Langsames Internet an meinem PC

Michael_ · 26.01.2014, 19:13

Hi,

Seit einiger Zeit ist das Internet auf meinem PC sehr langsam.
Ich habe konkret nur einen Downstream von ca. "150kb/s"...

Zu mir:

Windows 7, 64bit
DSL 16.000
Der PC ist via. LAN angeschlossen (Kabel)

Hab mal testweise meinen Laptop an den gleichen Router gehängt
und damit einen Speedtest gemacht und dort hatte ich einen Downstream von "1500kb/s" ca...

Es muss also an meinem PC liegen.
Ich glaub nicht unbedingt das es ein Virus ist, evtl. irgendeine Firewall oder ein Programm das als solches agiert etc...

Naja da ich mich nicht sonderlich gut auskenne
hoffe ich das mir hier jemand geziehlt helfen kann...

lg
Michael

schrauber · 26.01.2014, 22:48

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Michael_ · 26.01.2014, 22:53

Hi,
Vielen Dank für deine Antwort,

Ich hab dir hier direkt mal die beiden Logfiles angehängt

Ich Hoffe die helfen dir weiter

lg
Michael

schrauber · 27.01.2014, 16:13

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Michael_ · 27.01.2014, 20:14

Sorry, wusste ich nicht...

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-01-2014 02
Ran by Michael (administrator) on MICHAEL-PC on 26-01-2014 22:50:25
Running from C:\Users\Michael\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Marvell) C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
() C:\Windows\System32\JulaPAN.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ6.5\ICQ.exe
(nerds.de) C:\Program Files (x86)\nerds.de\LoopBe30\loough.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtblfs.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [JulaPAN.exe] - C:\Windows\system32\JulaPAN.exe [526368 2011-08-13] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [MSUTray] - C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe [1202216 2011-02-25] ()
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [VolPanel] - C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [CTxfiHlp] - CTXFIHLP.EXE
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKCU\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ6.5\ICQ.exe [172792 2010-01-03] (ICQ, LLC.)
HKU\UpdatusUser\...\Run: [ICQ] - "C:\Program Files (x86)\ICQ7.6\ICQ.exe" silent loginmode=4
HKU\UpdatusUser\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\UpdatusUser\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\UpdatusUser\...\RunOnce: [CTAutoUpdate] - C:\Program Files (x86)\Creative\Shared Files\Software Update\AutoUpdate.exe [623416 2009-06-19] (Creative Technology Ltd)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB1F21670CC59CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Set UA String (BHO) - {3CE56DB6-FCBE-4422-9454-63C354178985} - C:\Program Files (x86)\UAPick\UABtn.dll (Bayden Systems)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
Toolbar: HKLM-x32 - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} hxxp://download.flatcast.net/objects/NpFv530.dll
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Windows\DOWNLO~1\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Michael\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{5F5723BB-4560-492E-BFED-8CB723657610}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{6A7FA676-C90C-40CA-A051-6D354C23DA10}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{70BE1035-F11C-49D2-B43F-0BE63533E77D}.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\ich@maltegoetz.de [2013-12-11]
FF Extension: FireShot - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2013-12-07]
FF Extension: Google Translator for Firefox - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\translator@zoli.bod.xpi [2013-05-03]
FF Extension: Quick Translator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi [2013-05-03]
FF Extension: ImTranslator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2013-05-03]
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Kaspersky Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-04-08]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.462_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Flatcast Viewer Plugin 5.3.0.784) - C:\Program Files (x86)\Mozilla Firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Michael\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-23]
CHR Extension: (Google-Suche) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-23]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2011-12-23]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2011-12-23]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-16]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-08]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-23]
CHR Extension: (Anti-Banner) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2011-12-23]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\urladvisor.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\virtkbd.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\ab.crx [2011-08-05]

==================== Services (Whitelisted) =================

S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [570368 2011-01-14] ()
R2 MSUWebService; C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe [24645 2010-09-02] (Apache Software Foundation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143552 2012-02-09] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2011-01-14] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\System32\DRIVERS\Xeno7x64.sys [157288 2011-01-14] (Bigfoot Networks, Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-12-04] (DT Soft Ltd)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group)
S3 iLokDrvr; C:\Windows\System32\DRIVERS\iLokDrvr.sys [25808 2013-04-11] ()
R1 Jula.sys; C:\Windows\System32\DRIVERS\Jula.sys [58400 2011-08-13] ()
R3 JulaWDM.sys; C:\Windows\System32\DRIVERS\JulaWDM.sys [43552 2011-08-13] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2011-03-04] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2011-03-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [637272 2012-10-29] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 LoopBe30; C:\Windows\System32\drivers\loopbe30.sys [16896 2011-02-26] (nerds.de)
R3 Mv_Process; c:\windows\syswow64\mv_process.sys [14376 2011-02-25] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-02-09] (TuneUp Software)
R1 vmm; C:\Windows\system32\Treiber\vmm.sys [294232 2012-04-13] (Microsoft Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-26 22:50 - 2014-01-26 22:50 - 00024128 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-26 22:50 - 2014-01-26 22:50 - 00000000 ____D C:\FRST
2014-01-26 22:49 - 2014-01-26 22:49 - 02078208 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2014-01-25 20:37 - 2014-01-25 20:38 - 00000000 ____D C:\Users\Michael\Desktop\VipZone Samples
2014-01-25 02:26 - 2014-01-25 19:01 - 00000000 ____D C:\Users\Michael\Desktop\Sylenth1 Soundbanks
2014-01-15 15:40 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:40 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:40 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-08 18:27 - 2014-01-09 18:28 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge
2013-12-30 11:02 - 2013-12-30 11:06 - 00000000 ____D C:\Users\Michael\Desktop\Shocking Banks
2013-12-28 19:03 - 2014-01-02 02:09 - 01091802 _____ C:\Users\Michael\Desktop\The Hits.flp
2013-12-28 18:54 - 2013-12-28 18:54 - 55883600 _____ C:\Users\Michael\Desktop\Guntersson_-_The_808_Girl_-_Version_1.wav

==================== One Month Modified Files and Folders =======

2014-01-26 22:50 - 2014-01-26 22:50 - 00024128 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-26 22:50 - 2014-01-26 22:50 - 00000000 ____D C:\FRST
2014-01-26 22:50 - 2013-12-23 20:46 - 00000000 ____D C:\Users\Michael\Desktop\Wichtig
2014-01-26 22:50 - 2011-02-24 08:21 - 00202752 _____ C:\Windows\SysWOW64\freqdb.db
2014-01-26 22:49 - 2014-01-26 22:49 - 02078208 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2014-01-26 22:46 - 2012-04-24 15:01 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-26 21:54 - 2011-08-13 14:40 - 01169166 _____ C:\Windows\WindowsUpdate.log
2014-01-26 21:53 - 2011-12-23 16:47 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job
2014-01-26 21:12 - 2012-07-13 15:50 - 00000000 ____D C:\Users\Michael\Desktop\Linkverzeichnis
2014-01-26 21:10 - 2011-08-14 12:29 - 00000000 ____D C:\Users\Michael\AppData\Roaming\FileZilla
2014-01-26 18:17 - 2011-08-17 12:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2014-01-26 18:08 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-26 18:08 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-26 18:06 - 2009-07-14 18:58 - 22988484 _____ C:\Windows\system32\perfh007.dat
2014-01-26 18:06 - 2009-07-14 18:58 - 07410812 _____ C:\Windows\system32\perfc007.dat
2014-01-26 18:06 - 2009-07-14 06:13 - 00005222 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-26 18:02 - 2011-08-13 16:14 - 00203372 _____ C:\Windows\SysWOW64\mvaccelerator.log
2014-01-26 18:01 - 2012-04-10 00:29 - 00080042 _____ C:\Windows\setupact.log
2014-01-26 18:01 - 2011-08-13 16:00 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-26 18:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 20:38 - 2014-01-25 20:37 - 00000000 ____D C:\Users\Michael\Desktop\VipZone Samples
2014-01-25 19:01 - 2014-01-25 02:26 - 00000000 ____D C:\Users\Michael\Desktop\Sylenth1 Soundbanks
2014-01-24 20:27 - 2013-10-17 21:20 - 00001982 _____ C:\Users\Michael\Desktop\Vipzone Samples Wishlist.txt
2014-01-23 18:37 - 2013-09-28 17:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SongManager
2014-01-22 01:07 - 2011-12-23 16:47 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job
2014-01-15 22:24 - 2009-07-14 05:45 - 00389256 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settingsbkup.sfm
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settings.sfm
2014-01-15 17:11 - 2009-07-14 03:34 - 00001016 _____ C:\Windows\win.ini
2014-01-15 17:10 - 2013-08-14 09:06 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 17:09 - 2012-02-01 15:04 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 15:35 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-13 02:52 - 2013-10-14 22:40 - 00522182 _____ C:\Users\Michael\Desktop\2 Vibez - Just 4 You.flp
2014-01-09 18:28 - 2014-01-08 18:27 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-09 17:59 - 2013-11-06 01:52 - 01101195 _____ C:\Users\Michael\Desktop\Feel much Better.flp
2014-01-09 17:58 - 2013-12-06 19:19 - 00624048 _____ C:\Users\Michael\Desktop\HU Test.flp
2014-01-09 17:46 - 2013-12-14 19:09 - 01622779 _____ C:\Users\Michael\Desktop\Next House Single.flp
2014-01-09 17:44 - 2013-11-22 18:47 - 03201863 _____ C:\Users\Michael\Desktop\Fucking Fresh.flp
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge
2014-01-07 02:51 - 2012-02-22 16:11 - 00000000 ____D C:\Program Files\VstPlugins
2014-01-02 02:09 - 2013-12-28 19:03 - 01091802 _____ C:\Users\Michael\Desktop\The Hits.flp
2013-12-31 10:46 - 2012-06-06 02:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-31 00:47 - 2012-09-03 22:37 - 00000000 ____D C:\Users\Michael\Desktop\Tuts
2013-12-30 23:07 - 2013-12-02 20:12 - 00573133 _____ C:\Users\Michael\Desktop\Rob & Chris durchgemacht.flp
2013-12-30 19:19 - 2013-10-15 14:08 - 00393056 _____ C:\Users\Michael\Desktop\Oldschool.flp
2013-12-30 11:06 - 2013-12-30 11:02 - 00000000 ____D C:\Users\Michael\Desktop\Shocking Banks
2013-12-29 18:35 - 2013-11-30 18:35 - 00733751 _____ C:\Users\Michael\Desktop\Hart.flp
2013-12-29 18:13 - 2013-10-29 00:06 - 00706380 _____ C:\Users\Michael\Desktop\Geiles Zeug.flp
2013-12-29 18:11 - 2013-11-17 22:44 - 00570614 _____ C:\Users\Michael\Desktop\test something.flp
2013-12-29 18:06 - 2013-11-14 04:47 - 01114649 _____ C:\Users\Michael\Desktop\IT WORKS !!!.flp
2013-12-29 18:04 - 2013-11-18 04:49 - 00570547 _____ C:\Users\Michael\Desktop\Hot Sound.flp
2013-12-29 18:04 - 2013-11-18 04:40 - 00571599 _____ C:\Users\Michael\Desktop\Love is in the Air.flp
2013-12-29 18:03 - 2013-11-18 05:01 - 00583607 _____ C:\Users\Michael\Desktop\Think about !!!.flp
2013-12-29 18:02 - 2013-12-08 20:06 - 00088347 _____ C:\Users\Michael\Desktop\Kill it.flp
2013-12-29 15:55 - 2013-11-26 02:03 - 01605856 _____ C:\Users\Michael\Desktop\HU Basstest.flp
2013-12-29 15:53 - 2013-12-16 04:17 - 00620167 _____ C:\Users\Michael\Desktop\Idee.flp
2013-12-29 15:53 - 2013-12-02 03:51 - 00570383 _____ C:\Users\Michael\Desktop\GEIL BASS.flp
2013-12-28 18:54 - 2013-12-28 18:54 - 55883600 _____ C:\Users\Michael\Desktop\Guntersson_-_The_808_Girl_-_Version_1.wav

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 19:45

==================== End Of Log ============================

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-01-2014 02
Ran by Michael at 2014-01-26 22:50:39
Running from C:\Users\Michael\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Disabled - Up to date) {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
AS: Kaspersky Internet Security (Disabled - Up to date) {95CBD341-38DB-14AC-AF6A-08054B41A339}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {1691B380-548E-1A7A-BE85-9A42CE15AEFF}

==================== Installed Programs ======================

µTorrent (x32 Version: 1.6 - )
7-Zip 9.20 (x32 Version:  - )
AC3Filter 1.63b (x32 Version: 1.63b - Alexander Vigovsky)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (x32 Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.3.633 - Adobe Systems, Inc.)
Alldj DVD Ripper Platium 4.0 (x32 Version:  - MasterSoft, Inc.)
ANALOG87 SD-GATE (x32) (x32 Version: 1.1.5 - eaReckon)
Antares Autotune Evo VST RTAS v6.0.9 (x32 Version:  - )
Apple Application Support (x32 Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
appleJuice Client (x32 Version: 0.31.149.110 - applejuice.de)
Ashampoo Burning Studio 9.21 (x32 Version: 9.2.1 - ashampoo GmbH & Co. KG)
ASIO4ALL (x32 Version: 2.10 - Michael Tippach)
AtoD SuperSaw Plus VSTi v1.0 (x32 Version:  - )
Audacity 1.2.6 (x32 Version:  - )
AVS Audio Converter version 7 (x32 Version:  - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (x32 Version:  - Online Media Technologies Ltd.)
AVS Video Converter 6 (x32 Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (x32 Version:  - Online Media Technologies Ltd.)
Azureus (x32 Version: 2.5.0.4 - )
Bayden UAPick (x32 Version:  - )
Bigfoot Networks Killer Network Manager (Version: 6.0.1.133 - Bigfoot Networks) Hidden
Bigfoot Networks Killer Network Manager (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Camel Audio Alchemy (x32 Version: 1.55.0 - Camel Audio)
Camel Audio CamelCrusher (x32 Version: 1.01.0 - Camel Audio)
CCleaner (Version: 3.17 - Piriform)
Creative Audio-Systemsteuerung (x32 Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (x32 Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (x32 Version: 1.02 - Creative Technology Limited)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (x32 Version: 4.40.2.0131 - DT Soft Ltd)
db audioware Sidechain Gate VST v1.1.0 (x32 Version:  - )
Deckadance 2 (x32 Version: 2.0 - Image-Line)
Defraggler (Version: 2.09 - Piriform)
discoDSP Corona Demo (x32 Version: 4.7 - discoDSP)
discoDSP Discovery Pro (x32 Version: 3 - discoDSP)
Diversion VST version 1.29 (Version: 1.29 - )
DivX-Setup (x32 Version: 2.6.1.8 - DivX, LLC)
Dolby Digital Live Pack (x32 Version: 3.02 - Creative Technology Limited)
DTS Connect Pack (x32 Version: 1.00 - Creative Technology Limited)
DUNE Demo 1.4 (x32 Version:  - Synapse Audio Software)
Effectrix (x32 Version: 1.0 - Sugar Bytes)
ElectraX demo (Version:  - Tone2)
Emagic Logic Audio Platinum 5.5.1 (x32 Version:  - )
FabFilter Pro-G 1.13 (x32 Version:  - )
ffdshow (remove only) (x32 Version:  - )
FileZilla Client 3.2.7.1 (x32 Version: 3.2.7.1 - )
FL Studio 10 (x32 Version:  - Image-Line)
foobar2000 v1.1.2 (x32 Version: 1.1.2 - Peter Pawlowski)
Free CD Ripper V1.9 (x32 Version: 1.9.0.0 - Koyote Soft)
Free Video Converter V 3.1 (x32 Version: 3.1.0.0 - Koyote Soft)
Free Video Dub version 2.0.11.627 (x32 Version: 2.0.11.627 - DVDVideoSoft Ltd.)
Free Video to MP3 Converter version 5.0.15.706 (x32 Version: 5.0.15.706 - DVDVideoSoft Ltd.)
Free Videos To DVD V 3.2.0 (x32 Version: 3.2.0.0 - Koyote soft)
FruityLoops v3.56 Full (x32 Version:  - )
GForce - Oddity (x32 Version:  - )
GIMP 2.6.11 (x32 Version: 2.6.11 - The GIMP Team)
Google Chrome (HKCU Version: 32.0.1700.76 - Google Inc.)
GTA Vice City - Deluxe (x32 Version:  - )
Hardcore (x32 Version:  - Image-Line bvba)
HD Tune 2.55 (x32 Version:  - EFD Software)
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
HyperCam 2 (x32 Version:  - )
ICQ 6.5 Build #2024 Banner Remover 1.0 (x32 Version:  - murb.com)
ICQ6.5 (x32 Version: 6.5 - ICQ)
IL Download Manager (x32 Version:  - Image-Line)
IL Shared Libraries (x32 Version:  - Image-Line)
ImgBurn (x32 Version: 2.5.6.0 - LIGHTNING UK!)
Intel(R) Rapid Storage Technology (x32 Version: 10.6.0.1002 - Intel Corporation)
iTunes (Version: 11.0.1.12 - Apple Inc.)
iZotope Nectar (x32 Version: 1.12 - iZotope, Inc.)
iZotope Vinyl (x32 Version: 1.61 - iZotope, Inc.)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (64-bit) (Version: 6.0.260 - Oracle)
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab) Hidden
KORG M1 Le (x32 Version: 1.0.4 - KORG Inc.)
LMMS 0.4.13 (x32 Version: 0.4.13 - LMMS Developers)
LoopBe30 - Internal MIDI Ports (x32 Version:  - )
marvell 91xx driver (x32 Version: 1.1.0.6 - Marvell)
Marvell Storage Utility V4 (x32 Version: 4.1.0.1915 - Marvell)
Mercury 1 (x32 Version:  - )
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Virtual PC 2007 (Version: 6.0.156.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)
Mp3tag v2.47b (x32 Version: v2.47b - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron)
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron) Hidden
Native Instruments FM7 VSTi DXI RTAS v1.1.3.4 (x32 Version:  - )
Native Instruments Kontakt 5 (Version: 5.1.0.6066 - Native Instruments) Hidden
Native Instruments Kontakt 5 (x32 Version:  - Native Instruments)
Native Instruments Massive (Version: 1.1.5.1967 - Native Instruments) Hidden
Native Instruments Massive (x32 Version:  - Native Instruments)
Netscape (7.1) (x32 Version:  - )
nLite 1.4.9.1 (x32 Version: 1.4.9.1 - Dino Nuhagic (nuhi))
No23 Recorder (x32 Version: 2.1.0.3 - No23)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.115.743 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0213 (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 314.22 (Version: 314.22 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation) Hidden
Ohm Force - Ohmicide VST (x32 Version:  - )
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
Opera 12.15 (x32 Version: 12.15.1748 - Opera Software ASA)
Oracle VM VirtualBox 3.2.10 (Version: 3.2.10 - Oracle Corporation)
Orion 8 DEMO (x32 Version:  - Synapse Audio Software)
PACE License Support Win64 (Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (x32 Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.)
Paint.NET v3.5.8 (Version: 3.58.0 - dotPDN LLC)
Paragon Partition Manager™ 11 Professional (x32 Version: 90.00.0003 - Paragon Software)
Phase 5 HTML-Editor (x32 Version: 5.6.2.3 - Systemberatung Schommer)
Preston Gate 1.2.0.0 (x32 Version:  - One Small Clue)
PSPad editor (x32 Version:  - Jan Fiala)
Quick Media Converter (HKCU Version:  - )
ReFX JunoX2 VSTi v1.51 (x32 Version:  - )
reFX Nexus VSTi RTAS v2.2.0 (x32 Version:  - )
reFX Vanguard VSTi RTAS v1.8.0 (x32 Version:  - )
Relab LX480 Lite VST v1.0 (x32 Version:  - )
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rob Papen BLUE Version 1.9.0 Demo (x32 Version:  - RPCX)
Sawer (x32 Version:  - Image-Line)
SINUS GoldenGate v1.2 VST (x32 Version:  - )
SIW version 2011.10.29 (x32 Version: 2011.10.29 - Topala Software Solutions)
Softube FET Compressor VST RTAS v1.0.3 (x32 Version:  - )
Softube Tube-Tech CL 1B VST RTAS v1.0.3 (x32 Version:  - )
Sonalksis Plug-in Manager 3.01 (x32 Version:  - Sienda New Media Technologies GmbH)
Sonic Charge Cyclone (x32 Version: 1.0.0.5 - NuEdge Development)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (x32 Version:  - Team AiR 2007)
Sound Blaster X-Fi (x32 Version: 1.0 - Creative Technology Limited)
Soundforum Synth (x32 Version:  - )
SSL LMC-1 v1.0 (x32 Version: v1.0 - Solid State Logic)
SSL X-ORCISM v1.1 (x32 Version: v1.1 - Solid State Logic)
SuperWave Tarkus (x32 Version: 1.5 - SuperWave)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sylenth1 v2.20 (x32 Version:  - )
SynthMaster 2.6 VST/VSTi/RTAS DEMO (x64) version 2.6.7 (x32 Version: 2.6.7 - KV331 Audio)
TerraTec Komplexer VSTi 1.0.3 (x32 Version:  - )
TheOne v.0.3 (x32 Version:  - Scene Coders - We reflect the Scene!)
TubeOhm Alpha-Ray (x32 Version:  - )
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software)
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Video Download Capture V4.6.9 (x32 Version: 4.6.9 - Apowersoft)
Virtual DJ Pro Full - Atomix Productions (x32 Version:  - )
VLC media player 1.1.6 (x32 Version: 1.1.6 - VideoLAN)
Waves Complete V9r11 (x32 Version: 9.1.11 - Waves)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR archiver (x32 Version:  - )
WinSCP 4.2.9 (x32 Version: 4.2.9 - Martin Prikryl)
XILS-lab Synthix v1.0.1 (x32 Version:  - )
Xvid Video Codec (x32 Version: 1.3.2 - Xvid Team)
YAMAHA AN1xEdit (x32 Version:  - )
Youtube Downloader HD v. 2.6 (x32 Version:  - YoutubeDownloaderHD.com)

==================== Restore Points  =========================

12-01-2014 18:00:07 Windows-Sicherung
14-01-2014 14:38:09 Windows Update
15-01-2014 16:09:19 Windows Update
19-01-2014 18:00:08 Windows-Sicherung
21-01-2014 13:31:15 Windows Update
24-01-2014 16:59:12 Windows Update
26-01-2014 18:00:07 Windows-Sicherung

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-12-10 00:35 - 00001140 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	secure.tune-up.com
127.0.0.1 im.adtech.de
127.0.0.1 adserver.adtech.de
127.0.0.1 adtech.de
127.0.0.1 ar.atwola.com
127.0.0.1 atwola.com
127.0.0.1 adserver.71i.de
127.0.0.1 adicqserver.71i.de
127.0.0.1 71i.de
174.142.65.65 wolke.skynet
174.142.65.65 announce.mine.nu
174.142.61.140 skynet.wolke


==================== Scheduled Tasks (whitelisted) =============

Task: {0D097214-E35D-4205-8933-EBCCB584D8E0} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {26F82BAB-CEDA-413A-BE4C-DD46FAF9C34C} - System32\Tasks\{A6310BBD-C6E3-4C91-ACFD-7EDAC05559EA} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {2D31B9CD-CCE4-455E-9536-18C6714D5E22} - System32\Tasks\{E99794BB-BDB3-4A4F-A479-C3243C513134} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {381065BA-330F-45AF-B2DD-573EBAF24621} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {393688AF-F45A-4FC5-A547-C668183AB85E} - System32\Tasks\Google Updater and Installer => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {51B5E5BD-461D-4141-A862-FBBCB7ABE6D6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {592296FF-75EB-40BF-A9CD-5FB61D39AEEC} - System32\Tasks\{907A584F-54BB-419A-A3C6-05C9FEB32B64} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {8DC25586-38DC-465A-B4A2-5A5C3BC4ED1B} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe [2012-02-09] (TuneUp Software)
Task: {AE5CA518-2326-46D2-808D-8A96D2427559} - System32\Tasks\{7C4F6FD0-2E14-40BB-94DF-77F8F8F7CA75} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {B0B0DCF0-F1EA-4E93-852D-434D6824C89B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B1F52ECF-3076-4C8F-AAA2-3DF0CB3CF48B} - System32\Tasks\{D4611C16-6D0B-4B1F-98CA-BED8730E1D52} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {D12C081C-509C-4427-B552-EBE4301991C4} - System32\Tasks\{02905D1D-ABE5-4CEF-8D3A-457CFFE5DBB3} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {D63B5A9D-6577-41F3-BC78-EC940A254BBB} - System32\Tasks\{58498149-D6D8-4F16-93A3-FC8EBE7360C4} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {DF242E60-DE99-44E4-BC32-EF5B8E22837A} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {E7D4D73F-8A9D-4022-9C03-A138AFF60497} - System32\Tasks\{3C4F1D43-55F3-4828-93E5-8A15C999A716} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {EA025416-6340-4DAA-B2B6-5EBF88467D84} - System32\Tasks\Divx online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {EA186F7A-EF34-4FD0-BC02-D1779FB7C404} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {FB202EBE-37A1-4661-B2E2-FABB1870322F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2009-08-23 18:24 - 2009-08-23 18:24 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-08-14 12:41 - 2008-06-19 23:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 02765312 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2010-06-13 23:31 - 2010-06-13 23:31 - 10373120 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2010-06-13 23:17 - 2010-06-13 23:17 - 00919552 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 00448512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00252928 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2010-02-08 13:48 - 2010-02-08 13:48 - 00685568 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00571904 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00041984 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00030208 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00142336 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00173056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modLCD.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00365056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00287744 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00283136 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00062976 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00054784 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modPing.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00355328 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2008-01-17 18:17 - 2008-01-17 18:17 - 00073782 _____ () C:\Program Files (x86)\Marvell\storage\Apache2\bin\zlib1.dll
2011-08-13 16:09 - 2011-05-20 09:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2011-08-13 16:25 - 2009-12-29 15:52 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2011-08-13 16:25 - 2010-10-04 16:39 - 00183808 _____ () C:\Windows\SysWOW64\APOMngr.DLL

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData:482EE99B1E21CE8C
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\All Users:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Application Data:482EE99B1E21CE8C

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/26/2014 07:56:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" in Zeile  WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/26/2014 06:27:35 PM) (Source: Application Hang) (User: )
Description: Programm opera.exe, Version 12.15.1748.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1d0c

Startzeit: 01cf1abbdae6b1e8

Endzeit: 0

Anwendungspfad: C:\Program Files (x86)\Opera\opera.exe

Berichts-ID: 241926ed-86af-11e3-a63d-08002700acff

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (01/25/2014 07:26:12 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" in Zeile  WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/25/2014 05:51:05 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.


System errors:
=============
Error: (01/26/2014 07:01:41 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/26/2014 07:01:41 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/26/2014 06:03:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/26/2014 06:03:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/25/2014 08:28:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/25/2014 08:28:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/25/2014 05:48:50 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/25/2014 05:48:50 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/25/2014 01:20:29 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/25/2014 01:20:29 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (01/26/2014 07:56:37 PM) (Source: SideBySide)(User: )
Description: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0"c:\program files (x86)\Waves\applications\wlc.exec:\program files (x86)\Waves\applications\WavesQtLibs_4.8.2_Win32_Release\WavesQtLibs_4.8.2_Win32_Release.MANIFEST8

Error: (01/26/2014 06:27:35 PM) (Source: Application Hang)(User: )
Description: opera.exe12.15.1748.01d0c01cf1abbdae6b1e80C:\Program Files (x86)\Opera\opera.exe241926ed-86af-11e3-a63d-08002700acff

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (01/26/2014 06:06:05 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (01/25/2014 08:33:32 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (01/25/2014 07:26:12 PM) (Source: SideBySide)(User: )
Description: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0"c:\program files (x86)\Waves\applications\wlc.exec:\program files (x86)\Waves\applications\WavesQtLibs_4.8.2_Win32_Release\WavesQtLibs_4.8.2_Win32_Release.MANIFEST8

Error: (01/25/2014 05:51:05 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000


==================== Memory info =========================== 

Percentage of memory in use: 13%
Total physical RAM: 24574.42 MB
Available physical RAM: 21242.86 MB
Total Pagefile: 49147.02 MB
Available Pagefile: 45738.41 MB
Total Virtual: 8192 MB
Available Virtual: 8191.72 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:108.62 GB) NTFS
Drive e: (Miami Vice season 5 disc 3) (CDROM) (Total:7.74 GB) (Free:0 GB) UDF
Drive f: (Festplatte 2) (Fixed) (Total:1397.26 GB) (Free:755.96 GB) NTFS
Drive g: (Festplatte 3) (Fixed) (Total:1397.26 GB) (Free:1386.31 GB) NTFS
Drive h: (Volume) (Fixed) (Total:1863.01 GB) (Free:1141.96 GB) NTFS
Drive j: (STUDIO HDD) (Fixed) (Total:465.64 GB) (Free:433.3 GB) FAT32
Drive l: (Dagobert Duck) (Fixed) (Total:2794.39 GB) (Free:2140.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 224 GB) (Disk ID: 2328644B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 004899D1)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 23286443)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 2795 GB) (Disk ID: DCADF932)

Partition: GPT Partition Type
========================================================
Disk: 4 (Size: 466 GB) (Disk ID: 6ACBB774)
Partition 1: (Not Active) - (Size=466 GB) - (Type=0C)

==================== End Of Log ============================

schrauber · 28.01.2014, 15:23

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Michael_ · 29.01.2014, 01:03

Puh, geschafft...
Hier sind alle Logs:

Malwarebytes:

Code:

ATTFilter

 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.28.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Michael :: MICHAEL-PC [Administrator]

Schutz: Aktiviert

29.01.2014 00:38:41
mbam-log-2014-01-29 (00-38-41).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 236651
Laufzeit: 2 Minute(n), 16 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Adw Cleaner:

AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v3.018 - Bericht erstellt am 29/01/2014 um 00:45:47
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Michael - MICHAEL-PC
# Gestartet von : C:\Users\Michael\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\Michael\AppData\LocalLow\boost_interprocess
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\foxydeal.sqlite

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wsconduit__166_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wsconduit__166_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7601.17514


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1842 octets] - [29/01/2014 00:44:42]
AdwCleaner[S0].txt - [1757 octets] - [29/01/2014 00:45:47]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1817 octets] ##########

--- --- ---

JRT:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Ultimate x64
Ran by Michael on 29.01.2014 at  0:56:08,11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\caphyon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\gfiltersvc_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\gfiltersvc_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\searchanonymizer_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\searchanonymizer_rasmancs



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\free video converter"
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{05600E39-BCC3-46E7-83F3-8AABD184CB6D}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1198A982-BD19-48F0-BE66-874E8C0E6D22}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1539E87E-A997-41F5-9AC6-96387B12DA8A}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1A96B615-40DA-494B-8A3C-2E5A9E9AC118}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1B222C46-C2E1-4B93-8705-312C96F2D46B}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1CF8323E-AAC7-41BE-8367-814DC37B127D}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{1D8D6DBF-69F8-4C2D-951B-26AFE40A9340}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{266CD0F9-4EFB-4707-A1C0-0EB0D58B4A0B}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{2A41D571-2542-455E-89E3-DB1FBFA4AE3C}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{2B3A3D23-EB73-4618-94FF-114E510B3F3B}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{2BD0A87C-71B4-409A-8866-E57A651FE204}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{303C996F-CA95-436F-9788-1FF0C0C5E038}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{315FCA5E-064D-4E35-B053-0990A19F42BC}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{33444787-BB28-470C-810E-150DB19605D2}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{3AD10E55-F604-41D0-AADD-87FB9CBD646D}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{3D316BAE-855E-4481-8CCD-195499921409}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{48F06575-B7AA-43D9-B86C-C4E7055668F0}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{4DBC9434-3953-40CC-AEA0-D230A4E63A92}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{566952F4-82E1-4AB5-9678-3FD8EA13DF3A}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{56DC9C54-3A07-4043-A249-598132CC82EB}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{5D46B51B-7FC1-42F2-831E-AD68FDC46C77}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{6678DEEB-FF6B-4336-B7B6-77FF8AA4E3D1}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{67C3531C-5B1E-4E91-AEC9-34045838F849}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{68D850EA-B113-4E3D-B859-DF410FFB1E33}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{6BDF169A-9914-4F28-AD00-ADFD000C55F6}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{7285CA94-4C02-4F6E-985E-F54D8F0F350E}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{74209FE2-2E92-4CDA-8BF3-25D1B722CE60}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{7A65112B-18E2-4692-9718-52D66496B751}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{7C85D50E-8878-4F85-9C82-BFB95C364E23}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{7E998B86-C57E-4348-B525-6F2689721E29}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{8E0C390C-BDC6-4757-B3E2-DFBE52C40286}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{9AFB3727-D94D-4827-A5C6-F424FF339BA5}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{9C3EEEEB-DCA7-4912-A677-7B0E2D48055A}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{9FBEDEB3-170E-4EFA-A600-DA5570AC8D20}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{A0881A94-5A22-4433-9670-32DB379FD0CD}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{A807FD3A-AAE7-4D9D-8CE5-984F766BFA1E}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{A859FEFF-BB18-4024-ABDD-DE410D7185F1}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{ACE1CDCD-F95A-4C34-9E79-9D9C427449E4}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{B6F5A14B-AD14-4976-9841-C666CF857781}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{BEE20D99-2EA2-44D4-9C3C-E4753AE54CC0}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{C687DF7C-00AB-4043-89EE-13739C670165}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{CB273EA8-52D7-4346-A689-0F64D42D7C9B}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{D137E4CA-E89E-40FE-87FA-B6D5C7E40D21}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{D1854571-4CB8-440B-8C37-72269D7EF8D9}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{DC46EF9E-4989-466B-B204-7A5AFBE9D690}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{E62D1A23-0979-4C62-AD00-D67533F0C105}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{E6BC9F29-2CF1-4038-A5AF-7A9280864371}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{EE626AF9-45D8-4576-A49D-4842B017C262}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F011FC02-D42B-4D09-98A5-864B99A1C251}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F19107CA-F091-4BDB-AAFE-4CDABF672CA4}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F44547E4-8156-41D4-89F0-8CA3AD3F5B24}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F52B8914-D1AF-4DA9-B673-82A63087CC91}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F7061050-91AA-4CED-91B4-D9FB68071D21}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{F7A7BBC9-CDED-4EEB-9FB9-471F9C8651F6}
Successfully deleted: [Empty Folder] C:\Users\Michael\appdata\local\{FD0410CF-824F-4266-8F29-2670F0C07532}



~~~ FireFox

Emptied folder: C:\Users\Michael\AppData\Roaming\mozilla\firefox\profiles\ypos0c76.default-1362971362316\minidumps [9 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.01.2014 at  0:57:39,30
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014 02
Ran by Michael (administrator) on MICHAEL-PC on 29-01-2014 00:59:18
Running from C:\Users\Michael\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Marvell) C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
() C:\Windows\System32\JulaPAN.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ6.5\ICQ.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(nerds.de) C:\Program Files (x86)\nerds.de\LoopBe30\loough.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
() C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtblfs.exe
() C:\Users\Michael\Desktop\FRST64.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [JulaPAN.exe] - C:\Windows\system32\JulaPAN.exe [526368 2011-08-13] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [MSUTray] - C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe [1202216 2011-02-25] ()
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [VolPanel] - C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [CTxfiHlp] - CTXFIHLP.EXE
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKCU\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ6.5\ICQ.exe [172792 2010-01-03] (ICQ, LLC.)
HKU\UpdatusUser\...\Run: [ICQ] - "C:\Program Files (x86)\ICQ7.6\ICQ.exe" silent loginmode=4
HKU\UpdatusUser\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\UpdatusUser\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\UpdatusUser\...\RunOnce: [CTAutoUpdate] - C:\Program Files (x86)\Creative\Shared Files\Software Update\AutoUpdate.exe [623416 2009-06-19] (Creative Technology Ltd)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB1F21670CC59CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Set UA String (BHO) - {3CE56DB6-FCBE-4422-9454-63C354178985} - C:\Program Files (x86)\UAPick\UABtn.dll (Bayden Systems)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
Toolbar: HKLM-x32 - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} hxxp://download.flatcast.net/objects/NpFv530.dll
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Windows\DOWNLO~1\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Michael\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{5F5723BB-4560-492E-BFED-8CB723657610}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{6A7FA676-C90C-40CA-A051-6D354C23DA10}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{70BE1035-F11C-49D2-B43F-0BE63533E77D}.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\ich@maltegoetz.de [2013-12-11]
FF Extension: FireShot - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2013-12-07]
FF Extension: Google Translator for Firefox - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\translator@zoli.bod.xpi [2013-05-03]
FF Extension: Quick Translator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi [2013-05-03]
FF Extension: ImTranslator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2013-05-03]
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Kaspersky Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-04-08]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.462_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Flatcast Viewer Plugin 5.3.0.784) - C:\Program Files (x86)\Mozilla Firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Michael\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-23]
CHR Extension: (Google-Suche) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-23]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2011-12-23]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2011-12-23]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-16]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-08]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-23]
CHR Extension: (Anti-Banner) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2011-12-23]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\urladvisor.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\virtkbd.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\ab.crx [2011-08-05]

==================== Services (Whitelisted) =================

S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [570368 2011-01-14] ()
R2 MSUWebService; C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe [24645 2010-09-02] (Apache Software Foundation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143552 2012-02-09] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2011-01-14] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\System32\DRIVERS\Xeno7x64.sys [157288 2011-01-14] (Bigfoot Networks, Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-12-04] (DT Soft Ltd)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group)
S3 iLokDrvr; C:\Windows\System32\DRIVERS\iLokDrvr.sys [25808 2013-04-11] ()
R1 Jula.sys; C:\Windows\System32\DRIVERS\Jula.sys [58400 2011-08-13] ()
R3 JulaWDM.sys; C:\Windows\System32\DRIVERS\JulaWDM.sys [43552 2011-08-13] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2011-03-04] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2011-03-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [637272 2012-10-29] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 LoopBe30; C:\Windows\System32\drivers\loopbe30.sys [16896 2011-02-26] (nerds.de)
R3 Mv_Process; c:\windows\syswow64\mv_process.sys [14376 2011-02-25] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-02-09] (TuneUp Software)
R1 vmm; C:\Windows\system32\Treiber\vmm.sys [294232 2012-04-13] (Microsoft Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 00:59 - 2014-01-29 00:59 - 00024222 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-29 00:52 - 2014-01-29 00:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-29 00:44 - 2014-01-29 00:45 - 00000000 ____D C:\AdwCleaner
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Malwarebytes
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-28 01:22 - 2014-01-29 00:35 - 00000000 ____D C:\Users\Michael\Desktop\Big Room Essentials Pack Vol.1
2014-01-27 21:44 - 2014-01-27 22:08 - 00000000 ____D C:\Users\Michael\Desktop\Projekte
2014-01-26 22:50 - 2014-01-26 22:50 - 00000000 ____D C:\FRST
2014-01-15 15:40 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:40 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:40 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-08 18:27 - 2014-01-09 18:28 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge
2013-12-30 11:02 - 2013-12-30 11:06 - 00000000 ____D C:\Users\Michael\Desktop\Shocking Banks

==================== One Month Modified Files and Folders =======

2014-01-29 00:59 - 2014-01-29 00:59 - 00024222 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-29 00:59 - 2011-08-13 14:40 - 01328337 _____ C:\Windows\WindowsUpdate.log
2014-01-29 00:59 - 2011-02-24 08:21 - 00203776 _____ C:\Windows\SysWOW64\freqdb.db
2014-01-29 00:56 - 2011-08-13 16:14 - 00204464 _____ C:\Windows\SysWOW64\mvaccelerator.log
2014-01-29 00:55 - 2012-04-10 00:29 - 00080434 _____ C:\Windows\setupact.log
2014-01-29 00:55 - 2011-08-17 12:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2014-01-29 00:55 - 2011-08-13 16:00 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-29 00:55 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-29 00:53 - 2011-12-23 16:47 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job
2014-01-29 00:53 - 2011-12-23 16:47 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job
2014-01-29 00:53 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 00:53 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 00:52 - 2014-01-29 00:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-29 00:46 - 2012-04-24 15:01 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-29 00:45 - 2014-01-29 00:44 - 00000000 ____D C:\AdwCleaner
2014-01-29 00:40 - 2009-07-14 18:58 - 23087112 _____ C:\Windows\system32\perfh007.dat
2014-01-29 00:40 - 2009-07-14 18:58 - 07443536 _____ C:\Windows\system32\perfc007.dat
2014-01-29 00:40 - 2009-07-14 06:13 - 00005222 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Malwarebytes
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-29 00:35 - 2014-01-28 01:22 - 00000000 ____D C:\Users\Michael\Desktop\Big Room Essentials Pack Vol.1
2014-01-27 22:08 - 2014-01-27 21:44 - 00000000 ____D C:\Users\Michael\Desktop\Projekte
2014-01-27 22:08 - 2013-12-23 20:46 - 00000000 ____D C:\Users\Michael\Desktop\Wichtig
2014-01-27 21:44 - 2013-09-28 17:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SongManager
2014-01-26 22:50 - 2014-01-26 22:50 - 00000000 ____D C:\FRST
2014-01-26 21:12 - 2012-07-13 15:50 - 00000000 ____D C:\Users\Michael\Desktop\Linkverzeichnis
2014-01-26 21:10 - 2011-08-14 12:29 - 00000000 ____D C:\Users\Michael\AppData\Roaming\FileZilla
2014-01-24 20:27 - 2013-10-17 21:20 - 00001982 _____ C:\Users\Michael\Desktop\Vipzone Samples Wishlist.txt
2014-01-15 22:24 - 2009-07-14 05:45 - 00389256 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settingsbkup.sfm
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settings.sfm
2014-01-15 17:11 - 2009-07-14 03:34 - 00001016 _____ C:\Windows\win.ini
2014-01-15 17:10 - 2013-08-14 09:06 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 17:09 - 2012-02-01 15:04 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 15:35 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-13 02:52 - 2013-10-14 22:40 - 00522182 _____ C:\Users\Michael\Desktop\2 Vibez - Just 4 You.flp
2014-01-09 18:28 - 2014-01-08 18:27 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-09 17:59 - 2013-11-06 01:52 - 01101195 _____ C:\Users\Michael\Desktop\Feel much Better.flp
2014-01-09 17:58 - 2013-12-06 19:19 - 00624048 _____ C:\Users\Michael\Desktop\HU Test.flp
2014-01-09 17:46 - 2013-12-14 19:09 - 01622779 _____ C:\Users\Michael\Desktop\Next House Single.flp
2014-01-09 17:44 - 2013-11-22 18:47 - 03201863 _____ C:\Users\Michael\Desktop\Fucking Fresh.flp
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge
2014-01-07 02:51 - 2012-02-22 16:11 - 00000000 ____D C:\Program Files\VstPlugins
2014-01-02 02:09 - 2013-12-28 19:03 - 01091802 _____ C:\Users\Michael\Desktop\The Hits.flp
2013-12-31 10:46 - 2012-06-06 02:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-31 00:47 - 2012-09-03 22:37 - 00000000 ____D C:\Users\Michael\Desktop\Tuts
2013-12-30 23:07 - 2013-12-02 20:12 - 00573133 _____ C:\Users\Michael\Desktop\Rob & Chris durchgemacht.flp
2013-12-30 19:19 - 2013-10-15 14:08 - 00393056 _____ C:\Users\Michael\Desktop\Oldschool.flp
2013-12-30 11:06 - 2013-12-30 11:02 - 00000000 ____D C:\Users\Michael\Desktop\Shocking Banks

Some content of TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 19:45

==================== End Of Log ============================

--- --- ---

FRST Add.

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2014 02
Ran by Michael at 2014-01-29 00:59:36
Running from C:\Users\Michael\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Disabled - Up to date) {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
AS: Kaspersky Internet Security (Disabled - Up to date) {95CBD341-38DB-14AC-AF6A-08054B41A339}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {1691B380-548E-1A7A-BE85-9A42CE15AEFF}

==================== Installed Programs ======================

µTorrent (x32 Version: 1.6 - )
7-Zip 9.20 (x32 Version:  - )
AC3Filter 1.63b (x32 Version: 1.63b - Alexander Vigovsky)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (x32 Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.3.633 - Adobe Systems, Inc.)
Alldj DVD Ripper Platium 4.0 (x32 Version:  - MasterSoft, Inc.)
ANALOG87 SD-GATE (x32) (x32 Version: 1.1.5 - eaReckon)
Antares Autotune Evo VST RTAS v6.0.9 (x32 Version:  - )
Apple Application Support (x32 Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
appleJuice Client (x32 Version: 0.31.149.110 - applejuice.de)
Ashampoo Burning Studio 9.21 (x32 Version: 9.2.1 - ashampoo GmbH & Co. KG)
ASIO4ALL (x32 Version: 2.10 - Michael Tippach)
AtoD SuperSaw Plus VSTi v1.0 (x32 Version:  - )
Audacity 1.2.6 (x32 Version:  - )
AVS Audio Converter version 7 (x32 Version:  - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (x32 Version:  - Online Media Technologies Ltd.)
AVS Video Converter 6 (x32 Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (x32 Version:  - Online Media Technologies Ltd.)
Azureus (x32 Version: 2.5.0.4 - )
Bayden UAPick (x32 Version:  - )
Bigfoot Networks Killer Network Manager (Version: 6.0.1.133 - Bigfoot Networks) Hidden
Bigfoot Networks Killer Network Manager (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Camel Audio Alchemy (x32 Version: 1.55.0 - Camel Audio)
Camel Audio CamelCrusher (x32 Version: 1.01.0 - Camel Audio)
CCleaner (Version: 3.17 - Piriform)
Creative Audio-Systemsteuerung (x32 Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (x32 Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (x32 Version: 1.02 - Creative Technology Limited)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (x32 Version: 4.40.2.0131 - DT Soft Ltd)
db audioware Sidechain Gate VST v1.1.0 (x32 Version:  - )
Deckadance 2 (x32 Version: 2.0 - Image-Line)
Defraggler (Version: 2.09 - Piriform)
discoDSP Corona Demo (x32 Version: 4.7 - discoDSP)
discoDSP Discovery Pro (x32 Version: 3 - discoDSP)
Diversion VST version 1.29 (Version: 1.29 - )
DivX-Setup (x32 Version: 2.6.1.8 - DivX, LLC)
Dolby Digital Live Pack (x32 Version: 3.02 - Creative Technology Limited)
DTS Connect Pack (x32 Version: 1.00 - Creative Technology Limited)
DUNE Demo 1.4 (x32 Version:  - Synapse Audio Software)
Effectrix (x32 Version: 1.0 - Sugar Bytes)
ElectraX demo (Version:  - Tone2)
Emagic Logic Audio Platinum 5.5.1 (x32 Version:  - )
FabFilter Pro-G 1.13 (x32 Version:  - )
ffdshow (remove only) (x32 Version:  - )
FileZilla Client 3.2.7.1 (x32 Version: 3.2.7.1 - )
FL Studio 10 (x32 Version:  - Image-Line)
foobar2000 v1.1.2 (x32 Version: 1.1.2 - Peter Pawlowski)
Free CD Ripper V1.9 (x32 Version: 1.9.0.0 - Koyote Soft)
Free Video Converter V 3.1 (x32 Version: 3.1.0.0 - Koyote Soft)
Free Video Dub version 2.0.11.627 (x32 Version: 2.0.11.627 - DVDVideoSoft Ltd.)
Free Video to MP3 Converter version 5.0.15.706 (x32 Version: 5.0.15.706 - DVDVideoSoft Ltd.)
Free Videos To DVD V 3.2.0 (x32 Version: 3.2.0.0 - Koyote soft)
FruityLoops v3.56 Full (x32 Version:  - )
GForce - Oddity (x32 Version:  - )
GIMP 2.6.11 (x32 Version: 2.6.11 - The GIMP Team)
Google Chrome (HKCU Version: 32.0.1700.76 - Google Inc.)
GTA Vice City - Deluxe (x32 Version:  - )
Hardcore (x32 Version:  - Image-Line bvba)
HD Tune 2.55 (x32 Version:  - EFD Software)
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
HyperCam 2 (x32 Version:  - )
ICQ 6.5 Build #2024 Banner Remover 1.0 (x32 Version:  - murb.com)
ICQ6.5 (x32 Version: 6.5 - ICQ)
IL Download Manager (x32 Version:  - Image-Line)
IL Shared Libraries (x32 Version:  - Image-Line)
ImgBurn (x32 Version: 2.5.6.0 - LIGHTNING UK!)
Intel(R) Rapid Storage Technology (x32 Version: 10.6.0.1002 - Intel Corporation)
iTunes (Version: 11.0.1.12 - Apple Inc.)
iZotope Nectar (x32 Version: 1.12 - iZotope, Inc.)
iZotope Vinyl (x32 Version: 1.61 - iZotope, Inc.)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (64-bit) (Version: 6.0.260 - Oracle)
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab) Hidden
KORG M1 Le (x32 Version: 1.0.4 - KORG Inc.)
LMMS 0.4.13 (x32 Version: 0.4.13 - LMMS Developers)
LoopBe30 - Internal MIDI Ports (x32 Version:  - )
marvell 91xx driver (x32 Version: 1.1.0.6 - Marvell)
Marvell Storage Utility V4 (x32 Version: 4.1.0.1915 - Marvell)
Mercury 1 (x32 Version:  - )
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Virtual PC 2007 (Version: 6.0.156.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)
Mp3tag v2.47b (x32 Version: v2.47b - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron)
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron) Hidden
Native Instruments FM7 VSTi DXI RTAS v1.1.3.4 (x32 Version:  - )
Native Instruments Kontakt 5 (Version: 5.1.0.6066 - Native Instruments) Hidden
Native Instruments Kontakt 5 (x32 Version:  - Native Instruments)
Native Instruments Massive (Version: 1.1.5.1967 - Native Instruments) Hidden
Native Instruments Massive (x32 Version:  - Native Instruments)
Netscape (7.1) (x32 Version:  - )
nLite 1.4.9.1 (x32 Version: 1.4.9.1 - Dino Nuhagic (nuhi))
No23 Recorder (x32 Version: 2.1.0.3 - No23)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.115.743 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0213 (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 314.22 (Version: 314.22 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation) Hidden
Ohm Force - Ohmicide VST (x32 Version:  - )
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
Opera 12.15 (x32 Version: 12.15.1748 - Opera Software ASA)
Oracle VM VirtualBox 3.2.10 (Version: 3.2.10 - Oracle Corporation)
Orion 8 DEMO (x32 Version:  - Synapse Audio Software)
PACE License Support Win64 (Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (x32 Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.)
Paint.NET v3.5.8 (Version: 3.58.0 - dotPDN LLC)
Paragon Partition Manager™ 11 Professional (x32 Version: 90.00.0003 - Paragon Software)
Phase 5 HTML-Editor (x32 Version: 5.6.2.3 - Systemberatung Schommer)
Preston Gate 1.2.0.0 (x32 Version:  - One Small Clue)
PSPad editor (x32 Version:  - Jan Fiala)
Quick Media Converter (HKCU Version:  - )
ReFX JunoX2 VSTi v1.51 (x32 Version:  - )
reFX Nexus VSTi RTAS v2.2.0 (x32 Version:  - )
reFX Vanguard VSTi RTAS v1.8.0 (x32 Version:  - )
Relab LX480 Lite VST v1.0 (x32 Version:  - )
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rob Papen BLUE Version 1.9.0 Demo (x32 Version:  - RPCX)
Sawer (x32 Version:  - Image-Line)
SINUS GoldenGate v1.2 VST (x32 Version:  - )
SIW version 2011.10.29 (x32 Version: 2011.10.29 - Topala Software Solutions)
Softube FET Compressor VST RTAS v1.0.3 (x32 Version:  - )
Softube Tube-Tech CL 1B VST RTAS v1.0.3 (x32 Version:  - )
Sonalksis Plug-in Manager 3.01 (x32 Version:  - Sienda New Media Technologies GmbH)
Sonic Charge Cyclone (x32 Version: 1.0.0.5 - NuEdge Development)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (x32 Version:  - Team AiR 2007)
Sound Blaster X-Fi (x32 Version: 1.0 - Creative Technology Limited)
Soundforum Synth (x32 Version:  - )
SSL LMC-1 v1.0 (x32 Version: v1.0 - Solid State Logic)
SSL X-ORCISM v1.1 (x32 Version: v1.1 - Solid State Logic)
SuperWave Tarkus (x32 Version: 1.5 - SuperWave)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sylenth1 v2.20 (x32 Version:  - )
SynthMaster 2.6 VST/VSTi/RTAS DEMO (x64) version 2.6.7 (x32 Version: 2.6.7 - KV331 Audio)
TerraTec Komplexer VSTi 1.0.3 (x32 Version:  - )
TheOne v.0.3 (x32 Version:  - Scene Coders - We reflect the Scene!)
TubeOhm Alpha-Ray (x32 Version:  - )
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software)
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Video Download Capture V4.6.9 (x32 Version: 4.6.9 - Apowersoft)
Virtual DJ Pro Full - Atomix Productions (x32 Version:  - )
VLC media player 1.1.6 (x32 Version: 1.1.6 - VideoLAN)
Waves Complete V9r11 (x32 Version: 9.1.11 - Waves)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR archiver (x32 Version:  - )
WinSCP 4.2.9 (x32 Version: 4.2.9 - Martin Prikryl)
XILS-lab Synthix v1.0.1 (x32 Version:  - )
Xvid Video Codec (x32 Version: 1.3.2 - Xvid Team)
YAMAHA AN1xEdit (x32 Version:  - )
Youtube Downloader HD v. 2.6 (x32 Version:  - YoutubeDownloaderHD.com)

==================== Restore Points  =========================

14-01-2014 14:38:09 Windows Update
15-01-2014 16:09:19 Windows Update
19-01-2014 18:00:08 Windows-Sicherung
21-01-2014 13:31:15 Windows Update
24-01-2014 16:59:12 Windows Update
26-01-2014 18:00:07 Windows-Sicherung
28-01-2014 10:24:47 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-12-10 00:35 - 00001140 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	secure.tune-up.com
127.0.0.1 im.adtech.de
127.0.0.1 adserver.adtech.de
127.0.0.1 adtech.de
127.0.0.1 ar.atwola.com
127.0.0.1 atwola.com
127.0.0.1 adserver.71i.de
127.0.0.1 adicqserver.71i.de
127.0.0.1 71i.de
174.142.65.65 wolke.skynet
174.142.65.65 announce.mine.nu
174.142.61.140 skynet.wolke


==================== Scheduled Tasks (whitelisted) =============

Task: {0D097214-E35D-4205-8933-EBCCB584D8E0} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {26F82BAB-CEDA-413A-BE4C-DD46FAF9C34C} - System32\Tasks\{A6310BBD-C6E3-4C91-ACFD-7EDAC05559EA} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {2D31B9CD-CCE4-455E-9536-18C6714D5E22} - System32\Tasks\{E99794BB-BDB3-4A4F-A479-C3243C513134} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {381065BA-330F-45AF-B2DD-573EBAF24621} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {393688AF-F45A-4FC5-A547-C668183AB85E} - System32\Tasks\Google Updater and Installer => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {51B5E5BD-461D-4141-A862-FBBCB7ABE6D6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {592296FF-75EB-40BF-A9CD-5FB61D39AEEC} - System32\Tasks\{907A584F-54BB-419A-A3C6-05C9FEB32B64} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {8DC25586-38DC-465A-B4A2-5A5C3BC4ED1B} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe [2012-02-09] (TuneUp Software)
Task: {AE5CA518-2326-46D2-808D-8A96D2427559} - System32\Tasks\{7C4F6FD0-2E14-40BB-94DF-77F8F8F7CA75} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {B0B0DCF0-F1EA-4E93-852D-434D6824C89B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B1F52ECF-3076-4C8F-AAA2-3DF0CB3CF48B} - System32\Tasks\{D4611C16-6D0B-4B1F-98CA-BED8730E1D52} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {D12C081C-509C-4427-B552-EBE4301991C4} - System32\Tasks\{02905D1D-ABE5-4CEF-8D3A-457CFFE5DBB3} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {D63B5A9D-6577-41F3-BC78-EC940A254BBB} - System32\Tasks\{58498149-D6D8-4F16-93A3-FC8EBE7360C4} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {DF242E60-DE99-44E4-BC32-EF5B8E22837A} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {E7D4D73F-8A9D-4022-9C03-A138AFF60497} - System32\Tasks\{3C4F1D43-55F3-4828-93E5-8A15C999A716} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {EA025416-6340-4DAA-B2B6-5EBF88467D84} - System32\Tasks\Divx online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {EA186F7A-EF34-4FD0-BC02-D1779FB7C404} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {FB202EBE-37A1-4661-B2E2-FABB1870322F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-06-13 23:16 - 2010-06-13 23:16 - 02765312 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2010-06-13 23:31 - 2010-06-13 23:31 - 10373120 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2010-06-13 23:17 - 2010-06-13 23:17 - 00919552 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 00448512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00252928 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2010-02-08 13:48 - 2010-02-08 13:48 - 00685568 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00571904 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00041984 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00030208 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00142336 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00173056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modLCD.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00365056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00287744 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00283136 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00062976 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00054784 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modPing.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00355328 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2009-08-23 18:24 - 2009-08-23 18:24 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-08-14 12:41 - 2008-06-19 23:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData:482EE99B1E21CE8C
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\All Users:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Application Data:482EE99B1E21CE8C

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (01/29/2014 00:57:47 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/29/2014 00:57:47 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 14%
Total physical RAM: 24574.42 MB
Available physical RAM: 20969.81 MB
Total Pagefile: 49147.02 MB
Available Pagefile: 45542.76 MB
Total Virtual: 8192 MB
Available Virtual: 8191.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:111.03 GB) NTFS
Drive f: (Festplatte 2) (Fixed) (Total:1397.26 GB) (Free:755.96 GB) NTFS
Drive g: (Festplatte 3) (Fixed) (Total:1397.26 GB) (Free:1386.31 GB) NTFS
Drive h: (Volume) (Fixed) (Total:1863.01 GB) (Free:1141.96 GB) NTFS
Drive j: (STUDIO HDD) (Fixed) (Total:465.64 GB) (Free:433.3 GB) FAT32
Drive l: (Dagobert Duck) (Fixed) (Total:2794.39 GB) (Free:2140.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 224 GB) (Disk ID: 2328644B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 004899D1)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 23286443)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 466 GB) (Disk ID: 6ACBB774)
Partition 1: (Not Active) - (Size=466 GB) - (Type=0C)

========================================================
Disk: 4 (Size: 2795 GB) (Disk ID: DCADF932)

Partition: GPT Partition Type
========================================================
Disk: 5 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: F0A78F87)
Partition 1: (Not Active) - (Size=-198626508800) - (Type=07 NTFS)

==================== End Of Log ============================

Hoffe das hilft dir weiter...

lg
Michael

schrauber · 29.01.2014, 17:04

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Michael_ · 01.02.2014, 03:05

Hi, sorry für die Lange wartezeit...

ESET:

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3451c381d4959541a356a1042103fab9
# engine=16874
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-31 04:44:47
# local_time=2014-01-31 05:44:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1285 16777214 100 98 0 87467437 0 0
# compatibility_mode=5893 16776573 100 94 0 142773337 0 0
# scanned=292737
# found=6
# cleaned=0
# scan_time=11388
sh=BB7ECB4BE3B622E44F5221AFD37B7A5A97D260B0 ft=1 fh=6d77fea3b606a2bf vn="Win64/Agent.BL trojan" ac=I fn="C:\_OTL\MovedFiles\06152013_014011\C_Windows\SysNative\wmi64.exe"
sh=BC15467CB7AE1587CB2F1C6DB2EDEEEFB4702861 ft=0 fh=0000000000000000 vn="a variant of Java/Agent.DU trojan" ac=I fn="F:\MICHAEL-PC\Backup Set 2012-04-15 190000\Backup Files 2012-04-15 190000\Backup files 2.zip"
sh=142CA440A6AC9A1D95F916F4A28BF29C1F481A6F ft=0 fh=0000000000000000 vn="a variant of Java/Agent.DU trojan" ac=I fn="F:\MICHAEL-PC\Backup Set 2012-06-03 225714\Backup Files 2012-06-03 225714\Backup files 11.zip"
sh=9579908852DEFAEF806BC178E088ED1437D573CD ft=0 fh=0000000000000000 vn="a variant of Java/Agent.DU trojan" ac=I fn="F:\MICHAEL-PC\Backup Set 2012-06-17 190001\Backup Files 2012-06-17 190001\Backup files 11.zip"
sh=0C2050F751AF1EB1854B0EA8E307F60252D06CF5 ft=0 fh=0000000000000000 vn="a variant of Java/Agent.DU trojan" ac=I fn="F:\MICHAEL-PC\Backup Set 2012-07-15 190001\Backup Files 2012-07-15 190001\Backup files 11.zip"
sh=44C56A6B4DE6647244EF3D886BF3A214E59AB392 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="F:\MICHAEL-PC\Backup Set 2013-03-24 190001\Backup Files 2013-06-09 190001\Backup files 1.zip"

Zum ESET muss man sagen die 5 von 6 funde stammen aus einem alten Windows Backup das ich nicht mehr nutze wenn ich das richtig sehe...

Security Check:

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.79  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 TuneUp Utilities 2012   
 TuneUp Utilities Language Pack (en-US) 
 Java(TM) 6 Update 30  
 Java 7 Update 25  
 Java version out of Date! 
 Adobe Flash Player 11.9.900.170  
 Adobe Reader 10.1.3 Adobe Reader out of Date!  
 Mozilla Firefox (26.0) 
 Mozilla Thunderbird (24.2.0) 
 Google Chrome 32.0.1700.102  
 Google Chrome 32.0.1700.76  
````````Process Check: objlist.exe by Laurent````````  
 Kaspersky Lab Kaspersky Internet Security 2012 x64 klwtblfs.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

FRST:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by Michael (administrator) on MICHAEL-PC on 31-01-2014 18:28:00
Running from C:\Users\Michael\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Marvell) C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apache Software Foundation) C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
() C:\Windows\System32\JulaPAN.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ6.5\ICQ.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(nerds.de) C:\Program Files (x86)\nerds.de\LoopBe30\loough.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
() C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TUDefragBackend64.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [JulaPAN.exe] - C:\Windows\system32\JulaPAN.exe [526368 2011-08-13] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [MSUTray] - C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe [1202216 2011-02-25] ()
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [VolPanel] - C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [CTxfiHlp] - CTXFIHLP.EXE
Winlogon\Notify\klogon: C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
HKCU\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ6.5\ICQ.exe [172792 2010-01-03] (ICQ, LLC.)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe -update activex [839560 2013-12-10] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\Run: [ICQ] - "C:\Program Files (x86)\ICQ7.6\ICQ.exe" silent loginmode=4
HKU\UpdatusUser\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\UpdatusUser\...\Run: [Xvid] - C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\UpdatusUser\...\RunOnce: [CTAutoUpdate] - C:\Program Files (x86)\Creative\Shared Files\Software Update\AutoUpdate.exe [623416 2009-06-19] (Creative Technology Ltd)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB1F21670CC59CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Set UA String (BHO) - {3CE56DB6-FCBE-4422-9454-63C354178985} - C:\Program Files (x86)\UAPick\UABtn.dll (Bayden Systems)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
Toolbar: HKLM-x32 - No Name - {6E6E744E-4D20-4ce3-9A7A-26DFFFE22F68} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} hxxp://download.flatcast.net/objects/NpFv530.dll
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 15 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 15 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Michael\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Windows\DOWNLO~1\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Michael\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{5F5723BB-4560-492E-BFED-8CB723657610}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{6A7FA676-C90C-40CA-A051-6D354C23DA10}.xml
FF SearchPlugin: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\searchplugins\{70BE1035-F11C-49D2-B43F-0BE63533E77D}.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\ich@maltegoetz.de [2013-12-11]
FF Extension: FireShot - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2014-01-31]
FF Extension: Google Translator for Firefox - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\translator@zoli.bod.xpi [2013-05-03]
FF Extension: Quick Translator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi [2013-05-03]
FF Extension: ImTranslator - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\ypos0c76.default-1362971362316\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2013-05-03]
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Kaspersky Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru [2011-08-17]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-04-08]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Michael\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.462_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Flatcast Viewer Plugin 5.3.0.784) - C:\Program Files (x86)\Mozilla Firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Michael\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-23]
CHR Extension: (Google-Suche) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-23]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2011-12-23]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2011-12-23]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-16]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-08]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-23]
CHR Extension: (Anti-Banner) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2011-12-23]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\urladvisor.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\virtkbd.crx [2011-08-05]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ChromeExt\ab.crx [2011-08-05]

==================== Services (Whitelisted) =================

S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [206448 2012-10-29] (Kaspersky Lab ZAO)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [570368 2011-01-14] ()
R2 MSUWebService; C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe [24645 2010-09-02] (Apache Software Foundation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143552 2012-02-09] (TuneUp Software)

==================== Drivers (Whitelisted) ====================

R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R3 BfEdge7x64; C:\Windows\System32\DRIVERS\Edge7x64.sys [31336 2011-01-14] (Bigfoot Networks, Inc.)
R3 BFN7x64; C:\Windows\System32\DRIVERS\Xeno7x64.sys [157288 2011-01-14] (Bigfoot Networks, Inc.)
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-12-04] (DT Soft Ltd)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group)
S3 iLokDrvr; C:\Windows\System32\DRIVERS\iLokDrvr.sys [25808 2013-04-11] ()
R1 Jula.sys; C:\Windows\System32\DRIVERS\Jula.sys [58400 2011-08-13] ()
R3 JulaWDM.sys; C:\Windows\System32\DRIVERS\JulaWDM.sys [43552 2011-08-13] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2011-03-04] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2011-03-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [637272 2012-10-29] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 LoopBe30; C:\Windows\System32\drivers\loopbe30.sys [16896 2011-02-26] (nerds.de)
R3 Mv_Process; c:\windows\syswow64\mv_process.sys [14376 2011-02-25] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-02-09] (TuneUp Software)
R1 vmm; C:\Windows\system32\Treiber\vmm.sys [294232 2012-04-13] (Microsoft Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-31 18:28 - 2014-01-31 18:28 - 00024517 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-31 18:27 - 2014-01-31 18:27 - 02079744 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2014-01-31 02:28 - 2014-01-31 02:28 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-29 00:52 - 2014-01-29 00:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-29 00:44 - 2014-01-29 00:45 - 00000000 ____D C:\AdwCleaner
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Malwarebytes
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-28 01:22 - 2014-01-31 18:27 - 00000000 ____D C:\Users\Michael\Desktop\Big Room Essentials Pack Vol.1
2014-01-27 21:44 - 2014-01-30 04:21 - 00000000 ____D C:\Users\Michael\Desktop\Projekte
2014-01-26 22:50 - 2014-01-31 18:28 - 00000000 ____D C:\FRST
2014-01-15 15:40 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:40 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:40 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:40 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-08 18:27 - 2014-01-09 18:28 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge

==================== One Month Modified Files and Folders =======

2014-01-31 18:28 - 2014-01-31 18:28 - 00024517 _____ C:\Users\Michael\Desktop\FRST.txt
2014-01-31 18:28 - 2014-01-26 22:50 - 00000000 ____D C:\FRST
2014-01-31 18:28 - 2011-02-24 08:21 - 00205824 _____ C:\Windows\SysWOW64\freqdb.db
2014-01-31 18:27 - 2014-01-31 18:27 - 02079744 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2014-01-31 18:27 - 2014-01-28 01:22 - 00000000 ____D C:\Users\Michael\Desktop\Big Room Essentials Pack Vol.1
2014-01-31 18:08 - 2011-08-13 14:40 - 01578754 _____ C:\Windows\WindowsUpdate.log
2014-01-31 17:53 - 2011-12-23 16:47 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job
2014-01-31 17:46 - 2012-04-24 15:01 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-31 02:28 - 2014-01-31 02:28 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-31 00:53 - 2011-12-23 16:47 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job
2014-01-30 04:21 - 2014-01-27 21:44 - 00000000 ____D C:\Users\Michael\Desktop\Projekte
2014-01-30 01:59 - 2011-08-17 12:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2014-01-30 01:51 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-30 01:51 - 2009-07-14 05:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-30 01:49 - 2009-07-14 18:58 - 23152864 _____ C:\Windows\system32\perfh007.dat
2014-01-30 01:49 - 2009-07-14 18:58 - 07465352 _____ C:\Windows\system32\perfc007.dat
2014-01-30 01:49 - 2009-07-14 06:13 - 00005222 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-30 01:44 - 2012-04-10 00:29 - 00080602 _____ C:\Windows\setupact.log
2014-01-30 01:44 - 2011-08-13 16:14 - 00204932 _____ C:\Windows\SysWOW64\mvaccelerator.log
2014-01-30 01:44 - 2011-08-13 16:00 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-30 01:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-29 04:15 - 2013-11-30 20:28 - 00000522 _____ C:\Users\Michael\Desktop\TODO HEUTE.txt
2014-01-29 00:52 - 2014-01-29 00:52 - 00000000 ____D C:\Windows\ERUNT
2014-01-29 00:45 - 2014-01-29 00:44 - 00000000 ____D C:\AdwCleaner
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Malwarebytes
2014-01-29 00:37 - 2014-01-29 00:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-27 22:08 - 2013-12-23 20:46 - 00000000 ____D C:\Users\Michael\Desktop\Wichtig
2014-01-27 21:44 - 2013-09-28 17:43 - 00000000 ____D C:\Users\Michael\AppData\Roaming\SongManager
2014-01-26 21:12 - 2012-07-13 15:50 - 00000000 ____D C:\Users\Michael\Desktop\Linkverzeichnis
2014-01-26 21:10 - 2011-08-14 12:29 - 00000000 ____D C:\Users\Michael\AppData\Roaming\FileZilla
2014-01-24 20:27 - 2013-10-17 21:20 - 00001982 _____ C:\Users\Michael\Desktop\Vipzone Samples Wishlist.txt
2014-01-15 22:24 - 2009-07-14 05:45 - 00389256 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settingsbkup.sfm
2014-01-15 17:11 - 2013-06-05 11:51 - 00001080 _____ C:\Windows\system32\settings.sfm
2014-01-15 17:11 - 2009-07-14 03:34 - 00001016 _____ C:\Windows\win.ini
2014-01-15 17:10 - 2013-08-14 09:06 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 17:09 - 2012-02-01 15:04 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 15:35 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-13 02:52 - 2013-10-14 22:40 - 00522182 _____ C:\Users\Michael\Desktop\2 Vibez - Just 4 You.flp
2014-01-09 18:28 - 2014-01-08 18:27 - 00000000 ____D C:\Users\Michael\Desktop\Melotronic Grafiks
2014-01-09 17:59 - 2013-11-06 01:52 - 01101195 _____ C:\Users\Michael\Desktop\Feel much Better.flp
2014-01-09 17:58 - 2013-12-06 19:19 - 00624048 _____ C:\Users\Michael\Desktop\HU Test.flp
2014-01-09 17:46 - 2013-12-14 19:09 - 01622779 _____ C:\Users\Michael\Desktop\Next House Single.flp
2014-01-09 17:44 - 2013-11-22 18:47 - 03201863 _____ C:\Users\Michael\Desktop\Fucking Fresh.flp
2014-01-07 02:51 - 2014-01-07 02:51 - 00000000 ____D C:\Program Files\Sonic Charge
2014-01-07 02:51 - 2012-02-22 16:11 - 00000000 ____D C:\Program Files\VstPlugins
2014-01-02 02:09 - 2013-12-28 19:03 - 01091802 _____ C:\Users\Michael\Desktop\The Hits.flp

Some content of TEMP:
====================
C:\Users\Michael\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-29 15:56

==================== End Of Log ============================

--- --- ---

--- --- ---

FRST Add.

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01
Ran by Michael at 2014-01-31 18:28:14
Running from C:\Users\Michael\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Disabled - Up to date) {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
AS: Kaspersky Internet Security (Disabled - Up to date) {95CBD341-38DB-14AC-AF6A-08054B41A339}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {1691B380-548E-1A7A-BE85-9A42CE15AEFF}

==================== Installed Programs ======================

µTorrent (x32 Version: 1.6 - )
7-Zip 9.20 (x32 Version:  - )
AC3Filter 1.63b (x32 Version: 1.63b - Alexander Vigovsky)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (x32 Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.3.633 - Adobe Systems, Inc.)
Alldj DVD Ripper Platium 4.0 (x32 Version:  - MasterSoft, Inc.)
ANALOG87 SD-GATE (x32) (x32 Version: 1.1.5 - eaReckon)
Antares Autotune Evo VST RTAS v6.0.9 (x32 Version:  - )
Apple Application Support (x32 Version: 2.3.2 - Apple Inc.)
Apple Mobile Device Support (Version: 6.0.1.3 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
appleJuice Client (x32 Version: 0.31.149.110 - applejuice.de)
Ashampoo Burning Studio 9.21 (x32 Version: 9.2.1 - ashampoo GmbH & Co. KG)
ASIO4ALL (x32 Version: 2.10 - Michael Tippach)
AtoD SuperSaw Plus VSTi v1.0 (x32 Version:  - )
Audacity 1.2.6 (x32 Version:  - )
AVS Audio Converter version 7 (x32 Version:  - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (x32 Version:  - Online Media Technologies Ltd.)
AVS Video Converter 6 (x32 Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (x32 Version:  - Online Media Technologies Ltd.)
Azureus (x32 Version: 2.5.0.4 - )
Bayden UAPick (x32 Version:  - )
Bigfoot Networks Killer Network Manager (Version: 6.0.1.133 - Bigfoot Networks) Hidden
Bigfoot Networks Killer Network Manager (x32 Version:  - )
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Camel Audio Alchemy (x32 Version: 1.55.0 - Camel Audio)
Camel Audio CamelCrusher (x32 Version: 1.01.0 - Camel Audio)
CCleaner (Version: 3.17 - Piriform)
Creative Audio-Systemsteuerung (x32 Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (x32 Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (x32 Version: 1.02 - Creative Technology Limited)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (x32 Version: 4.40.2.0131 - DT Soft Ltd)
db audioware Sidechain Gate VST v1.1.0 (x32 Version:  - )
Deckadance 2 (x32 Version: 2.0 - Image-Line)
Defraggler (Version: 2.09 - Piriform)
discoDSP Corona Demo (x32 Version: 4.7 - discoDSP)
discoDSP Discovery Pro (x32 Version: 3 - discoDSP)
Diversion VST version 1.29 (Version: 1.29 - )
DivX-Setup (x32 Version: 2.6.1.8 - DivX, LLC)
Dolby Digital Live Pack (x32 Version: 3.02 - Creative Technology Limited)
DTS Connect Pack (x32 Version: 1.00 - Creative Technology Limited)
DUNE Demo 1.4 (x32 Version:  - Synapse Audio Software)
Effectrix (x32 Version: 1.0 - Sugar Bytes)
ElectraX demo (Version:  - Tone2)
Emagic Logic Audio Platinum 5.5.1 (x32 Version:  - )
ESET Online Scanner v3 (x32 Version:  - )
FabFilter Pro-G 1.13 (x32 Version:  - )
ffdshow (remove only) (x32 Version:  - )
FileZilla Client 3.2.7.1 (x32 Version: 3.2.7.1 - )
FL Studio 10 (x32 Version:  - Image-Line)
foobar2000 v1.1.2 (x32 Version: 1.1.2 - Peter Pawlowski)
Free CD Ripper V1.9 (x32 Version: 1.9.0.0 - Koyote Soft)
Free Video Dub version 2.0.11.627 (x32 Version: 2.0.11.627 - DVDVideoSoft Ltd.)
Free Video to MP3 Converter version 5.0.15.706 (x32 Version: 5.0.15.706 - DVDVideoSoft Ltd.)
Free Videos To DVD V 3.2.0 (x32 Version: 3.2.0.0 - Koyote soft)
FruityLoops v3.56 Full (x32 Version:  - )
GForce - Oddity (x32 Version:  - )
GIMP 2.6.11 (x32 Version: 2.6.11 - The GIMP Team)
Google Chrome (HKCU Version: 32.0.1700.102 - Google Inc.)
GTA Vice City - Deluxe (x32 Version:  - )
Hardcore (x32 Version:  - Image-Line bvba)
HD Tune 2.55 (x32 Version:  - EFD Software)
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
HyperCam 2 (x32 Version:  - )
ICQ 6.5 Build #2024 Banner Remover 1.0 (x32 Version:  - murb.com)
ICQ6.5 (x32 Version: 6.5 - ICQ)
IL Download Manager (x32 Version:  - Image-Line)
IL Shared Libraries (x32 Version:  - Image-Line)
ImgBurn (x32 Version: 2.5.6.0 - LIGHTNING UK!)
Intel(R) Rapid Storage Technology (x32 Version: 10.6.0.1002 - Intel Corporation)
iTunes (Version: 11.0.1.12 - Apple Inc.)
iZotope Nectar (x32 Version: 1.12 - iZotope, Inc.)
iZotope Vinyl (x32 Version: 1.61 - iZotope, Inc.)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (64-bit) (Version: 6.0.260 - Oracle)
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab)
Kaspersky Internet Security 2012 (x32 Version: 12.0.0.374 - Kaspersky Lab) Hidden
KORG M1 Le (x32 Version: 1.0.4 - KORG Inc.)
LMMS 0.4.13 (x32 Version: 0.4.13 - LMMS Developers)
LoopBe30 - Internal MIDI Ports (x32 Version:  - )
marvell 91xx driver (x32 Version: 1.1.0.6 - Marvell)
Marvell Storage Utility V4 (x32 Version: 4.1.0.1915 - Marvell)
Mercury 1 (x32 Version:  - )
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Virtual PC 2007 (Version: 6.0.156.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)
Mp3tag v2.47b (x32 Version: v2.47b - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron)
Nalpeiron Service Update to 6.3.9.2 (x32 Version: 7.3.1 - Nalpeiron) Hidden
Native Instruments FM7 VSTi DXI RTAS v1.1.3.4 (x32 Version:  - )
Native Instruments Kontakt 5 (Version: 5.1.0.6066 - Native Instruments) Hidden
Native Instruments Kontakt 5 (x32 Version:  - Native Instruments)
Native Instruments Massive (Version: 1.1.5.1967 - Native Instruments) Hidden
Native Instruments Massive (x32 Version:  - Native Instruments)
Netscape (7.1) (x32 Version:  - )
nLite 1.4.9.1 (x32 Version: 1.4.9.1 - Dino Nuhagic (nuhi))
No23 Recorder (x32 Version: 2.1.0.3 - No23)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.22 (Version: 314.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.115.743 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0213 (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 314.22 (Version: 314.22 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation) Hidden
Ohm Force - Ohmicide VST (x32 Version:  - )
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
Opera 12.15 (x32 Version: 12.15.1748 - Opera Software ASA)
Oracle VM VirtualBox 3.2.10 (Version: 3.2.10 - Oracle Corporation)
Orion 8 DEMO (x32 Version:  - Synapse Audio Software)
PACE License Support Win64 (Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (x32 Version: 2.2.3.0408 - PACE Anti-Piracy, Inc.)
Paint.NET v3.5.8 (Version: 3.58.0 - dotPDN LLC)
Paragon Partition Manager™ 11 Professional (x32 Version: 90.00.0003 - Paragon Software)
Phase 5 HTML-Editor (x32 Version: 5.6.2.3 - Systemberatung Schommer)
Preston Gate 1.2.0.0 (x32 Version:  - One Small Clue)
PSPad editor (x32 Version:  - Jan Fiala)
Quick Media Converter (HKCU Version:  - )
ReFX JunoX2 VSTi v1.51 (x32 Version:  - )
reFX Nexus VSTi RTAS v2.2.0 (x32 Version:  - )
reFX Vanguard VSTi RTAS v1.8.0 (x32 Version:  - )
Relab LX480 Lite VST v1.0 (x32 Version:  - )
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Rob Papen BLUE Version 1.9.0 Demo (x32 Version:  - RPCX)
Sawer (x32 Version:  - Image-Line)
SINUS GoldenGate v1.2 VST (x32 Version:  - )
SIW version 2011.10.29 (x32 Version: 2011.10.29 - Topala Software Solutions)
Softube FET Compressor VST RTAS v1.0.3 (x32 Version:  - )
Softube Tube-Tech CL 1B VST RTAS v1.0.3 (x32 Version:  - )
Sonalksis Plug-in Manager 3.01 (x32 Version:  - Sienda New Media Technologies GmbH)
Sonic Charge Cyclone (x32 Version: 1.0.0.5 - NuEdge Development)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (x32 Version:  - Team AiR 2007)
Sound Blaster X-Fi (x32 Version: 1.0 - Creative Technology Limited)
Soundforum Synth (x32 Version:  - )
SSL LMC-1 v1.0 (x32 Version: v1.0 - Solid State Logic)
SSL X-ORCISM v1.1 (x32 Version: v1.1 - Solid State Logic)
SuperWave Tarkus (x32 Version: 1.5 - SuperWave)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sylenth1 v2.20 (x32 Version:  - )
SynthMaster 2.6 VST/VSTi/RTAS DEMO (x64) version 2.6.7 (x32 Version: 2.6.7 - KV331 Audio)
TerraTec Komplexer VSTi 1.0.3 (x32 Version:  - )
TheOne v.0.3 (x32 Version:  - Scene Coders - We reflect the Scene!)
TubeOhm Alpha-Ray (x32 Version:  - )
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software)
TuneUp Utilities 2012 (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (x32 Version: 12.0.3010.5 - TuneUp Software) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Video Download Capture V4.6.9 (x32 Version: 4.6.9 - Apowersoft)
Virtual DJ Pro Full - Atomix Productions (x32 Version:  - )
VLC media player 1.1.6 (x32 Version: 1.1.6 - VideoLAN)
Waves Complete V9r11 (x32 Version: 9.1.11 - Waves)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR archiver (x32 Version:  - )
WinSCP 4.2.9 (x32 Version: 4.2.9 - Martin Prikryl)
XILS-lab Synthix v1.0.1 (x32 Version:  - )
Xvid Video Codec (x32 Version: 1.3.2 - Xvid Team)
YAMAHA AN1xEdit (x32 Version:  - )
Youtube Downloader HD v. 2.6 (x32 Version:  - YoutubeDownloaderHD.com)

==================== Restore Points  =========================

14-01-2014 14:38:09 Windows Update
15-01-2014 16:09:19 Windows Update
19-01-2014 18:00:08 Windows-Sicherung
21-01-2014 13:31:15 Windows Update
24-01-2014 16:59:12 Windows Update
26-01-2014 18:00:07 Windows-Sicherung
28-01-2014 10:24:47 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-12-10 00:35 - 00001140 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	secure.tune-up.com
127.0.0.1 im.adtech.de
127.0.0.1 adserver.adtech.de
127.0.0.1 adtech.de
127.0.0.1 ar.atwola.com
127.0.0.1 atwola.com
127.0.0.1 adserver.71i.de
127.0.0.1 adicqserver.71i.de
127.0.0.1 71i.de
174.142.65.65 wolke.skynet
174.142.65.65 announce.mine.nu
174.142.61.140 skynet.wolke


==================== Scheduled Tasks (whitelisted) =============

Task: {0D097214-E35D-4205-8933-EBCCB584D8E0} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {26F82BAB-CEDA-413A-BE4C-DD46FAF9C34C} - System32\Tasks\{A6310BBD-C6E3-4C91-ACFD-7EDAC05559EA} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {2D31B9CD-CCE4-455E-9536-18C6714D5E22} - System32\Tasks\{E99794BB-BDB3-4A4F-A479-C3243C513134} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {381065BA-330F-45AF-B2DD-573EBAF24621} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {393688AF-F45A-4FC5-A547-C668183AB85E} - System32\Tasks\Google Updater and Installer => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {51B5E5BD-461D-4141-A862-FBBCB7ABE6D6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {592296FF-75EB-40BF-A9CD-5FB61D39AEEC} - System32\Tasks\{907A584F-54BB-419A-A3C6-05C9FEB32B64} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {8DC25586-38DC-465A-B4A2-5A5C3BC4ED1B} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe [2012-02-09] (TuneUp Software)
Task: {AE5CA518-2326-46D2-808D-8A96D2427559} - System32\Tasks\{7C4F6FD0-2E14-40BB-94DF-77F8F8F7CA75} => C:\Users\Michael\Desktop\test\Steinberg-Cubase-2.01\CUBASE.EXE
Task: {B0B0DCF0-F1EA-4E93-852D-434D6824C89B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B1F52ECF-3076-4C8F-AAA2-3DF0CB3CF48B} - System32\Tasks\{D4611C16-6D0B-4B1F-98CA-BED8730E1D52} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {D12C081C-509C-4427-B552-EBE4301991C4} - System32\Tasks\{02905D1D-ABE5-4CEF-8D3A-457CFFE5DBB3} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {D63B5A9D-6577-41F3-BC78-EC940A254BBB} - System32\Tasks\{58498149-D6D8-4F16-93A3-FC8EBE7360C4} => C:\Users\Michael\Desktop\dos\vgacopy\vgacopy.exe
Task: {DF242E60-DE99-44E4-BC32-EF5B8E22837A} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {E7D4D73F-8A9D-4022-9C03-A138AFF60497} - System32\Tasks\{3C4F1D43-55F3-4828-93E5-8A15C999A716} => C:\Users\Michael\Desktop\Install ReBirth Demo.EXE
Task: {EA025416-6340-4DAA-B2B6-5EBF88467D84} - System32\Tasks\Divx online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {EA186F7A-EF34-4FD0-BC02-D1779FB7C404} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: {FB202EBE-37A1-4661-B2E2-FABB1870322F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000Core.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-119789687-1964946017-699775162-1000UA.job => C:\Users\Michael\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2009-08-23 18:24 - 2009-08-23 18:24 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-08-14 12:41 - 2008-06-19 23:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 02765312 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2010-06-13 23:31 - 2010-06-13 23:31 - 10373120 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2010-06-13 23:17 - 2010-06-13 23:17 - 00919552 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2010-06-13 23:16 - 2010-06-13 23:16 - 00448512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00252928 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2010-02-08 13:48 - 2010-02-08 13:48 - 00685568 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00571904 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00041984 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00030208 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00142336 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00173056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modLCD.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00365056 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00287744 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00283136 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00062976 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00054784 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modPing.dll
2011-01-14 11:34 - 2011-01-14 11:34 - 00355328 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2008-01-17 18:17 - 2008-01-17 18:17 - 00073782 _____ () C:\Program Files (x86)\Marvell\storage\Apache2\bin\zlib1.dll
2012-08-10 16:51 - 2012-08-10 16:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2011-08-13 16:25 - 2009-12-29 15:52 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2011-08-13 16:25 - 2010-10-04 16:39 - 00183808 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2011-08-13 16:09 - 2011-05-20 09:05 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData:482EE99B1E21CE8C
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\All Users:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:482EE99B1E21CE8C
AlternateDataStreams: C:\ProgramData\Application Data:482EE99B1E21CE8C

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/31/2014 06:02:48 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2014 06:02:35 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" in Zeile  WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (01/31/2014 06:02:22 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2014 02:28:03 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2014 02:28:00 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2014 02:27:30 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/30/2014 06:04:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/30/2014 01:52:02 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/30/2014 01:52:00 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/30/2014 01:51:59 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (01/31/2014 03:54:20 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/31/2014 03:54:20 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/31/2014 02:16:55 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/31/2014 02:16:46 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/31/2014 02:06:50 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/31/2014 02:06:50 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/30/2014 04:53:58 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/30/2014 04:37:33 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/30/2014 04:37:33 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.

Error: (01/30/2014 02:50:08 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.


Microsoft Office Sessions:
=========================
Error: (01/31/2014 06:02:48 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Michael\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\TAU4866V\esetsmartinstaller_enu[1].exe

Error: (01/31/2014 06:02:35 AM) (Source: SideBySide)(User: )
Description: WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0"WavesQtLibs_4.8.2_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0"c:\program files (x86)\Waves\applications\wlc.exec:\program files (x86)\Waves\applications\WavesQtLibs_4.8.2_Win32_Release\WavesQtLibs_4.8.2_Win32_Release.MANIFEST8

Error: (01/31/2014 06:02:22 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (01/31/2014 02:28:03 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Michael\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TAU4866V\esetsmartinstaller_enu[1].exe

Error: (01/31/2014 02:28:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Michael\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TAU4866V\esetsmartinstaller_enu[1].exe

Error: (01/31/2014 02:27:30 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\$Recycle.Bin\S-1-5-21-119789687-1964946017-699775162-1000\$R3C3524.exe

Error: (01/30/2014 06:04:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (01/30/2014 01:52:02 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Michael\Desktop\esetsmartinstaller_enu.exe

Error: (01/30/2014 01:52:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Michael\Desktop\esetsmartinstaller_enu.exe

Error: (01/30/2014 01:51:59 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Michael\Desktop\esetsmartinstaller_enu.exe


==================== Memory info =========================== 

Percentage of memory in use: 13%
Total physical RAM: 24574.42 MB
Available physical RAM: 21207.43 MB
Total Pagefile: 49147.02 MB
Available Pagefile: 45720.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:108.24 GB) NTFS
Drive f: (Festplatte 2) (Fixed) (Total:1397.26 GB) (Free:755.96 GB) NTFS
Drive g: (Festplatte 3) (Fixed) (Total:1397.26 GB) (Free:1386.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 224 GB) (Disk ID: 2328644B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 004899D1)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 23286443)
Partition 1: (Not Active) - (Size=-698723860480) - (Type=07 NTFS)

==================== End Of Log ============================

Noch bestehen die Speed Probleme, aber ich werd nachher mal einen Neustart machen
und erneut versuchen, glaube aber das sie trotzdem noch bestehen bleiben.

Wie im eingangsposting auch erwähnt glaub ich eher das es
ne Firewall oder ein anderes Programm ist das den Internet Speed Blockiert/bremst
was meinst du ???

lg
Michael

Hi,

Auch nach einem Neustart und Kaspersky ausschalten bestehen die Speedprobleme weiterhin...

habe nachwievor so um die 170kb/s Downstream...

---

Bitte auch meinen letzen post beachten

schrauber · 01.02.2014, 17:41

Java und ADobe updaten. Backup löschen.

Deinstaliere mal Kaspersky und teste ohne AV Programm.

Michael_ · 01.02.2014, 18:52

Hi,

Ich hatte Kaspersky wärend der Scans und wärend des Speedtests ausgeschaltet,
meinst du das kann trotzdem dazwischenfunken oder wieso die Deinstallation ?

Werd ich morgen aber aufjedenfall mal testen...

Sag mal kann es sein das "Tune Up!" etwas damit zutun haben könnte?
Hab da im Internet paar leute gelesen die meinten das es generell den PC langsamer
machen würde, also mehr kaputt als helfen ???

lg
Michael

schrauber · 02.02.2014, 07:17

Zitat:

Hab da im Internet paar leute gelesen die meinten das es generell den PC langsamer
machen würde, also mehr kaputt als helfen ???

Das sagen nicht nur ein paar, das sagen Alle.

KIS deinstallieren um zu schauen ob das die Performance bremst, kommt auch gerne vor.

Michael_ · 04.02.2014, 04:55

Hi,

Habe nun Tune-Up, deinstalliert. => Keine Verbesserung
Habe Kaspersky Deinstalliert & Windows Firewall ausgeschaltet => Keine Verbesserung -.-

Bin langsam am verzweifeln, hab echt kein Plan mehr woran das liegen kann.
Hast du noch Ideen ???

lg
Michael

schrauber · 04.02.2014, 21:20

How to perform a clean boot in Windows
Mach bitte mal nen Clean Boot und teste nochmal.

Michael_ · 27.03.2014, 01:00

Hallo,

Entschuldigung das ich mich solange nicht gemeldet habe.
Ich habe mittlererweile das und auch vieles mehr versucht und letzen endes den PC Heute neuaufgesetzt.

Allerdings bestehen die Probleme weiterhin !!!
(Habe sogar die Platte zuvor gründlich mit HD Shredder 7x Formatiert und dann erst Windows7 erneut installiert).

Kann der Langsame Internet Speed (da er auch nur an dem PC auftritt und andere die an der gleichen Leitung hängen ja fullspeed haben) evtl. am Lankabel liegen ??? kann das ne macke haben oder würde dann garnix gehen ?

lg
Michael

01.02.2014, 17:41	#10
schrauber /// the machine /// TB-Ausbilder	Langsames Internet an meinem PC Java und ADobe updaten. Backup löschen. Deinstaliere mal Kaspersky und teste ohne AV Programm. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

04.02.2014, 21:20	#14
schrauber /// the machine /// TB-Ausbilder	Langsames Internet an meinem PC How to perform a clean boot in Windows Mach bitte mal nen Clean Boot und teste nochmal. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Langsames Internet an meinem PC

Plagegeister aller Art und deren Bekämpfung: Langsames Internet an meinem PC