884 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-21 16:00 - 2006-09-02 14:19 - 00000364 ____C C:\WINDOWS\Tasks\HPpromotions journeysoftware.job
2014-01-21 12:25 - 2004-08-18 13:17 - 01815393 ____C C:\WINDOWS\WindowsUpdate.log
2014-01-21 10:12 - 2004-08-18 13:22 - 00032568 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-21 08:47 - 2014-01-21 08:47 - 00002670 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\AdwCleaner[S0].txt
2014-01-21 07:26 - 2011-04-05 09:42 - 00001090 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 06:20 - 2013-11-14 18:37 - 00000386 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2014-01-21 06:12 - 2004-08-18 13:05 - 00002206 ____C C:\WINDOWS\system32\wpa.dbl
2014-01-21 06:11 - 2004-08-18 13:14 - 00000159 ____C C:\WINDOWS\wiadebug.log
2014-01-21 06:10 - 2004-08-18 13:14 - 00000050 ____C C:\WINDOWS\wiaservc.log
2014-01-21 06:09 - 2013-05-10 21:04 - 00000612 ____C C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-01-21 06:09 - 2004-08-18 13:22 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2014-01-21 06:06 - 2013-05-10 21:04 - 00327680 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2014-01-21 06:06 - 2006-06-22 17:29 - 00000300 __SHC C:\Dokumente und Einstellungen\Crazydog\ntuser.ini
2014-01-21 06:06 - 2006-06-22 17:29 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog
2014-01-21 06:04 - 2014-01-20 20:09 - 00000000 ____D C:\AdwCleaner
2014-01-21 06:04 - 2004-08-18 13:12 - 00000000 ___RD C:\Programme
2014-01-20 20:07 - 2014-01-20 20:07 - 01236282 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\adwcleaner.exe
2014-01-20 17:38 - 2013-05-24 20:15 - 00000402 ___HC C:\WINDOWS\Tasks\User_Feed_Synchronization-{4D51DE6F-BAF0-4D0A-9987-0FD094A9FCA0}.job
2014-01-19 08:57 - 2014-01-19 08:57 - 00000000 _____ C:\WINDOWS\system32\jupdate-1.7.0_51-b13.log
2014-01-19 08:57 - 2006-06-19 16:22 - 00000000 ____D C:\Programme\Java
2014-01-19 08:57 - 2004-08-18 13:12 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-01-19 08:32 - 2010-01-24 17:55 - 00231584 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-17 23:38 - 2013-04-22 19:21 - 00002377 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-01-15 23:43 - 2013-05-10 20:57 - 00001771 ____C C:\Dokumente und Einstellungen\All Users\desktop\Google Chrome.lnk
2014-01-15 23:27 - 2013-08-16 16:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 23:24 - 2006-07-05 17:48 - 83425928 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 23:22 - 2014-01-15 23:20 - 00005512 _____ C:\WINDOWS\KB2914368.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00173526 ____C C:\WINDOWS\ocgen.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00110424 ____C C:\WINDOWS\comsetup.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-15 23:22 - 2013-05-14 21:34 - 00132049 ____C C:\WINDOWS\setupapi.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00373746 ____C C:\WINDOWS\FaxSetup.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00147834 ____C C:\WINDOWS\tsoc.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00077156 ____C C:\WINDOWS\ntdtcsetup.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00058279 ____C C:\WINDOWS\iis6.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00021102 ____C C:\WINDOWS\ocmsn.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00019309 ____C C:\WINDOWS\msgsocm.log
2014-01-15 16:12 - 2006-06-22 22:16 - 00000116 ____C C:\WINDOWS\NeroDigital.ini
2014-01-14 06:09 - 2006-07-20 06:44 - 00000000 ____D C:\WINDOWS\Sun
2014-01-13 20:51 - 2010-07-03 11:32 - 00000000 ____D C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\ServiceTest
2014-01-12 22:54 - 2007-02-16 23:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB926436$
2014-01-12 21:48 - 2010-11-02 21:28 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\desktop\Suara Ilayda Nervin
2014-01-12 21:47 - 2013-10-23 21:11 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\desktop\Bilder SuMA
2014-01-12 11:44 - 2013-03-14 08:08 - 00002921 ____C C:\WINDOWS\setupact.log
2014-01-12 08:10 - 2009-07-15 14:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB973346$
2014-01-10 23:28 - 2004-08-18 13:17 - 00000000 ____D C:\WINDOWS\system32\Restore
2014-01-08 22:44 - 2006-06-22 17:29 - 00000000 ___RD C:\Dokumente und Einstellungen\Crazydog\Startmenü\Programme\Autostart
2014-01-08 22:44 - 2006-06-22 17:29 - 00000000 ___RD C:\Dokumente und Einstellungen\Crazydog\Startmenü\Programme
2014-01-08 21:07 - 2014-01-08 21:07 - 00000000 ____D C:\FRST
2014-01-08 21:01 - 2014-01-08 21:01 - 00000000 _____ C:\Dokumente und Einstellungen\Crazydog\defogger_reenable
2014-01-08 21:00 - 2014-01-08 21:00 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Mozilla
2014-01-07 14:44 - 2006-06-22 22:16 - 00000087 _____ C:\Dokumente und Einstellungen\Crazydog\default.pls
2013-12-26 13:38 - 2013-12-26 13:38 - 07123640 _____ (FreeDownloadManager.ORG                                     ) C:\fdminst.exe
2013-12-26 12:03 - 2009-10-23 20:32 - 00021912 ____C C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\wklnhst.dat
2013-12-26 09:06 - 2007-04-15 13:44 - 00002501 ____C C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Word.lnk

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\APNSetup.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\BackupSetup.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\GCVerifier.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\jre-7u51-windows-i586-iftw.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\NEventMessages.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\NOSEventMessages.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\secuniasi2957605410973983934.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 13:05] - [2008-04-14 03:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\Windows\System32\winlogon.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\Windows\System32\svchost.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\Windows\System32\services.exe
[2004-08-18 13:05] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\Windows\System32\User32.dll
[2004-08-18 13:05] - [2008-04-14 03:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\Windows\System32\userinit.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0026624 ___AC (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\Windows\System32\rpcss.dll
[2004-08-18 13:05] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 13:05] - [2008-04-14 02:52] - 0053760 ___AC (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---

--- --- ---

SUMA · 21.01.2014, 17:37

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 21-01-2014
Ran by Crazydog at 2014-01-21 17:40:30
Running from C:\Dokumente und Einstellungen\Crazydog\desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Disabled - Up to date) {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
AV: Microsoft Security Essentials (Disabled - Up to date) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}

==================== Installed Programs ======================

Adobe Flash Player 10 Plugin (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (Version: 11.0.06 - Adobe Systems Incorporated)
Amazon Kindle (Version:  - Amazon)
ArchiCrypt Ultimate RAM-Disk Version 1.0.2.2551 (Version: 1.0.2.2551 - Softwareentwicklung Patric Remus - ArchiCrypt)
ArcSoft Software Suite (Version: 1.0 - ArcSoft)
Ashampoo WinOptimizer 6.50 (Version: 6.5.0 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer Free v.1.0.0 (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
Brandstetter UniLex (Version:  - )
Broadcom Management Programs (Version: 8.65.05 - Broadcom Corporation)
Brother MFL-Pro Suite (Version: 1.00.000 - )
BufferChm (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CameraDrivers (Version: 5.0.0.328 - Ihr Firmenname) Hidden
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000 - Microsoft Corporation)
Corel Paint Shop Pro X (Version: 10.0 - Corel Inc)
Corel Photo Album 6 (Version: 6.33 - Corel, Inc.)
CP_AtenaShokunin1Config (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_CalendarTemplates1 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Basic1 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Variety1 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Variety2 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Package_Variety3 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CP_Panorama1Config (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CueTour (Version: 53.0.13.000 - Hewlett-Packard) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Defraggler (Version: 2.14 - Piriform)
Dell Media Experience (Version: 3.00 - Dell)
Destinations (Version: 53.0.13.000 - Hewlett-Packard) Hidden
DeviceFunctionQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Digital Line Detect (Version: 1.15 - BVRP Software, Inc)
Disc2Phone (Version: 1.4.0.112 - Sony Media Software)
DivX Web Player (Version: 1.5.0 - DivX,Inc.)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Free YouTube to MP3 Converter version 3.11.37.1212 (Version: 3.11.37.1212 - DVDVideoSoft Ltd.)
FreePDF (Remove only) (Version:  - )
FullDPAppQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
GdiplusUpgrade (Version: 1.00.01 - Hewlett-Packard) Hidden
Glary Utilities Pro 2.34.0.1190 (Version: 2.34.0.1190 - Glarysoft Ltd)
Google Chrome (Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
GPL Ghostscript 8.64 (Version:  - )
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000 - Microsoft Corporation)
Hotfix für Windows Internet Explorer 7 (KB947864) (Version: 1 - Microsoft Corporation) Hidden
Hotfix für Windows Media Player 11 (KB939683) (Version:  - Microsoft Corporation)
Hotfix für Windows XP (KB2158563) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2443685) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2570791) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2633952) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2756822) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB2779562) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB952287) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB961118) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB970653-v3) (Version: 3 - Microsoft Corporation)
Hotfix für Windows XP (KB976098-v2) (Version: 2 - Microsoft Corporation)
Hotfix für Windows XP (KB979306) (Version: 1 - Microsoft Corporation)
Hotfix für Windows XP (KB981793) (Version: 1 - Microsoft Corporation)
HP Extended Capabilities 5.3 (Version: 5.3 - HP)
HP Image Zone 5.3 (Version: 5.3 - HP)
HP Imaging Device Functions 5.3 (Version: 5.3 - HP)
HP Photosmart 330,380,420,470,7800,8000,8200 Series (Version: 8.1 - HP)
HP Software Update (Version: 3.0.5.001 - Hewlett-Packard) Hidden
HP Solution Center & Imaging Support Tools 5.3 (Version: 5.3 - HP)
HPProductAssistant (Version: 53.0.13.000 - Hewlett-Packard) Hidden
InstantShareDevices (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (Version: 6.14.10.4446 - )
Intel(R) PROSet/Wireless Software (Version: 10.1.0.3 - Intel Corporation)
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JourneySoftwarePromo (Version: 1.10.0000 - Hewlett-Packard) Hidden
Macromedia Shockwave Player (Version:  - )
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (Version: 53.0.13.000 - Hewlett-Packard) Hidden
mCore (Version: 5.45.0000 - Intel Corporation) Hidden
MCU (Version: 1.00.0000 - Dell) Hidden
mDrWiFi (Version: 5.45.0000 - Intel Corporation) Hidden
Memeo AutoSync (Version:  - Memeo Inc.)
Memeo Instant Backup (Version: 4.60.0.7876 - Memeo Inc.)
Memeo Send (Version:  - Memeo Inc.)
Memeo Share (Version: 3.1.0.3265 - Memeo Inc.)
mHlpDell (Version: 5.45.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 German Language Pack (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft ActiveSync 3.8 (Version:  - )
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft AutoRoute 2006 (Version: 13.00.08.2400 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1 - Microsoft Corporation)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000 - Microsoft Corporation) Hidden
Microsoft Encarta 2006 Enzyklopädie Standard (Version: 2006 - Microsoft Corporation)
Microsoft Foto 2006 Standard Edition (Version: 11.0.0422 - Microsoft Corporation)
Microsoft Foto 2006 Standard Edition Bibliothek (Version: 11.0.0422 - Microsoft Corporation) Hidden
Microsoft Foto 2006 Standard Edition Editor (Version: 11.0.0422 - Microsoft Corporation) Hidden
Microsoft Internationalized Domain Names Mitigation APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office XP Professional mit FrontPage (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Word 2002 (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Works (Version: 08.05.0822 - Microsoft Corporation)
Microsoft Works Suite-Add-Ins für Microsoft Word (Version: 8.0.0.0000 - Microsoft Corporation)
mIWA (Version: 5.45.0000 - Intel Corporation) Hidden
mLogView (Version: 5.45.0000 - Intel Corporation) Hidden
mMHouse (Version: 5.45.0000 - Intel Corporation) Hidden
Modem Helper (Version: 3.01 - BVRP Software)
mPfMgr (Version: 5.45.0000 - Intel Corporation) Hidden
mPfWiz (Version: 5.45.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
mSSO (Version: 5.45.0000 - Intel Corporation) Hidden
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0 - Microsoft Corporation)
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mWMI (Version: 5.45.0000 - Intel Corporation) Hidden
mXML (Version: 5.45.0000 - Intel Corporation) Hidden
mZConfig (Version: 5.45.0000 - Intel Corporation) Hidden
Nero 7 Demo (Version: 7.00.2739 - Nero AG)
NetWaiting (Version: 2.5.23 - BVRP Software, Inc)
Nokia Connectivity Cable Driver (Version: 7.1.36.0 - Nokia)
Nokia Music (Version: 1.2.20226 - Nokia Music)
Nokia Software Updater (Version: 02.06.006.44298 - Nokia Corporation)
OpenOffice.org Installer 1.0 (Version: 1.0.9221 - Sun Microsystems)
PanoStandAlone (Version: 53.0.13.000 - Hewlett-Packard) Hidden
PC Connectivity Solution (Version: 10.50.2.0 - Nokia)
PHOTOfunSTUDIO (Version: 3.00.000 - Panasonic)
PhotoGallery (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Phototool 1.8 (Version: 1.8 - Telepix Imaging Inc)
PowerDVD 5.7 (Version:  - )
PS8000 (Version: 8.01.0000 - Hewlett-Packard) Hidden
PSPrinters08 (Version: 8.01.0000 - Hewlett-Packard) Hidden
PSTAPlugin (Version: 8.01.0000 - Hewlett-Packard) Hidden
QuickSet (Version: 7.1.8 - )
QuickTime (Version: 7.4.5.67 - Apple Inc.)
RandMap (Version: 53.0.13.000 - Hewlett-Packard) Hidden
RedMon - Redirection Port Monitor (Version:  - )
Samsung PC Studio (Version: 3.0.0.50903 - Samsung Electronics Co., Ltd.) Hidden
Seagate Dashboard (Version: 1.1.0.1421 - Memeo Inc.)
Secure Banking Version 1.5.1 (Version: 1.5.1 - Hopfgartner Niklas)
Setup-Start von Microsoft Works Suite 2006 (Version:  - )
Sicherheitsupdate für Microsoft Windows (KB2564958) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB898458) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Step by Step Interactive Training (KB923723) (Version: 20050502.101010 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 7 (KB928090) (Version: 20070117.120000 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB929969) (Version: 20061222.120000 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB931768) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB933566) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB937143) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB938127) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB939653) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB942615) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB944533) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB950759) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB953838) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB956390) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB958215) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB960714) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB961260) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB963027) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB969897) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 7 (KB972260) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Internet Explorer 8 (KB2510531) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2618444) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2744842) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2829530) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2838727) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2846071) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2847204) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2862772) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2870699) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2879017) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2888505) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB2898785) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Internet Explorer 8 (KB982381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2378111) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB2834904-v2) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB911564) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player (KB952069) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB954155) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB968816) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB973540) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB975558) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player (KB978695) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 10 (KB917734) (Version:  - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows Media Player 11 (KB936782) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows Media Player 11 (KB954154) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2079403) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2115168) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2121546) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2160329) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2229593) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2259922) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2279986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2286198) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296011) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2296199) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2347290) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2360937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2387149) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2393802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2412687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2419632) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2423089) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2436673) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2440591) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2443105) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476490) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2476687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478960) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2478971) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479628) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2479943) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2481109) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2483185) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485376) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2485663) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2491683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2503658) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2503665) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506212) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2506223) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507618) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2507938) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508272) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2508429) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2509553) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2511455) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2524375) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2535512) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2536276-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2544893-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2555917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2562937) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2566454) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567053) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2567680) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570222) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2570947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2584146) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2585542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2592799) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2598479) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2603381) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2618451) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2619339) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2620712) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2621440) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2624667) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2631813) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2633171) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2639417) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2641653) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2646524) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2647518) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2653956) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2655992) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2659262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2660465) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2661637) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2676562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2685939) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2686509) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2691442) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2695962) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2698365) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2705219) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2707511) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2709162) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2712808) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2718523) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2719985) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2723135) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2724197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2727528) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2731847) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2753842-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2757638) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2758857) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2761226) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2770660) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2778344) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2779030) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2780091) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2799494) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2802968) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2807986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2808735) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813170) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2813345) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820197) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2820917) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2829361) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2834886) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2839229) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2845187) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2847311) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2849470) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850851) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2850869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2859537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862152) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862330) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2862335) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2864063) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868038) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2868626) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876217) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876315) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2876331) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2883150) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2884256) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2892075) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893294) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2893984) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2898715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2900986) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB2914368) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB923561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB938464) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB938464-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB941569) (Version:  - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB946648) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950760) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950762) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB950974) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951066) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951376-v2) (Version: 2 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951698) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB951748) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952004) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB952954) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB953839) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954211) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954459) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB954600) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB955069) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956391) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956572) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956744) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956802) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956841) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB956844) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957095) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB957097) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958644) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958690) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB958869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB959426) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960225) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960715) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960803) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB960859) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961371) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961373) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB961501) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB968537) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969059) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969898) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB969947) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970238) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB970430) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971468) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971486) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971557) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971633) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB971657) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB972270) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973346) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973354) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973507) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973525) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973869) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB973904) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974112) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974318) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974392) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB974571) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975025) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975467) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975560) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975561) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975562) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB975713) (Version: 1 - Microsoft Corporation) Hidden
Sicherheitsupdate für Windows XP (KB977165) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977816) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB977914) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978037) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978251) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978262) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978338) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978542) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978601) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB978706) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979309) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979482) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979559) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979683) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB979687) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980195) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980218) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980232) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB980436) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981322) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981852) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981957) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB981997) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982132) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982214) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982665) (Version: 1 - Microsoft Corporation)
Sicherheitsupdate für Windows XP (KB982802) (Version: 1 - Microsoft Corporation)
Sitecom Bluetooth Software (Version: 3.0.1.912 - Sitecom)
SkinsHP1 (Version: 53.0.13.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 50.0.152.000 - Hewlett-Packard) Hidden
Sonic DLA (Version: 4.98 - Sonic Solutions)
Sonic MyDVD LE (Version: 6.1.1 - Sonic Solutions)
Sonic RecordNow Audio (Version: 2.0.0 - Sonic Solutions)
Sonic RecordNow Copy (Version: 2.0.0.1 - Sonic Solutions)
Sonic RecordNow Data (Version: 2.0.0 - Sonic Solutions)
Sonic Update Manager (Version: 3.0.0 - Sonic Solutions)
Sonic_PrimoSDK (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (Version: 2.0.12 - Safer-Networking Ltd.)
Status (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (Version: 8.2.4.6 - Synaptics)
The Rosetta Stone (Version:  - )
TrayApp (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Tweak UI (Version:  - )
Uninstall 1.0.0.1 (Version:  - )
Unload (Version: 5.0.0 - Hewlett-Packard) Hidden
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update für Windows Internet Explorer 8 (KB2598845) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2141007) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2345886) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2467659) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2541763) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2607712) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2616676) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2641690) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB2718704) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2736233) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2749655) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2863058) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB2904266) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB951072-v2) (Version: 2 - Microsoft Corporation)
Update für Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update für Windows XP (KB955759) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB955839) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB967715) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB968389) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971029) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB971737) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973687) (Version: 1 - Microsoft Corporation)
Update für Windows XP (KB973815) (Version: 1 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
VideoCam Suite 2.0 (Version: 2.00.043.1031 - Panasonic Corporation)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 53.0.13.000 - Hewlett-Packard) Hidden
Wichtiges Update für Windows Media Player 11 (KB959772) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0017.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (Version:  - Microsoft Corporation)
Windows Imaging Component (Version: 3.0.0.0 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (Version:  - Microsoft Corporation)
Windows Internet Explorer 7 (Version: 20061107.210142 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (Version: 20090308.140743 - Microsoft Corporation)
Windows Live ID-Anmelde-Assistent (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Media Format 11 runtime (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows XP Service Pack 3 (Version: 20080414.031514 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0 - Nokia)
WinRAR (Version:  - )
Works Update (Version: 8.0.0.0000 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

12-01-2014 20:19:23 Systemprüfpunkt
12-01-2014 21:49:30 Ask Toolbar wird entfernt
12-01-2014 21:52:17 Entfernt Google Earth.
13-01-2014 20:02:47 Software Distribution Service 3.0
14-01-2014 16:54:24 Software Distribution Service 3.0
15-01-2014 06:55:14 Software Distribution Service 3.0
15-01-2014 22:20:19 Software Distribution Service 3.0
16-01-2014 13:14:42 Software Distribution Service 3.0
17-01-2014 13:27:15 Systemprüfpunkt
17-01-2014 16:35:58 Software Distribution Service 3.0
18-01-2014 00:58:47 Software Distribution Service 3.0
19-01-2014 08:02:35 Software Distribution Service 3.0
20-01-2014 16:49:48 Software Distribution Service 3.0
21-01-2014 00:51:22 Software Distribution Service 3.0

==================== Hosts content: ==========================

2004-08-18 13:05 - 2013-09-25 17:59 - 00444820 ___RC C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1	localhost
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	www.10sek.com
127.0.0.1	10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	www.123fporn.info
127.0.0.1	123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Programme\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Programme\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Programme\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPpromotions journeysoftware.job => C:\Programme\hp\digital imaging\bin\hp promotions\journeysoftware\HPpromo.exe
Task: C:\WINDOWS\Tasks\ISP-Anmeldungserinnerung 1.job => C:\WINDOWS\system32\OOBE\oobebaln.exe
Task: C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job => c:\Programme\Microsoft Security Client\MpCmdRun.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Programme\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Programme\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4D51DE6F-BAF0-4D0A-9987-0FD094A9FCA0}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2005-12-28 12:11 - 2005-12-28 12:11 - 00876544 _____ () C:\Programme\Intel\Wireless\Bin\LIBEAY32.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00053322 _____ () C:\Programme\Intel\Wireless\Bin\IntStngs.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00208965 _____ () C:\Programme\Intel\Wireless\Bin\IWMSPROV.DLL
2009-07-08 19:50 - 2005-01-06 17:33 - 00116224 _____ () C:\WINDOWS\system32\redmonnt.dll
2013-05-10 21:04 - 2012-11-13 13:06 - 00528288 _____ () C:\Programme\Spybot - Search & Destroy 2\JSDialogPack150.bpl
2013-05-10 21:04 - 2012-11-13 13:06 - 00108960 _____ () C:\Programme\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-05-10 21:04 - 2012-11-13 13:06 - 00416160 _____ () C:\Programme\Spybot - Search & Destroy 2\DEC150.bpl
2013-05-10 21:04 - 2012-11-13 13:06 - 00158624 _____ () C:\Programme\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-05-10 21:04 - 2012-11-13 13:06 - 00554400 _____ () C:\Programme\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
2013-05-10 21:04 - 2012-08-23 08:38 - 00574840 _____ () C:\Programme\Spybot - Search & Destroy 2\sqlite3.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00876544 _____ () C:\Programme\Intel\Wireless\bin\LIBEAY32.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00053322 _____ () C:\Programme\Intel\Wireless\bin\IntStngs.dll
2005-11-16 10:05 - 2005-11-16 10:05 - 00970862 _____ () C:\Programme\Intel\Wireless\Bin\acAuth.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00208965 _____ () C:\Programme\Intel\Wireless\Bin\iWMSProv.dll
2005-12-28 12:11 - 2005-12-28 12:11 - 00876544 _____ () C:\Programme\Intel\Wireless\Bin\Libeay32.dll
2013-05-24 20:54 - 2013-07-13 12:13 - 00017920 _____ () C:\Programme\Secure Banking\SecureBanking.dll
2013-05-24 20:54 - 2013-07-13 12:13 - 00008704 _____ () C:\Programme\Secure Banking\funcs.dll
2008-06-22 10:12 - 2007-09-20 17:34 - 00129024 _____ () C:\Programme\WinRAR\rarext.dll
2009-09-10 19:26 - 2009-09-10 19:26 - 00091992 ____C () C:\Programme\Microsoft Office\Office10\OUTLCTL.DLL
2004-08-18 13:05 - 2008-04-14 03:22 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-01-15 23:42 - 2014-01-11 11:29 - 04055320 _____ () C:\Programme\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-15 23:42 - 2014-01-11 11:29 - 00399640 _____ () C:\Programme\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-15 23:41 - 2014-01-11 11:28 - 01634584 _____ () C:\Programme\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2014-01-15 23:42 - 2014-01-11 11:29 - 13615896 _____ () C:\Programme\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Nokia 6303 classic
Description: Nokia 6303 classic
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/21/2014 06:10:41 AM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/21/2014 01:55:09 AM) (Source: crypt32) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.

Error: (01/20/2014 07:53:09 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/19/2014 01:27:38 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/18/2014 01:18:42 AM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/17/2014 10:45:27 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/17/2014 00:12:57 PM) (Source: SDFSSvc.exe) (User: )
Description: Der Dienstprozess konnte keine Verbindung zum Dienstcontroller herstellen

Error: (01/17/2014 00:12:42 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/16/2014 07:11:43 AM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/14/2014 06:57:59 PM) (Source: MemeoBackgroundService) (User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)


System errors:
=============
Error: (01/21/2014 06:11:23 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/21/2014 06:11:23 AM) (Source: Service Control Manager) (User: )
Description: Zeitüberschreitung (120000 ms) beim Verbindungsversuch mit Dienst Spybot-S&D 2 Security Center Service.

Error: (01/20/2014 07:54:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 07:54:14 PM) (Source: Service Control Manager) (User: )
Description: Zeitüberschreitung (120000 ms) beim Verbindungsversuch mit Dienst Spybot-S&D 2 Security Center Service.

Error: (01/20/2014 07:51:56 PM) (Source: 0) (User: )
Description: 

Error: (01/19/2014 01:28:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/19/2014 01:28:32 PM) (Source: Service Control Manager) (User: )
Description: Zeitüberschreitung (120000 ms) beim Verbindungsversuch mit Dienst Spybot-S&D 2 Security Center Service.

Error: (01/19/2014 01:26:19 PM) (Source: 0) (User: )
Description: 

Error: (01/19/2014 08:39:57 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: Der Server "{1F87137D-0E7C-44D5-8C73-4EFFB68962F2}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/18/2014 01:19:13 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053


Microsoft Office Sessions:
=========================
Error: (01/21/2014 06:10:41 AM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/21/2014 01:55:09 AM) (Source: crypt32)(User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtDieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.

Error: (01/20/2014 07:53:09 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/19/2014 01:27:38 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/18/2014 01:18:42 AM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/17/2014 10:45:27 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/17/2014 00:12:57 PM) (Source: SDFSSvc.exe)(User: )
Description: Der Dienstprozess konnte keine Verbindung zum Dienstcontroller herstellen

Error: (01/17/2014 00:12:42 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/16/2014 07:11:43 AM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)

Error: (01/14/2014 06:57:59 PM) (Source: MemeoBackgroundService)(User: )
Description: Problem starting Memeo Background Service :Remoting configuration failed with the exception 'System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.Security.Principal.IdentityNotMappedException: Some or all identity references could not be translated.
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.SetupChannel()
   at System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
   at System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
   --- End of inner exception stack trace ---
   at System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
   at System.RuntimeMethodHandle.InvokeConstructor(Object[] args, SignatureStruct signature, RuntimeTypeHandle declaringType)
   at System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
   at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
   at System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)'.   at System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfigHandler.DoConfiguration(String filename, Boolean ensureSecurity)
   at System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
   at RemoteServerService.MemeoBackgroundService.OnStart(String[] args)


==================== Memory info =========================== 

Percentage of memory in use: 49%
Total physical RAM: 2038.37 MB
Available physical RAM: 1019.48 MB
Total Pagefile: 7883.96 MB
Available Pagefile: 7031.71 MB
Total Virtual: 2047.88 MB
Available Virtual: 1950.43 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:69.87 GB) (Free:0.98 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 73 GB) (Disk ID: BD296E65)
Partition 1: (Not Active) - (Size=78 MB) - (Type=DE)
Partition 2: (Active) - (Size=70 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=3 GB) - (Type=DB)

==================== End Of Log ============================

SUMA · 21.01.2014, 17:38

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-01-2014
Ran by Crazydog (administrator) on FAMILIESEVGI on 21-01-2014 17:39:35
Running from C:\Dokumente und Einstellungen\Crazydog\desktop
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal


==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Programme\Microsoft Security Client\MsMpEng.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Programme\Intel\Wireless\Bin\S24EvMon.exe
(Intel(R) Corporation) C:\Programme\Intel\Wireless\Bin\WLKEEPER.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\WINDOWS\system32\ACMoFlexService.exe
(B.H.A Corporation) C:\WINDOWS\system32\bgsvcgen.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
(Memeo) C:\Programme\Memeo\AutoBackup\MemeoBackgroundService.exe
(Malwarebytes Corporation) C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDUpdate.exe
(T-Online International AG, Marmiko IT-Solutions GmbH) C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe
(Dell Inc.) C:\Programme\Dell\QuickSet\NicConfigSvc.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\RegSrvc.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe
(Memeo) C:\Programme\Seagate\Seagate Dashboard\SeagateDashboardService.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(SigmaTel, Inc.) C:\WINDOWS\stsystra.exe
(Synaptics, Inc.) C:\Programme\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\iFrmewrk.exe
() C:\Programme\Dell\Media Experience\DMXLauncher.exe
(InstallShield Software Corporation) C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
(Sonic Solutions) C:\WINDOWS\system32\dla\tfswctrl.exe
(Microsoft Corporation) C:\Programme\Microsoft Security Client\msseces.exe
(Safer-Networking Ltd.) C:\Programme\Spybot - Search & Destroy 2\SDTray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Nokia) C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer.exe
(Oracle Corporation) C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe
(Nero AG) C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Programme\Microsoft ActiveSync\wcescomm.exe
(Secure Banking) C:\Programme\Secure Banking\SecureBanking.exe
(Intel Corporation) C:\Programme\Intel\Wireless\Bin\Dot1XCfg.exe
(BVRP Software) C:\Programme\Digital Line Detect\DLG.exe
(Panasonic Corporation) C:\Programme\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
() C:\Programme\Secure Banking\sbservice.exe
(Microsoft Corporation) C:\Programme\Microsoft Office\Office10\OUTLOOK.EXE
(Microsoft Corporation) C:\Programme\Microsoft Office\Office10\WINWORD.EXE
(Microsoft® Corporation) C:\Programme\Microsoft Works\WkDStore.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Programme\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [igfxhkcmd] - C:\WINDOWS\system32\hkcmd.exe [77824 2005-12-13] (Intel Corporation)
HKLM\...\Run: [igfxpers] - C:\WINDOWS\system32\igfxpers.exe [118784 2005-12-13] (Intel Corporation)
HKLM\...\Run: [SigmatelSysTrayApp] - C:\WINDOWS\stsystra.exe [282624 2006-03-24] (SigmaTel, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Programme\Synaptics\SynTP\SynTPEnh.exe [761947 2006-03-08] (Synaptics, Inc.)
HKLM\...\Run: [IntelZeroConfig] - C:\Programme\Intel\Wireless\bin\ZCfgSvc.exe [667718 2005-12-28] (Intel Corporation)
HKLM\...\Run: [IntelWireless] - C:\Programme\Intel\Wireless\Bin\ifrmewrk.exe [602182 2005-12-28] (Intel Corporation)
HKLM\...\Run: [DMXLauncher] - C:\Programme\Dell\Media Experience\DMXLauncher.exe [86016 2005-01-27] ()
HKLM\...\Run: [ISUSPM Startup] - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\isuspm.exe [249856 2005-06-10] (InstallShield Software Corporation)
HKLM\...\Run: [ISUSScheduler] - C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe [81920 2005-06-10] (InstallShield Software Corporation)
HKLM\...\Run: [HPHUPD08] - C:\Programme\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [49152 2005-06-01] (Hewlett-Packard)
HKLM\...\Run: [dla] - C:\WINDOWS\system32\dla\tfswctrl.exe [122941 2005-05-31] (Sonic Solutions)
HKLM\...\Run: [SetDefPrt] - C:\Programme\Brother\Brmfl05a\BrStDvPt.exe [49152 2005-01-26] (Brother Industories, Ltd.)
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [MSC] - c:\Programme\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Programme\Gemeinsame Dateien\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SDTray] - C:\Programme\Spybot - Search & Destroy 2\SDTray.exe [3825176 2012-11-13] (Safer-Networking Ltd.)
HKLM\...\Run: [NokiaMServer] - C:\Programme\Gemeinsame Dateien\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM\...\Run: [NeroFilterCheck] - C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [QuickTime Task] - C:\Programme\QuickTime\qttask.exe [413696 2008-03-28] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe [94208 2005-12-16] (Nero AG)
HKCU\...\Run: [H/PC Connection Agent] - C:\Programme\Microsoft ActiveSync\WCESCOMM.EXE [405583 2005-01-04] (Microsoft Corporation)
HKCU\...\Run: [Gyeqemat] - "C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Isyx\tioz.exe"
HKCU\...\Run: [SecureBanking] - C:\Programme\Secure Banking\SecureBanking.exe [507904 2013-07-13] (Secure Banking)
HKCU\...\Run: [GoogleChromeAutoLaunch_8193EF5AA782368CAA03EF456EAE5602] - C:\Programme\Google\Chrome\Application\chrome.exe [866584 2014-01-11] (Google Inc.)
HKCU\...\Policies\Explorer: [NoCDBurning] 0
MountPoints2: {14e2763c-f271-11e1-b899-001060b350b8} - E:\DPFMate.exe
MountPoints2: {a42e047e-38b6-11e2-b8bf-001060b350b8} - E:\setup_vmc_lite.exe /checkApplicationPresence
HKU\Default User\...\Run: [ModemOnHold] - C:\Programme\NetWaiting\netwaiting.exe [ 2003-09-10] ()
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Programme\Gemeinsame Dateien\Ahead\Lib\NMFirstStart.exe [ 2005-12-16] (Nero AG)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Digital Line Detect.lnk
ShortcutTarget: Digital Line Detect.lnk -> C:\Programme\Digital Line Detect\DLG.exe (BVRP Software)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Programme\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
Startup: C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Autostart\VideoCam Suite 2.0.lnk
ShortcutTarget: VideoCam Suite 2.0.lnk -> C:\Programme\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe (Panasonic Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programme\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_Win32.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} hxxp://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82} - C:\Programme\Microsoft ActiveSync\aatp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File
Handler: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll (Broadcom Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchKeyword: dizideizle.org
CHR DefaultSearchProvider: dizideizle.org
CHR DefaultSearchURL: hxxp://www.dizideizle.org/?s={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-05-10]
CHR Extension: (Google Wallet) - C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Anwendungsdaten\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Programme\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-31]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Programme\Gemeinsame Dateien\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-01-02]

========================== Services (Whitelisted) =================

S3 ACDaemon; C:\Programme\Gemeinsame Dateien\ArcSoft\Connection Service\Bin\ACService.exe [51712 2007-10-11] (ArcSoft)
R2 ACRamDiskHandler; C:\WINDOWS\system32\ACMoFlexService.exe [702176 2010-01-24] (Softwareentwicklung Remus - ArchiCrypt)
R2 bgsvcgen; C:\WINDOWS\system32\bgsvcgen.exe [145504 2007-06-15] (B.H.A Corporation)
S3 Brother XP spl Service; C:\WINDOWS\system32\brsvc01a.exe [57344 2002-04-12] (brother Industries Ltd)
S3 btwdins; C:\Programme\Sitecom\Bluetooth Software\bin\btwdins.exe [163840 2004-10-01] (Broadcom Corporation)
S3 DfSdkS; C:\Programme\Ashampoo\Ashampoo WinOptimizer Free\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 EvtEng; C:\Programme\Intel\Wireless\Bin\EvtEng.exe [114753 2005-12-28] (Intel Corporation)
S2 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2011-04-05] (Google Inc.)
S3 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2011-04-05] (Google Inc.)
S3 IDriverT; C:\Programme\Gemeinsame Dateien\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation)
R2 MBAMScheduler; C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MemeoBackgroundService; C:\Programme\Memeo\AutoBackup\MemeoBackgroundService.exe [25824 2011-01-24] (Memeo)
R2 MsMpSvc; c:\Programme\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 MZCCntrl; C:\Programme\Gemeinsame Dateien\Marmiko Shared\MZCCntrl.exe [61440 2005-11-15] (T-Online International AG, Marmiko IT-Solutions GmbH)
R2 NICCONFIGSVC; C:\Programme\Dell\QuickSet\NICCONFIGSVC.exe [380928 2006-04-06] (Dell Inc.)
R2 RegSrvc; C:\Programme\Intel\Wireless\Bin\RegSrvc.exe [217164 2005-12-28] (Intel Corporation)
R2 S24EventMonitor; C:\Programme\Intel\Wireless\Bin\S24EvMon.exe [540745 2005-12-28] (Intel Corporation )
R2 SDScannerService; C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 SeagateDashboardService; C:\Programme\Seagate\Seagate Dashboard\SeagateDashboardService.exe [14088 2011-06-01] (Memeo)
S3 ServiceLayer; C:\Programme\PC Connectivity Solution\ServiceLayer.exe [628736 2010-12-08] (Nokia)
R2 WLANKEEPER; C:\Programme\Intel\Wireless\Bin\WLKeeper.exe [262217 2005-12-28] (Intel(R) Corporation)
R2 wlidsvc; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WLIDSVC.EXE [1529728 2009-08-18] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Programme\Windows Media Player\WMPNetwk.exe [920576 2006-11-03] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R1 ACMoFlex; C:\WINDOWS\system32\Drivers\ACMoFlex.sys [23264 2010-01-24] (Softwareentwicklung Remus)
R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21275 2006-06-19] (Meetinghouse Data Communications)
R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.)
R1 APPDRV; C:\Windows\SYSTEM32\DRIVERS\APPDRV.SYS [16128 2005-08-12] (Dell Inc)
S3 BrScnUsb; C:\Windows\System32\Drivers\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [17024 2004-10-01] (Broadcom Corporation)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [30299 2004-10-01] (Broadcom Corporation)
R0 BTKRNL; C:\Windows\System32\drivers\btkrnl.sys [1241482 2004-10-01] (Broadcom Corporation)
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2004-10-01] (Broadcom Corporation)
R2 BTSLBCSP; C:\WINDOWS\system32\drivers\btslbcsp.sys [222876 2004-10-01] (Broadcom Corporation)
R3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [147896 2004-10-01] (Broadcom Corporation)
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [54488 2004-10-01] (Broadcom Corporation)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [33408 2006-02-20] (B.H.A Corporation)
R2 drvnddm; C:\Windows\System32\drivers\drvnddm.sys [40544 2005-04-21] (Sonic Solutions)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2004-09-29] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2004-09-29] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2004-09-29] (HP)
R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [201600 2005-07-21] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [1035008 2005-07-21] (Conexant Systems, Inc.)
S3 hwusbfake; C:\Windows\System32\DRIVERS\ewusbfake.sys [102656 2009-06-29] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
S3 PID_0928; C:\Windows\System32\DRIVERS\LV561AV.SYS [495768 2009-04-30] (Logitech Inc.)
S3 QCDonner; C:\Windows\System32\DRIVERS\OVCD.sys [28032 2001-08-17] (Microsoft Corporation)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation)
R2 s24trans; C:\Windows\System32\DRIVERS\s24trans.sys [13568 2005-12-28] (Intel Corporation)
S3 s716bus; C:\Windows\System32\DRIVERS\s716bus.sys [83208 2007-06-28] (MCCI Corporation)
S3 s716mdfl; C:\Windows\System32\DRIVERS\s716mdfl.sys [15112 2007-06-28] (MCCI Corporation)
S3 s716mdm; C:\Windows\System32\DRIVERS\s716mdm.sys [108552 2007-06-28] (MCCI Corporation)
S3 s716mgmt; C:\Windows\System32\DRIVERS\s716mgmt.sys [100360 2007-06-28] (MCCI Corporation)
S3 s716nd5; C:\Windows\System32\DRIVERS\s716nd5.sys [23176 2007-06-28] (MCCI Corporation)
S3 s716obex; C:\Windows\System32\DRIVERS\s716obex.sys [98568 2007-06-28] (MCCI Corporation)
S3 s716unic; C:\Windows\System32\DRIVERS\s716unic.sys [98952 2007-06-28] (MCCI Corporation)
S3 se59bus; C:\Windows\System32\DRIVERS\se59bus.sys [61536 2006-09-05] (MCCI)
S3 se59mdfl; C:\Windows\System32\DRIVERS\se59mdfl.sys [9360 2006-09-05] (MCCI)
S3 se59mdm; C:\Windows\System32\DRIVERS\se59mdm.sys [97088 2006-09-05] (MCCI)
S3 se59mgmt; C:\Windows\System32\DRIVERS\se59mgmt.sys [88624 2006-09-05] (MCCI)
S3 se59nd5; C:\Windows\System32\DRIVERS\se59nd5.sys [18704 2006-09-05] (MCCI)
S3 se59obex; C:\Windows\System32\DRIVERS\se59obex.sys [86432 2006-09-05] (MCCI)
S3 se59unic; C:\Windows\System32\DRIVERS\se59unic.sys [90800 2006-09-05] (MCCI)
R1 sscdbhk5; C:\Windows\System32\drivers\sscdbhk5.sys [5627 2005-05-13] (Sonic Solutions)
R1 ssrtln; C:\Windows\System32\drivers\ssrtln.sys [23545 2005-05-13] (Sonic Solutions)
R3 STHDA; C:\Windows\System32\drivers\sthda.sys [1156648 2006-03-24] (SigmaTel, Inc.)
R2 tfsnboio; C:\Windows\System32\dla\tfsnboio.sys [25725 2005-05-31] (Sonic Solutions)
R2 tfsncofs; C:\Windows\System32\dla\tfsncofs.sys [34845 2005-05-31] (Sonic Solutions)
R2 tfsndrct; C:\Windows\System32\dla\tfsndrct.sys [4125 2005-05-31] (Sonic Solutions)
R2 tfsndres; C:\Windows\System32\dla\tfsndres.sys [2273 2005-05-31] (Sonic Solutions)
R2 tfsnifs; C:\Windows\System32\dla\tfsnifs.sys [86876 2005-05-31] (Sonic Solutions)
R2 tfsnopio; C:\Windows\System32\dla\tfsnopio.sys [15069 2005-05-31] (Sonic Solutions)
R2 tfsnpool; C:\Windows\System32\dla\tfsnpool.sys [6365 2005-05-31] (Sonic Solutions)
R2 tfsnudf; C:\Windows\System32\dla\tfsnudf.sys [98716 2005-05-31] (Sonic Solutions)
R2 tfsnudfa; C:\Windows\System32\dla\tfsnudfa.sys [100605 2005-05-31] (Sonic Solutions)
R3 w39n51; C:\Windows\System32\DRIVERS\w39n51.sys [1428096 2005-12-04] (Intel® Corporation)
S3 wceusbsh; C:\Windows\System32\DRIVERS\wceusbsh.sys [104064 2004-12-06] (Microsoft Corporation)
S3 ASFWHide; \??\C:\DOKUME~1\Crazydog\LOKALE~1\Temp\ASFWHide [x]
S4 InCDFs; system32\drivers\InCDFs.sys [x]
S1 InCDPass; system32\drivers\InCDPass.sys [x]
S1 InCDRm; system32\drivers\InCDRm.sys [x]
S3 LVcKap; system32\DRIVERS\LVcKap.sys [x]
S3 LVMVDrv; system32\DRIVERS\LVMVDrv.sys [x]
S3 LVPr2Mon; system32\drivers\LVPr2Mon.sys [x]
S3 LVUSBSta; system32\drivers\lvusbsta.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-21 17:36 - 2014-01-21 17:39 - 00023030 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.txt
2014-01-21 17:35 - 2014-01-21 17:33 - 01222144 _____ (Farbar) C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.exe
2014-01-21 17:30 - 2014-01-21 17:31 - 00000731 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\JRT.txt
2014-01-21 08:47 - 2014-01-21 08:47 - 00002670 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\AdwCleaner[S0].txt
2014-01-20 20:09 - 2014-01-21 06:04 - 00000000 ____D C:\AdwCleaner
2014-01-20 20:07 - 2014-01-20 20:07 - 01236282 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\adwcleaner.exe
2014-01-19 08:57 - 2014-01-19 08:57 - 00000000 _____ C:\WINDOWS\system32\jupdate-1.7.0_51-b13.log
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 23:20 - 2014-01-15 23:22 - 00005512 _____ C:\WINDOWS\KB2914368.log
2014-01-08 21:07 - 2014-01-08 21:07 - 00000000 ____D C:\FRST
2014-01-08 21:01 - 2014-01-08 21:01 - 00000000 _____ C:\Dokumente und Einstellungen\Crazydog\defogger_reenable
2014-01-08 21:00 - 2014-01-08 21:00 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Mozilla
2013-12-26 13:38 - 2013-12-26 13:38 - 07123640 _____ (FreeDownloadManager.ORG                                     ) C:\fdminst.exe

==================== One Month Modified Files and Folders =======

2014-01-21 17:39 - 2014-01-21 17:36 - 00023030 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.txt
2014-01-21 17:36 - 2010-07-03 11:33 - 04197222 _____ C:\MemeoSendAddin
2014-01-21 17:33 - 2014-01-21 17:35 - 01222144 _____ (Farbar) C:\Dokumente und Einstellungen\Crazydog\desktop\FRST.exe
2014-01-21 17:31 - 2014-01-21 17:30 - 00000731 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\JRT.txt
2014-01-21 17:26 - 2011-04-05 09:42 - 00001094 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 17:24 - 2013-05-24 19:05 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-21 16:12 - 2012-06-12 21:36 - 00000884 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-21 16:00 - 2006-09-02 14:19 - 00000364 ____C C:\WINDOWS\Tasks\HPpromotions journeysoftware.job
2014-01-21 12:25 - 2004-08-18 13:17 - 01815393 ____C C:\WINDOWS\WindowsUpdate.log
2014-01-21 10:12 - 2004-08-18 13:22 - 00032568 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-21 08:47 - 2014-01-21 08:47 - 00002670 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\AdwCleaner[S0].txt
2014-01-21 07:26 - 2011-04-05 09:42 - 00001090 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 06:20 - 2013-11-14 18:37 - 00000386 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2014-01-21 06:12 - 2004-08-18 13:05 - 00002206 ____C C:\WINDOWS\system32\wpa.dbl
2014-01-21 06:11 - 2004-08-18 13:14 - 00000159 ____C C:\WINDOWS\wiadebug.log
2014-01-21 06:10 - 2004-08-18 13:14 - 00000050 ____C C:\WINDOWS\wiaservc.log
2014-01-21 06:09 - 2013-05-10 21:04 - 00000612 ____C C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-01-21 06:09 - 2004-08-18 13:22 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2014-01-21 06:06 - 2013-05-10 21:04 - 00327680 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2014-01-21 06:06 - 2006-06-22 17:29 - 00000300 __SHC C:\Dokumente und Einstellungen\Crazydog\ntuser.ini
2014-01-21 06:06 - 2006-06-22 17:29 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog
2014-01-21 06:04 - 2014-01-20 20:09 - 00000000 ____D C:\AdwCleaner
2014-01-21 06:04 - 2004-08-18 13:12 - 00000000 ___RD C:\Programme
2014-01-20 20:07 - 2014-01-20 20:07 - 01236282 _____ C:\Dokumente und Einstellungen\Crazydog\desktop\adwcleaner.exe
2014-01-20 17:38 - 2013-05-24 20:15 - 00000402 ___HC C:\WINDOWS\Tasks\User_Feed_Synchronization-{4D51DE6F-BAF0-4D0A-9987-0FD094A9FCA0}.job
2014-01-19 08:57 - 2014-01-19 08:57 - 00000000 _____ C:\WINDOWS\system32\jupdate-1.7.0_51-b13.log
2014-01-19 08:57 - 2006-06-19 16:22 - 00000000 ____D C:\Programme\Java
2014-01-19 08:57 - 2004-08-18 13:12 - 00000000 ___RD C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-01-19 08:32 - 2010-01-24 17:55 - 00231584 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-17 23:38 - 2013-04-22 19:21 - 00002377 _____ C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Adobe Reader XI.lnk
2014-01-15 23:51 - 2013-08-16 16:54 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 23:43 - 2013-05-10 20:57 - 00001771 ____C C:\Dokumente und Einstellungen\All Users\desktop\Google Chrome.lnk
2014-01-15 23:24 - 2006-07-05 17:48 - 83425928 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 23:22 - 2014-01-15 23:20 - 00005512 _____ C:\WINDOWS\KB2914368.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00173526 ____C C:\WINDOWS\ocgen.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00110424 ____C C:\WINDOWS\comsetup.log
2014-01-15 23:22 - 2013-05-14 21:35 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-15 23:22 - 2013-05-14 21:34 - 00132049 ____C C:\WINDOWS\setupapi.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00373746 ____C C:\WINDOWS\FaxSetup.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00147834 ____C C:\WINDOWS\tsoc.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00077156 ____C C:\WINDOWS\ntdtcsetup.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00058279 ____C C:\WINDOWS\iis6.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00021102 ____C C:\WINDOWS\ocmsn.log
2014-01-15 23:22 - 2013-03-14 08:08 - 00019309 ____C C:\WINDOWS\msgsocm.log
2014-01-15 16:12 - 2006-06-22 22:16 - 00000116 ____C C:\WINDOWS\NeroDigital.ini
2014-01-14 17:16 - 2006-07-20 06:44 - 00000000 ____D C:\WINDOWS\Sun
2014-01-13 20:51 - 2010-07-03 11:32 - 00000000 ____D C:\Dokumente und Einstellungen\LocalService\Lokale Einstellungen\Anwendungsdaten\ServiceTest
2014-01-12 22:56 - 2007-02-16 23:38 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB926436$
2014-01-12 21:48 - 2010-11-02 21:28 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\desktop\Suara Ilayda Nervin
2014-01-12 21:47 - 2013-10-23 21:11 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\desktop\Bilder SuMA
2014-01-12 11:44 - 2013-03-14 08:08 - 00002921 ____C C:\WINDOWS\setupact.log
2014-01-12 08:10 - 2009-07-15 14:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB973346$
2014-01-10 23:28 - 2004-08-18 13:17 - 00000000 ____D C:\WINDOWS\system32\Restore
2014-01-08 22:44 - 2006-06-22 17:29 - 00000000 ___RD C:\Dokumente und Einstellungen\Crazydog\Startmenü\Programme\Autostart
2014-01-08 22:44 - 2006-06-22 17:29 - 00000000 ___RD C:\Dokumente und Einstellungen\Crazydog\Startmenü\Programme
2014-01-08 21:07 - 2014-01-08 21:07 - 00000000 ____D C:\FRST
2014-01-08 21:01 - 2014-01-08 21:01 - 00000000 _____ C:\Dokumente und Einstellungen\Crazydog\defogger_reenable
2014-01-08 21:00 - 2014-01-08 21:00 - 00000000 ____D C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\Mozilla
2014-01-07 14:44 - 2006-06-22 22:16 - 00000087 _____ C:\Dokumente und Einstellungen\Crazydog\default.pls
2013-12-26 13:38 - 2013-12-26 13:38 - 07123640 _____ (FreeDownloadManager.ORG                                     ) C:\fdminst.exe
2013-12-26 12:03 - 2009-10-23 20:32 - 00021912 ____C C:\Dokumente und Einstellungen\Crazydog\Anwendungsdaten\wklnhst.dat
2013-12-26 09:06 - 2007-04-15 13:44 - 00002501 ____C C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft Word.lnk

Some content of TEMP:
====================
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\APNSetup.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\BackupSetup.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\GCVerifier.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\jre-7u51-windows-i586-iftw.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\NEventMessages.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\NOSEventMessages.dll
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\Quarantine.exe
C:\Dokumente und Einstellungen\Crazydog\Lokale Einstellungen\Temp\secuniasi2957605410973983934.dll


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-18 13:05] - [2008-04-14 03:22] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e 

C:\Windows\System32\winlogon.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a 

C:\Windows\System32\svchost.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366 

C:\Windows\System32\services.exe
[2004-08-18 13:05] - [2009-02-09 12:21] - 0111104 ____A (Microsoft Corporation) a3edbe9053889fb24ab22492472b39dc 

C:\Windows\System32\User32.dll
[2004-08-18 13:05] - [2008-04-14 03:22] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd 

C:\Windows\System32\userinit.exe
[2004-08-18 13:05] - [2008-04-14 03:23] - 0026624 ___AC (Microsoft Corporation) 788f95312e26389d596c0fa55834e106 

C:\Windows\System32\rpcss.dll
[2004-08-18 13:05] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) 3127afbf2c1ed0ab14a1bbb7aaecb85b 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2004-08-18 13:05] - [2008-04-14 02:52] - 0053760 ___AC (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d 


==================== End Of Log ============================

--- --- ---

cosinus · 22.01.2014, 12:40

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

SUMA · 23.01.2014, 05:52

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.22.10

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Crazydog :: FAMILIESEVGI [Administrator]

22.01.2014 22:32:25
mbam-log-2014-01-22 (22-32-25).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 216732
Laufzeit: 28 Minute(n), 58 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=0dba69fb8516df4cbc33812bdac0a883
# engine=16757
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-23 04:17:27
# local_time=2014-01-23 05:17:27 (+0100, Westeuropäische Normalzeit)
# country="Germany"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=5892 16777213 88 94 6071526 41636474 0 0
# scanned=173684
# found=0
# cleaned=0
# scan_time=21762

Danke Dir alles so gemacht

cosinus · 23.01.2014, 09:14

TFC - Temp File Cleaner

Lade dir

TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.

Öffne die TFC.exe.
Vista und Win 7 User mit Rechtsklick "als Administrator starten".
Schließe alle anderen Programme.
Drücke auf den Button Start.
Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.

Sieht soweit ok aus

Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

SUMA · 23.01.2014, 20:00

Hallo Soweit passt es auch jedoch benötigt der laptop fast 5 min zum hochfahren ??? und sobald ich TFC starte Pop der Virenscanner und der Rechner hängt sich auf.
Bitte was kann ich noch machen ??

cosinus · 24.01.2014, 11:26

Statt TFC den CCleaner verwenden aber Finger weg von der Registry-Clening-Funktion!

SUMA · 25.01.2014, 10:01

Hallo Cosinus,
habe jetzt den CCleaner laufen lassen und es hat eingige sachen gezeigt und gelöscht.

Jedoch wenn ich einen Neustart machen dauert es sage und schreibe 16 min bis ich mit dem LAp arbeiten kann....

Dann ist mir eingefallen das es vor paarTagen die Info gebracht hat es Windows auf DiagnoseModus startet???? was heißt das ?
Diese Info kam einmal und meiner Meinung nach ist es auch seit dem so..

Kann man irgendwo sehen ob es im Diagnose modus startet und dies wieder auf normal ändern ??

PS zwischen durch ist der Rechner viel viel schneller betriebsbereit gewesen

Gruß SUMA

cosinus · 25.01.2014, 20:10

Versteckte Funktionen in Windows 7 ? Speicher- und Hardware-Diagnose

13.01.2014, 22:32	#17
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows XP mit vielen Vieren befallen Nein, da steht eindeutig, dass du die Funde nicht entfernt hast und so durch schwarze Magie von allein oder so kommen die auch nicht wieder! Mal davon abgesehen, dass du MBAM vor dem Scan nichtmal aktualisiert hast __________________ __________________

24.01.2014, 11:26	#27
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows XP mit vielen Vieren befallen Statt TFC den CCleaner verwenden aber Finger weg von der Registry-Clening-Funktion! __________________ Logfiles bitte immer in CODE-Tags posten

25.01.2014, 20:10	#29
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows XP mit vielen Vieren befallen Versteckte Funktionen in Windows 7 ? Speicher- und Hardware-Diagnose __________________ Logfiles bitte immer in CODE-Tags posten

Windows XP mit vielen Vieren befallen

Log-Analyse und Auswertung: Windows XP mit vielen Vieren befallen