|
Plagegeister aller Art und deren Bekämpfung: werbung in skype deaktivierenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
03.02.2014, 17:32 | #1 |
| werbung in skype deaktivieren hi habe bei skype seit kurzem nur noch werbung in chats oder auf der skype home seite nutze folgende version 6.11.0.102 von skype seit samstag ca erscheint in der konversation werbung als banner selbst als ich die optionen deaktiviert habe wo die werbung her kommt bleibt sie den noch erhalten. -.-* ich bin jetzt mit meinen latein sozusagen am ende. was mir nur noch als möglichkeit einfallen würde währe das ich mir vlt nen virus eingefangen haben könnte. weis jmd wie ich diese werbung deaktivieren kann und das dauerhaft? nutze windows 7 home premium 64bit auf einen medion akoya e7216 hab ein bild beigefügt wo die werbung drauf ist die ich meinte die ist seit samstag in skype bei mir Geändert von saufbiene (03.02.2014 um 17:39 Uhr) |
03.02.2014, 18:50 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Hallo und
__________________Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
04.02.2014, 18:02 | #3 |
| werbung in skype deaktivierenFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2014 Ran by Daniel (administrator) on MEDION on 04-02-2014 17:57:26 Running from C:\Users\Daniel\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe (Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Opera Software) C:\Program Files (x86)\Opera\opera.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated) HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company) HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation) HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink) HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink) HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.) HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC) HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron) HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.) HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.) HKLM-x32\...\Run: [] - [X] HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.) HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-23] (AVAST Software) HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] () HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [AdobeBridge] - [X] HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [ISUSPM] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-05-16] (Macrovision Corporation) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\start.exe Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.) ==================== Internet (Whitelisted) ==================== BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Chrome: ======= CHR HomePage: CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-11] CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-11] CHR Extension: (Turn Off the Lights) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2013-11-13] CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-11] CHR Extension: (Cake Mania Main Street) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohogdkongdgejlnndnnhamjgfnbfoon [2013-11-13] CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bolmkphclbnmjlbmibfcnfggbakghpck [2013-11-13] CHR Extension: (Mangas und Comics auf Deutsch) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\chmidfbpiiicmkfimcbcoagpmchgmkpl [2013-11-13] CHR Extension: (Monster Dash) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog [2013-11-13] CHR Extension: (Google-Suche) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-11] CHR Extension: (Search by Image (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-13] CHR Extension: (avast! Online Security) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-09] CHR Extension: (TinEye Reverse Image Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2013-11-13] CHR Extension: (Cake Mania) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckjnbilaljpiclmpmnomoapakjmoapj [2013-11-13] CHR Extension: (SparkChess 6) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem [2013-11-13] CHR Extension: (Sand 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\klicmgamjpclmbhppmdeamffedflmkcn [2013-11-13] CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-11] CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-11] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-09] ==================== Services (Whitelisted) ================= S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated) R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [5101928 2014-01-23] (Reimage®) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-23] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-23] (AVAST Software) R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project) R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-24] () R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] () R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.) R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2009-11-07] (X10) ==================== Drivers (Whitelisted) ==================== R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2013-12-09] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-23] (AVAST Software) R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [440672 2014-01-23] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-09] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-23] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-23] (AVAST Software) R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-23] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-21] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] () R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA) S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] () R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.) S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.) U3 DfSdkS; S3 dgderdrv; System32\drivers\dgderdrv.sys [X] S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-04 17:57 - 2014-02-04 17:57 - 00017413 ____C () C:\Users\Daniel\Desktop\FRST.txt 2014-02-04 17:57 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST 2014-02-04 17:53 - 2014-02-04 17:54 - 02080256 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe 2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype 2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk 2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype 2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} 2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm 2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works 2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip 2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip 2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} 2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} 2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker 2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup 2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee 2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-16 14:29 - 2014-01-16 14:28 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java 2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC 2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\ProgramData\Screaming Bee 2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee 2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk 2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini 2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk 2014-01-15 08:15 - 2014-01-15 13:45 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-15 08:15 - 2014-01-15 13:44 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design 2014-01-12 22:25 - 2014-01-12 22:29 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8 2014-01-12 22:25 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design 2014-01-12 22:25 - 2012-03-01 11:08 - 00966144 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00877568 ____C (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00634880 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00522752 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00467968 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00467456 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll 2014-01-12 22:25 - 2012-02-11 21:07 - 00413696 ____C (Gabest) C:\Windows\SysWOW64\flvsplitter.ax 2014-01-12 22:25 - 2011-03-29 12:52 - 00962560 ____C (East Wind Software) C:\Windows\SysWOW64\advdaudio.ocx 2014-01-12 22:25 - 2011-03-29 12:52 - 00110080 ____C () C:\Windows\SysWOW64\advd.dll 2014-01-12 22:25 - 2011-03-29 12:52 - 00023040 ____C () C:\Windows\SysWOW64\auth.dll 2014-01-12 22:25 - 2003-08-07 14:01 - 00237568 ____C () C:\Windows\SysWOW64\lame_enc.dll 2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk 2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games 2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ 2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone 2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk 2014-01-08 06:40 - 2014-01-08 06:40 - 00000000 ____C () C:\END 2014-01-05 18:16 - 2014-01-05 18:18 - 286128963 ____C () C:\Users\Daniel\Documents\MCGame_Complete_2014-01-05_18-16-30_Backup.mcgame ==================== One Month Modified Files and Folders ======= 2014-02-04 17:57 - 2014-02-04 17:57 - 00017413 ____C () C:\Users\Daniel\Desktop\FRST.txt 2014-02-04 17:57 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST 2014-02-04 17:57 - 2013-11-11 16:47 - 00001110 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-04 17:56 - 2013-08-01 16:23 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Skype 2014-02-04 17:54 - 2014-02-04 17:53 - 02080256 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe 2014-02-04 17:52 - 2013-08-14 08:41 - 01933459 ____C () C:\Windows\WindowsUpdate.log 2014-02-04 17:36 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\system32\NDF 2014-02-04 17:08 - 2013-07-31 21:11 - 00000884 ____C () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-04 09:57 - 2013-11-11 16:47 - 00001106 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-04 00:29 - 2010-05-12 09:18 - 00699340 ____C () C:\Windows\system32\perfh007.dat 2014-02-04 00:29 - 2010-05-12 09:18 - 00149448 ____C () C:\Windows\system32\perfc007.dat 2014-02-04 00:29 - 2009-07-14 06:13 - 01619272 ____C () C:\Windows\system32\PerfStringBackup.INI 2014-02-04 00:28 - 2013-11-18 10:37 - 00009339 ____C () C:\Windows\setupact.log 2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype 2014-02-03 18:33 - 2013-08-01 16:23 - 00000000 ___DC () C:\ProgramData\Skype 2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk 2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype 2014-02-03 18:29 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-03 18:29 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} 2014-02-03 17:19 - 2013-08-01 16:06 - 00000000 ___DC () C:\Users\Daniel\Documents\Youcam 2014-02-02 19:51 - 2013-08-19 06:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\vlc 2014-02-01 14:01 - 2013-11-11 16:48 - 00002139 ____C () C:\Users\Public\Desktop\Google Chrome.lnk 2014-01-30 08:37 - 2013-12-09 01:49 - 00004182 ____C () C:\Windows\System32\Tasks\avast! Emergency Update 2014-01-30 08:33 - 2013-11-18 10:37 - 03268424 ____C () C:\Windows\system32\FNTCACHE.DAT 2014-01-30 08:33 - 2009-07-14 06:08 - 00000006 ___HC () C:\Windows\Tasks\SA.DAT 2014-01-29 23:11 - 2013-11-19 16:01 - 00217648 ____C () C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-29 14:07 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\TS3Client 2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm 2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works 2014-01-28 17:13 - 2013-08-02 18:31 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Office 2014-01-28 17:12 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\Help 2014-01-26 20:22 - 2013-11-21 00:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\bilder 2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip 2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip 2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} 2014-01-26 17:24 - 2013-08-03 19:09 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\CrashDumps 2014-01-26 12:11 - 2013-11-07 14:54 - 00000000 ___DC () C:\Program Files\AntiToolbar 2014-01-25 16:55 - 2013-07-31 20:43 - 00000000 __RDC () C:\Users\Daniel\Desktop\Dj Musik 2014-01-24 17:14 - 2013-09-06 12:54 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\.minecraft 2014-01-23 14:11 - 2013-12-09 01:50 - 00002036 ____C () C:\Users\Public\Desktop\avast! SafeZone.lnk 2014-01-23 14:11 - 2013-12-09 01:50 - 00001976 ____C () C:\Users\Public\Desktop\avast! Internet Security.lnk 2014-01-23 14:10 - 2013-12-21 23:19 - 00080184 ____C (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 01038072 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00421704 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00334136 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-01-23 14:10 - 2013-12-09 01:49 - 00078648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00043152 ____C (AVAST Software) C:\Windows\avastSS.scr 2014-01-23 14:09 - 2013-12-09 01:48 - 00440672 ____C (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys 2014-01-23 12:59 - 2013-11-01 16:13 - 00000000 ___DC () C:\Users\Daniel\Downloads\programe 2014-01-23 12:58 - 2013-11-01 16:12 - 00000000 ___DC () C:\Users\Daniel\Downloads\rar verzeichnisse 2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} 2014-01-21 22:30 - 2013-08-06 00:06 - 00000000 ___DC () C:\ProgramData\firebird 2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker 2014-01-21 15:22 - 2013-08-01 16:05 - 00000000 ___DC () C:\Users\Daniel\Documents\Manfred 2014-01-20 21:40 - 2013-08-01 22:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Utherverse 2014-01-16 22:58 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-01-16 22:58 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-01-16 22:58 - 2013-07-31 21:11 - 00003822 ____C () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-01-16 15:16 - 2013-12-08 20:28 - 00000000 ___DC () C:\Users\Daniel\Desktop\programme 2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup 2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee 2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\ProgramData\Screaming Bee 2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee 2014-01-16 14:38 - 2013-07-31 21:10 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Adobe 2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-16 14:37 - 2013-10-20 00:56 - 00000000 ___DC () C:\ProgramData\Oracle 2014-01-16 14:37 - 2013-07-31 21:11 - 00000000 ___DC () C:\Program Files (x86)\Java 2014-01-16 14:28 - 2014-01-16 14:29 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java 2014-01-16 14:27 - 2013-12-16 02:22 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\BitTorrent 2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC 2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk 2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini 2014-01-16 13:45 - 2013-07-31 18:47 - 00000000 ___DC () C:\Users\Daniel 2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk 2014-01-16 13:42 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client 2014-01-16 13:38 - 2013-11-19 18:45 - 00000000 ___DC () C:\Users\Daniel\Desktop\sims 2014-01-16 13:38 - 2013-08-21 22:22 - 00000000 ___DC () C:\Users\Daniel\Desktop\spiele 2014-01-15 13:45 - 2014-01-15 08:15 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-15 13:44 - 2014-01-15 08:15 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 13:44 - 2009-07-14 03:34 - 00000634 ____C () C:\Windows\win.ini 2014-01-15 13:43 - 2013-08-01 10:11 - 00000000 ___DC () C:\Windows\system32\MRT 2014-01-15 13:38 - 2013-07-31 22:46 - 86054176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-12 22:29 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8 2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio 2014-01-12 22:27 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design 2014-01-12 22:25 - 2013-11-30 14:03 - 00000000 ___DC () C:\Program Files (x86)\Franzis 2014-01-12 00:00 - 2013-11-20 00:00 - 00198156 ____C () C:\Windows\PFRO.log 2014-01-11 09:50 - 2013-09-20 20:07 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk 2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games 2014-01-11 09:48 - 2013-07-31 18:53 - 00000000 __HDC () C:\Program Files (x86)\InstallShield Installation Information 2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences 2014-01-10 07:10 - 2013-10-16 09:23 - 00000000 ___DC () C:\Users\Daniel\Documents\Mama 2013 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ 2014-01-09 02:28 - 2013-08-03 15:10 - 00000000 __RDC () C:\Users\Daniel\Dropbox 2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone 2014-01-08 21:46 - 2013-08-19 06:16 - 00000919 ____C () C:\Users\Public\Desktop\VLC media player.lnk 2014-01-08 15:34 - 2013-08-03 15:06 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Dropbox 2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk 2014-01-08 06:43 - 2013-07-31 21:36 - 00001612 ____C () C:\Users\Daniel\Desktop\DivX Movies.lnk 2014-01-08 06:43 - 2013-07-31 21:31 - 00000000 ___DC () C:\Program Files (x86)\DivX 2014-01-08 06:43 - 2013-07-31 21:29 - 00000000 ___DC () C:\ProgramData\DivX 2014-01-08 06:42 - 2013-09-10 00:46 - 00001091 ____C () C:\Users\Public\Desktop\DivX Converter.lnk 2014-01-08 06:40 - 2014-01-08 06:40 - 00000000 ____C () C:\END 2014-01-05 18:18 - 2014-01-05 18:16 - 286128963 ____C () C:\Users\Daniel\Documents\MCGame_Complete_2014-01-05_18-16-30_Backup.mcgame Some content of TEMP: ==================== C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll C:\Users\Daniel\AppData\Local\Temp\ginstall.dll C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll C:\Users\Daniel\AppData\Local\Temp\vlc-2.1.2-win64.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 00:09 ==================== End Of Log ============================ Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-02-2014 Ran by Daniel at 2014-02-04 17:58:16 Running from C:\Users\Daniel\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Internet Security (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Internet Security (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Internet Security (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== 4shared Desktop (x32 Version: - ) 64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden AC3Filter 2.6.0b (x32 Version: 2.6.0b - Alexander Vigovsky) AChat 1.17 high detail textures and additional music (x32 Version: - AChat Animation Studios) Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden Acrobat.com (x32 Version: 1.2.443 - Adobe Systems Incorporated) Adobe Acrobat 9 Pro - English, Français, Deutsch (x32 Version: 9.5.5 - Adobe Systems) Hidden Adobe Acrobat 9.5.5 - CPSID_83708 (x32 Version: - Adobe Systems Incorporated) Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden Adobe Anchor Service CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Asset Services CS4 (x32 Version: 4 - Adobe Systems Incorporated) Hidden Adobe Bridge CS4 (x32 Version: 3 - Adobe Systems Incorporated) Hidden Adobe CMaps CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Color EU Recommended Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Color JA Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Color NA Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Color Video Profiles CS CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Creative Suite 4 Design Premium (x32 Version: 4.0 - Adobe Systems Incorporated) Adobe Creative Suite 4 Design Premium (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden Adobe CSI CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Default Language CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Device Central CS4 (x32 Version: 2 - Adobe Systems Incorporated) Hidden Adobe Dreamweaver CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Adobe Drive CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Dynamiclink Support (x32 Version: 1 - Adobe Systems Incorporated) Hidden Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden Adobe Extension Manager CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Fireworks CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Adobe Flash CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Adobe Flash CS4 Extension - Flash Lite STI others (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden Adobe Flash CS4 STI-other (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.38 - Adobe Systems Incorporated) Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated) Adobe Fonts All (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Illustrator CS4 (x32 Version: 14.0 - Adobe Systems Incorporated) Hidden Adobe InDesign CS4 (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden Adobe InDesign CS4 Application Feature Set Files (Roman) (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden Adobe InDesign CS4 Common Base Files (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden Adobe InDesign CS4 Icon Handler (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden Adobe InDesign CS4 Icon Handler x64 (Version: 6.0 - Adobe Systems Incorporated) Hidden Adobe Linguistics CS4 (x32 Version: 4.0.0 - Adobe Systems Incorporated) Hidden Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden Adobe Media Encoder CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden Adobe Media Encoder CS4 Importer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden Adobe Media Player (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden Adobe Media Player (x32 Version: 1.1 - Adobe Systems Incorporated) Adobe Output Module (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe PDF Library Files CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS4 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS4 Support (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated) Adobe Search for Help (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden Adobe Service Manager Extension (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden Adobe Setup (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe SGM CS4 (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden Adobe Shockwave Player 12.0 (x32 Version: 12.0.7.148 - Adobe Systems, Inc.) Adobe SING CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Adobe Type Support CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden Adobe Update Manager CS4 (x32 Version: 6.0.0 - Adobe Systems Incorporated) Hidden Adobe Version Cue CS4 Server (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden Adobe WinSoft Linguistics Plugin (x32 Version: 1.1 - Adobe Systems Incorporated) Hidden Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden Adobe XMP Panels CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden AdobeColorCommonSetCMYK (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden AdobeColorCommonSetRGB (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden Age of Wonders Shadow Magic (x32 Version: - ) Aimersoft DRM Media Converter(Build 1.4.7.2) (x32 Version: - Aimersoft Software) AION Free-to-Play (x32 Version: - Gameforge) Aiseesoft Total Video Converter Platinum 7.1.10 (x32 Version: 7.1.10 - Aiseesoft Studio) Ancient Weapon Sounds (x32 Version: 2.1.0 - Screaming Bee) ANNO 1503 (x32 Version: - ) Anno 1602 (x32 Version: - ) Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03 - Sunflowers) Anno 1701 (x32 Version: 1.04 - Sunflowers) ANNO 2070 (x32 Version: 1.0.0.0 - Ubisoft) AntiToolbar (Version: 1.0.0.5 - Reimage) Anti-Twin (Installation 07.08.2013) (x32 Version: - Joerg Rosenthal, Germany) Ashampoo Burning Studio 12 v.12.0.5 (x32 Version: 12.0.5 - Ashampoo GmbH & Co. KG) Ashampoo Burning Studio 14 v.14.0.1 (x32 Version: 14.0.1 - Ashampoo GmbH & Co. KG) Ashampoo Photo Commander (x32 Version: 8.3.2 - ashampoo GmbH & Co. KG) Ashampoo Photo Optimizer (x32 Version: 3.12.0 - ashampoo GmbH & Co. KG) Ashampoo Snap (x32 Version: 3.4.1 - ashampoo GmbH & Co. KG) Ashampoo WinOptimizer 10 v.10.2.6 (x32 Version: 10.02.06 - Ashampoo GmbH & Co. KG) Aurora Blu-ray Media Player (x32 Version: 2.13.4.1435 - Aurora Software Inc.) avast! Internet Security (x32 Version: 9.0.2013 - Avast Software) BitTorrent (HKCU Version: 7.8.2.30332 - BitTorrent Inc.) Blue Satin Skin (x32 Version: 2.2.0 - Screaming Bee) BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden Caesar 3 (x32 Version: - ) Caesar IV (x32 Version: 1.2 - Tilted Mill Entertainment) Cake Mania - Back To The Bakery (HKCU Version: 1.0.0.0 - eGames) CCleaner (Version: 4.08 - Piriform) Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) CloneDVD 6.0.0.1 (x32 Version: - Copyright (C) 2003-2012 Aviosoft.) Comic Sound Pack (x32 Version: 2.1.0 - Screaming Bee) Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000 - Microsoft Corporation) concept/design Video Jukebox (x32 Version: 1.3.0.0 - concept/design GmbH) Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden Contents (x32 Version: 15.0.0.258 - Corel Corporation) Hidden Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation) Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation) Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden Corel PaintShop Pro X6 (x32 Version: 16.0.0.113 - Corel Corporation) Corel PaintShop Pro X6 (x32 Version: 16.0.0.113 - Corel Corporation) Hidden Corel Shell Extension - 64Bit (Version: 14.0 - Corel Corporation) Hidden Corel VideoStudio Pro X5 (x32 Version: 15.0.0.258 - Corel Corporation) CorelDRAW Essentials 4 - Content (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Draw (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Extra Content (x32 Version: - Corel Corporation) CorelDRAW Essentials 4 - Extra Content (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Filters (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - ICA (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - IPM - No VBA (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang BR (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang DE (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang EN (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang ES (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang FR (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang IT (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Lang NL (x32 Version: 4.0 - Uw bedrijfsnaam) Hidden CorelDRAW Essentials 4 - PHOTO-PAINT (x32 Version: 4.0 - Corel Corporation) Hidden CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: - Corel Corporation) CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: 1.1 - Corel Corporation) Hidden CorelDRAW Essentials 4 (x32 Version: - Corel Corporation) CorelDRAW Essentials 4 (x32 Version: 4.0 - Corel Corporation) Hidden Creatures of Darkness (x32 Version: 3.3.0 - Screaming Bee LLC) CustomerResearchQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden CyberLink MediaShow (x32 Version: 5.0.1410a - CyberLink Corp.) CyberLink MediaShow (x32 Version: 5.0.1410a - CyberLink Corp.) Hidden CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a - CyberLink Corp.) CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a - CyberLink Corp.) Hidden CyberLink PhotoNow (x32 Version: 1.1.0.6904 - CyberLink Corp.) CyberLink PhotoNow (x32 Version: 1.1.0.6904 - CyberLink Corp.) Hidden CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.) CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.) Hidden CyberLink PowerDirector (x32 Version: 8.0.3224a - CyberLink Corp.) CyberLink PowerDirector (x32 Version: 8.0.3224a - CyberLink Corp.) Hidden CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02 - CyberLink Corp.) CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02 - CyberLink Corp.) Hidden CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden CyberLink PowerProducer (x32 Version: 5.0.2.2429 - CyberLink Corp.) CyberLink PowerProducer (x32 Version: 5.0.2.2429 - CyberLink Corp.) Hidden CyberLink YouCam (x32 Version: 3.1.3428 - CyberLink Corp.) CyberLink YouCam (x32 Version: 3.1.3428 - CyberLink Corp.) Hidden Darkest of Days (x32 Version: 1.0 - 8monkey Labs) Deep Space Voices (x32 Version: 3.3.0 - Screaming Bee) Delete Virtual-Mate Launcher (x32 Version: 1.0.0 - Interlex Inc.) DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden Die Siedler III Gold Edition (x32 Version: - ) Die Sims™ 3 (x32 Version: 1.63.5 - Electronic Arts) Die Sims™ 3 70er, 80er & 90er Accessoires (x32 Version: 17.0.77 - Electronic Arts) Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55 - Electronic Arts) Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48 - Electronic Arts) Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96 - Electronic Arts) Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44 - Electronic Arts) Die Sims™ 3 Inselparadies (x32 Version: 19.0.101 - Electronic Arts) Die Sims™ 3 Into the Future (x32 Version: 21.0.150 - Electronic Arts) Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136 - Electronic Arts) Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62 - Electronic Arts) Die Sims™ 3 Late Night (x32 Version: 6.0.81 - Electronic Arts) Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152 - Electronic Arts) Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38 - Electronic Arts) Die Sims™ 3 Movie-Accessoires (x32 Version: 20.0.53 - Electronic Arts) Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86 - Electronic Arts) Die Sims™ 3 Showtime (x32 Version: 12.0.273 - Electronic Arts) Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73 - Electronic Arts) Die Sims™ 3 Supernatural (x32 Version: 15.0.135 - Electronic Arts) Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87 - Electronic Arts) Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84 - Electronic Arts) Die Sims™ 3 Wildes Studentenleben (x32 Version: 18.0.126 - Electronic Arts) Die*Sims™*3 Erstelle einen Sim (x32 Version: 1.0.26 - Electronic Arts) DivX-Setup (x32 Version: 2.6.1.90 - DivX, LLC) DivxToDVD 0.5.2b (x32 Version: 0.5.2b - VSO-Software SARL) Drakensang (x32 Version: - dtp) Dream Pinball 3D (x32 Version: 1.1.0.0 - TopWare Interactive) Dropbox (HKCU Version: 2.4.10 - Dropbox, Inc.) DVDFab 9.0.6.3 (09/09/2013) (x32 Version: - Fengtao Software Inc.) FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion) Fantasy Sound Pack (x32 Version: 1.1.0 - Screaming Bee) Fantasy Voice Pack (x32 Version: 1.3.0 - Screaming Bee) Farm Animal Sounds (x32 Version: 1.1.0 - Screaming Bee) Female Voice Pack (x32 Version: 3.3.1 - Screaming Bee) FileViewPro (Version: 4.0 - stfx, Ath) Firebird 2.5.0.26074 (Win32) (x32 Version: 2.5.0.26074 - Firebird Project) Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0 - MAGIX AG) FRANZIS onlineTV 8 (x32 Version: 8.5.0.10 - FRANZIS Verlag GmbH) Free Audio Dub version 1.7.9.908 (x32 Version: 1.7.9.908 - DVDVideoSoft Ltd.) Free AVI Video Converter version 5.0.28.827 (x32 Version: 5.0.28.827 - DVDVideoSoft Ltd.) Furry Voices for Second Life (x32 Version: 1.3.0 - Screaming Bee) Galactic Voices (x32 Version: 1.3.0 - Screaming Bee) Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0 - Gameforge) GameSpy Arcade (x32 Version: - ) Ghost Recon Online (EU) (HKCU Version: 1.34.1166.2 - Ubisoft) Google Chrome (x32 Version: 32.0.1700.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden Haali Media Splitter (x32 Version: - ) HP Color LaserJet CM1312 MFP Series 5.1 (Version: 5.1 - HP) HP Customer Participation Program 10.0 (Version: 10.0 - HP) HP Imaging Device Functions 10.0 (Version: 10.0 - HP) hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Ihr Firmenname) Hidden hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden hppManualsCM1312 (x32 Version: 005.001.00145 - Ihr Firmenname) Hidden hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden hppScanToCM1312 (x32 Version: 005.001.00140 - Ihr Firmenname) Hidden hppSendFaxCM1312 (x32 Version: 005.000.00001 - Ihr Firmenname) Hidden hppusgCM1312 (x32 Version: 1.1.0.1 - Hewlett-Packard) Hidden ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden ICA (x32 Version: 15.0.0.258 - Corel Corporation) Hidden ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden IMVU Avatar Chat Software (HKCU Version: - ) Insaniquarium Deluxe 1.0 (x32 Version: - ) Intel(R) Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation) Intel(R) Processor Graphics (x32 Version: 8.15.10.2827 - Intel Corporation) IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden IPM_VS_Pro (x32 Version: 15.0 - Corel Corporation) Hidden ISCOM (x32 Version: 15.0.0.258 - Corel Corporation) Hidden Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle) Java 7 Update 51 (x32 Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden King Arthur - The Role-playing Wargame (x32 Version: - NeoCoreGames) kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden LastChaosGER (x32 Version: 1.00.000 - Barunsongames CO., LTD.) Launch Manager (x32 Version: 1.5.1.2 - Wistron Corp.) Magic ISO Maker v5.5 (build 0272) (x32 Version: - ) MagicDisc 2.7.106 (x32 Version: - ) MAGIX Burn routines (Version: 11.0.0.233 - MAGIX AG) MAGIX Content und Soundpools (x32 Version: 1.0.0.0 - MAGIX AG) MAGIX Goya burnR (MSI) (Version: 4.3.2.0 - MAGIX AG) Hidden MAGIX Goya burnR (MSI) (x32 Version: 4.3.2.0 - MAGIX AG) MAGIX Independence Libraries Common Files (Version: 3.1.0.0 - MAGIX AG) Hidden MAGIX Independence Libraries Common Files (x32 Version: 3.1.0.0 - MAGIX AG) MAGIX Independence Pro 3.1 RTAS-Plugins (Version: 3.1.0.0 - MAGIX AG) Hidden MAGIX Independence Pro 3.1 RTAS-Plugins (x32 Version: 3.1.0.0 - MAGIX AG) MAGIX Independence Pro 3.1 VST-Plugins (Version: 3.1.0.0 - MAGIX AG) Hidden MAGIX Independence Pro 3.1 VST-Plugins (x32 Version: 3.1.0.0 - MAGIX AG) MAGIX Independence Pro Software Suite 3.1 (Version: 3.1.0.69 - MAGIX AG) Hidden MAGIX Independence Pro Software Suite 3.1 (x32 Version: 3.1.0.69 - MAGIX AG) MAGIX Music Maker 2013 Premium (Demosongs) (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium (Demosongs) (x32 Version: 1.0.0.0 - MAGIX AG) MAGIX Music Maker 2013 Premium (Einführungsvideos) (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium (Einführungsvideos) (x32 Version: 1.0.0.0 - MAGIX AG) MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (x32 Version: 1.0.0.0 - MAGIX AG) MAGIX Music Maker 2013 Premium (Version: 19.0.1.36 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium (Visuals) (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium (Visuals) (x32 Version: 1.0.0.0 - MAGIX AG) MAGIX Music Maker 2013 Premium (x32 Version: 19.0.1.36 - MAGIX AG) MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker 2013 Premium Update (Version: 19.0.6.58 - MAGIX AG) Hidden MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker Hip Hop Edition 5 (Version: 19.0.5.57 - MAGIX AG) Hidden MAGIX Music Maker Hip Hop Edition 5 (x32 Version: 19.0.5.57 - MAGIX AG) MAGIX Music Maker Hip Hop Edition 5 Trial Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (Version: 17.0.2.6 - MAGIX AG) Hidden MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (x32 Version: 17.0.2.6 - MAGIX AG) MAGIX Music Maker Techno Edition 5 (Version: 19.0.5.57 - MAGIX AG) Hidden MAGIX Music Maker Techno Edition 5 (x32 Version: 19.0.5.57 - MAGIX AG) MAGIX Music Maker Techno Edition 5 Trial Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden MAGIX Screenshare (x32 Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG) Male Voice Pack (x32 Version: 1.3.0 - Screaming Bee) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation) MarketResearch (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden Mass Effect (x32 Version: 1.00 - Electronic Arts, Inc.) Medion Home Cinema (x32 Version: 8.0.2213 - CyberLink Corp.) Medion Home Cinema (x32 Version: 8.0.2213 - CyberLink Corp.) Hidden Meine kleine Kuchenbäckerei (x32 Version: 1.0 - rondomedia) Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Office 2003 Web Components (x32 Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.) Mission Pack (x32 Version: - ) MorphVOX Pro (x32 Version: 4.3.13 - Screaming Bee) MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42 - The Firebird Project) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation) My Game Long Name (Version: - Epic Games, Inc.) MySQL Connector/ODBC 3.51 (x32 Version: 3.51.12 - MySQL AB) Notepad++ (x32 Version: 6.5.1 - Notepad++ Team) Nutella EstaThe Snack and Drink (x32 Version: - ) NVIDIA PhysX (x32 Version: 9.09.0814 - NVIDIA Corporation) OpenAL (x32 Version: - ) Opera 12.16 (x32 Version: 12.16.1860 - Opera Software ASA) Origin (x32 Version: 9.3.10.4710 - Electronic Arts, Inc.) PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden Personal ID (x32 Version: 1.8.5.202 - coolspot AG) Personality Voices (x32 Version: 1.0.0 - Screaming Bee) Phoenix Viewer 1.6.0.1691 (x32 Version: - PhoenixViewer.com) Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden Pixel Bender Toolkit (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden PlanetSide 2 (HKCU Version: 1.0.3.183 - Sony Online Entertainment) Power MP3 WMA Converter 2011, (ver 6.1) (x32 Version: 6.1 - CooolSoft, Inc.) ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.13 - ProtectDisc Software GmbH) PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden PSPPHelp (x32 Version: 16.1.0.18 - Corel Corporation) Hidden PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden PSPPro64 (Version: 16.0.0.113 - Corel Corporation) Hidden PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.) RapidCRC 0.6.1 (x32 Version: 0.6.1 - Sebastian Ewert) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6237 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30121 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (x32 Version: 1.00.0180 - REALTEK Semiconductor Corp.) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Hidden Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group) SAM3 (remove only) (x32 Version: - ) Samplitude Music Studio 2013 (Demoprojekte) (Version: 1.0.0.0 - MAGIX AG) Hidden Samplitude Music Studio 2013 (Demoprojekte) (x32 Version: 1.0.0.0 - MAGIX AG) Samplitude Music Studio 2013 (Independence) (Version: 1.1.0.0 - MAGIX AG) Hidden Samplitude Music Studio 2013 (Independence) (x32 Version: 1.1.0.0 - MAGIX AG) Samplitude Music Studio 2013 (Objekt-Synthesizer) (Version: 1.0.0.0 - MAGIX AG) Hidden Samplitude Music Studio 2013 (Objekt-Synthesizer) (x32 Version: 1.0.0.0 - MAGIX AG) Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (Version: 1.0.0.0 - MAGIX AG) Hidden Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (x32 Version: 1.0.0.0 - MAGIX AG) Samplitude Music Studio 2013 (Version: 19.0.0.15 - MAGIX AG) Hidden Samplitude Music Studio 2013 (x32 Version: 19.0.0.15 - MAGIX AG) Samplitude Music Studio 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden SAMSUNG USB Driver for Mobile Phones (Version: 1.3.1800.0 - SAMSUNG Electronics Co., Ltd.) Sandlot Games Client Services 1.2.2 (x32 Version: - Sandlot Games) Schriftenbibliothek (x32 Version: - ) Sci-Fi 2 Sound Pack (x32 Version: 1.3.0 - Screaming Bee) Sci-Fi Sound Pack (x32 Version: 1.1.0 - Screaming Bee) Sci-Fi Voice Pack (x32 Version: 1.3.0 - Screaming Bee) SecondLifeViewer (remove only) (x32 Version: - ) Secret City (x32 Version: 1.9.4662 - Utherverse Digital Inc) Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden Setup (x32 Version: 15.0.0.258 - Corel Corporation) Hidden Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden Share (x32 Version: 15.0.0.258 - Corel Corporation) Hidden Share64 (Version: 15.0.0.258 - Corel Corporation) Hidden SHOUTcast Source DSP Plug-in v2 (x32 Version: 2.3.2 - Nullsoft, Inc) Sid Meier's Pirates! (x32 Version: 1.00.0000 - Firaxis Games) Sid Meier's Pirates! (x32 Version: 1.00.0000 - Firaxis Games) Hidden Sierra-Dienstprogramme (x32 Version: - ) Skype™ 6.13 (x32 Version: 6.13.104 - Skype Technologies S.A.) SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden SmartTools Publishing • Outlook LockOutlook (x32 Version: v4.00 - SmartTools Publishing) Spooky Sounds (x32 Version: 2.1.0 - Screaming Bee) Star Trek Online (x32 Version: - Cryptic Studios) Steam (x32 Version: 1.0.0.0 - Valve Corporation) Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (Version: 14.0.19.0 - Synaptics Incorporated) System Requirements Lab for Intel (x32 Version: 4.5.15.0 - Husdawg, LLC) TeamSpeak 3 Client (HKCU Version: 3.0.13 - TeamSpeak Systems GmbH) TERA (x32 Version: 7 - Gameforge Productions GmbH) Text-To-Speech-Runtime (x32 Version: 1.0.0.0 - Magix Development GmbH) Translator Fun Voice Pack (x32 Version: 1.5.0 - Screaming Bee) TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Virtual DJ Pro Full - Atomix Productions (x32 Version: - ) Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden VLC media player 2.1.2 (Version: 2.1.2 - VideoLAN) VSClassic (x32 Version: 15.0.0.258 - Corel Corporation) Hidden VSHelp (x32 Version: 15.0.0.258 - Corel Corporation) Hidden VSPro (x32 Version: 15.0.0.258 - Corel Corporation) Hidden WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden Winamp (x32 Version: 5.65 - Nullsoft, Inc) Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc) Windows Media Encoder 9 Series (x32 Version: - ) Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH) Worms Armageddon (x32 Version: - ) Worms World Party (x32 Version: - ) X10 Hardware(TM) (x32 Version: - ) ==================== Restore Points ========================= 26-01-2014 15:36:15 Windows Update 28-01-2014 16:14:26 Microsoft Office 2003 Web Components wird installiert 30-01-2014 14:10:00 Windows Update 03-02-2014 18:03:34 Windows Update ==================== Hosts content: ========================== 2009-07-14 03:34 - 2014-02-03 18:14 - 00000871 ___AC C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 rad.msn.com ==================== Scheduled Tasks (whitelisted) ============= Task: {0052B3E0-CD48-4645-9B05-2DD2D5FE59F2} - System32\Tasks\{7F2BEF3C-1702-4CE3-92A5-31BBBA30A504} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {0146E4C2-13DC-4368-A6B7-D5CF252D6997} - System32\Tasks\{EEEDB95D-08F3-442A-8D8B-D3DA84E659E3} => E:\AUTORUN.EXE Task: {05463694-75B9-4BE3-9B3B-800D10AB67E5} - System32\Tasks\{92A80300-B86A-4486-83DF-40A2210AD209} => C:\Voelker2\DieVölker2\bin\Game.exe Task: {10CB193C-53C1-4E38-BC3B-8BE0F0EFBA30} - System32\Tasks\{0FF87F05-F93F-4EA6-BB4C-42AC41C141F3} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe Task: {141DAE6E-AB19-4698-A390-AA3577138437} - System32\Tasks\{94C030CB-4D91-45C1-A34E-BBA10E012375} => E:\S2\SETUP.EXE Task: {146E7991-4825-4936-A698-6A2A9ABCB104} - System32\Tasks\{3C36117E-8926-4783-AC4C-D1B8C38F2D02} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe Task: {158F82B5-9D27-41D4-9C70-42B888C7C636} - System32\Tasks\{40CF2673-31FE-42B2-B5D6-9EDA7CA7E074} => E:\S2\SETUP.EXE Task: {15EBF901-034E-4560-86AD-430162A3F85F} - System32\Tasks\{6D05EFDD-B539-4AA5-AA7C-3C3F5EA8B7E7} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {16685128-43F7-4FEB-8EF9-8ED19E50FAB3} - System32\Tasks\{BDEFC5EB-FF3E-4DB9-922F-18F92A8F9501} => E:\S2\SETUP.EXE Task: {182BD8E5-8F56-4489-B03E-752E05F8B240} - System32\Tasks\{CDA55D36-8DF0-41E4-B91F-A867A295CA40} => E:\S2\SETUP.EXE Task: {1B18848F-9874-4EF8-827B-D1940EB66F97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.) Task: {1F9EF73A-547A-499D-81A8-38F5BAAB9D90} - System32\Tasks\{1FB1189B-4A13-4061-8C74-1464D7BFBABF} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {21712D36-1001-44CB-854A-5AD64B1DC146} - System32\Tasks\{BA3F1772-A7D2-4B5A-A09C-0209BB7D8008} => E:\S2\SETUP.EXE Task: {2275B0EB-3BB1-4D92-AAA9-9E3AF4E64338} - System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd) Task: {23FC5B23-2D5F-41BB-8197-E5BF90F1094C} - System32\Tasks\{68D46493-E0E4-4139-9E3D-DE0764CB9EA8} => E:\AUTORUN.EXE Task: {256AB0F1-34E6-44DD-8476-F7FCA8DAAA9B} - System32\Tasks\{966F5682-3102-46EB-9C86-3634FFFE6CFA} => E:\S2\SETUP.EXE Task: {290DA27A-6B42-4FC5-BC9D-B287608BBF99} - System32\Tasks\{5D69D029-4F89-42C2-8F71-F657145E1685} => C:\Users\Daniel\Desktop\FFS20_Deu_Full.exe Task: {29CE8A34-DC14-442B-8626-4D134A82C9AE} - System32\Tasks\{E856EACC-A5FB-412B-8CFA-3BB71A8C8E08} => E:\S2\SETUP.EXE Task: {2B0CD943-0873-489B-8C70-85C6370771A3} - System32\Tasks\{12AE0E5B-084A-4433-90FF-9E76E054AACB} => C:\Die Völker 2\DieVölker2\bin\Game.exe Task: {2B1FFE5E-812A-4AEC-8869-70FAAAC46EE2} - System32\Tasks\{8FB71093-FDC3-4660-9BA9-AB685F171D45} => C:\Program Files (x86)\Anno 1701\Anno1701.exe [2007-10-20] (Related Designs Software GmbH) Task: {2BBFF583-2992-496F-BC5F-E4CFA4144CC7} - System32\Tasks\{AED448DE-9E65-4A47-8CED-BCACCE365CB7} => C:\Users\Daniel\Desktop\c3up11De.EXE Task: {316BBC71-9744-421E-B08F-4824A90A29EA} - System32\Tasks\{37FCF798-62A0-4DDD-8915-98DF52D67371} => C:\Users\Daniel\Desktop\MassEffect_BDtS_G_a.exe Task: {35440900-5B0D-45C6-9CA3-1D1630231902} - System32\Tasks\{A1F70949-7DB6-4A23-8B76-293576F1B899} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN) Task: {40F39DB0-F75F-4F8F-8AA5-A7327A1E290D} - System32\Tasks\{AE5B5A87-81B2-42A9-9A74-550525F4940F} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe Task: {41A87A6B-C582-4F2D-8597-A723964CC71A} - System32\Tasks\{5D0B6982-DE4D-4CC0-AB2B-98754F07700B} => C:\Die Völker 2\DieVölker2\bin\Game.exe Task: {451D621F-6FFD-4089-93FE-270A9D2DE6DA} - System32\Tasks\{E2B047D4-D8BD-4693-B5B3-010EF3D97A56} => E:\bhvstart.exe Task: {47DF6057-A1FD-4A77-A813-3F691D2DDE1F} - System32\Tasks\{810EBF1A-8F17-441C-B563-3C43E33C03CD} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {48A3C185-9AC2-4F2F-940D-DA73CE675CE4} - System32\Tasks\{073A5D00-C4F9-4990-A885-8D366629D006} => E:\S2\SETUP.EXE Task: {4C820340-8F6B-4CEC-AA89-8B64222456B0} - System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} => C:\Users\Daniel\Desktop\spiele\pokegen\programm\c gear\PokeCGear.exe [2011-01-14] () Task: {5293CE73-94BE-449D-95AD-5BE339716D0D} - System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} => c:\program files (x86)\opera\opera.exe [2013-11-24] (Opera Software) Task: {54C90F0A-8143-4086-BD6C-E8F6173D6B16} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-23] (AVAST Software) Task: {5A330F3D-65AE-4D4C-81D4-E64FEA83D5D9} - System32\Tasks\{E8DB0424-DD34-4B5E-ABA1-8F87BA189D0B} => C:\Program Files\FileViewPro\FileViewPro.exe [2013-11-18] () Task: {5E3F78E3-D239-4E26-B09A-1E1D02A3A0F4} - System32\Tasks\{D2222B24-F51D-4DBD-B431-AC065B5CBCA9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {6BD68BC3-51C8-411C-AFA6-8F6729835575} - System32\Tasks\{131AF74A-19DF-443F-B4C1-82A8AA55497A} => E:\S2\SETUP.EXE Task: {7A4636B7-F05B-4249-8AB0-DAFF11C962A7} - System32\Tasks\{B515B6F0-4FFF-4CBA-893E-D3FCA3106B64} => E:\S2\SETUP.EXE Task: {7C9D8C03-6A35-487F-9016-E7A5E53BA833} - System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd) Task: {7EF75918-6B2B-4300-888A-ED73DEBECBBF} - System32\Tasks\{3BE362E2-E75B-429E-9FC4-7B3B8D11B963} => E:\S2\SETUP.EXE Task: {805D9E42-8317-4C78-82F6-946B5DE8A0C7} - System32\Tasks\{678365FC-379B-4E24-8568-D579CE2F2C7E} => E:\S2\SETUP.EXE Task: {8C335720-465F-4ACF-97C0-6E46FA18E7E9} - System32\Tasks\{F15A6F01-F619-4817-90FB-C09F19CB63F5} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {91F56EAD-6C3B-436A-A540-1B3C95D9A052} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-16] (Adobe Systems Incorporated) Task: {9431E549-F644-4FE1-98C5-C72AC9CD37ED} - System32\Tasks\{652A2BC8-55C4-41C0-8B47-06EA583CE2D3} => E:\S2\SETUP.EXE Task: {953A719E-FDEC-4852-BCC9-1459D68B3BC4} - System32\Tasks\{FBB1652A-75F8-4D32-BA6C-0BD7071B4B4A} => E:\S2\SETUP.EXE Task: {9C100C66-5F10-4548-8B69-E3CDB0BF606D} - System32\Tasks\{4994E248-B0AD-46CA-AF2E-310612827F2E} => E:\S2\SETUP.EXE Task: {9E16B815-46D6-4F9B-A140-C810E8BD3C46} - System32\Tasks\{87BD9F31-A0C4-47D4-83F6-B3EEAB2B4AEB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH) Task: {A4F101B4-2127-4730-A5A0-220A141EE63D} - System32\Tasks\{F6CB6A22-E114-4CB3-B3C9-953D284AE683} => C:\Users\Daniel\Desktop\FFS20_Deu_Full.exe Task: {AB9A30AF-E579-445E-A157-A50D32A862FA} - System32\Tasks\{1BC5009A-C623-4DA0-9118-CADA3959EEAA} => E:\S2\SETUP.EXE Task: {AC3B6A3B-E516-41A0-BE7B-AE74D6F05EE5} - System32\Tasks\{26F8FEE5-EBEF-4BF2-9960-B3F3C8A758EC} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {ADCDF35A-0D81-4315-B30C-9FAC42DDAE19} - System32\Tasks\{FBFC2A81-70A5-4C34-AD06-B257CD752FE9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {B0ADE302-1717-472E-912A-21887DE485B5} - System32\Tasks\{C5EB8D0E-8B8B-43C8-8016-A6FCC462946D} => C:\Program Files (x86)\CloneDVD6\MainApp.EXE [2012-11-27] (Aviosoft.) Task: {B48CDE2F-2934-4D81-BA37-A4CC53492B70} - System32\Tasks\{7126DAF6-E7A6-4025-B30F-0E113A7B46D4} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe Task: {B6184494-F268-4AA5-A390-4FC97BCD71CE} - System32\Tasks\{AC7D1521-F5AE-49AD-9106-6809CBEB4215} => E:\S2\SETUP.EXE Task: {BCEBC503-CF3B-45A5-9650-966FF580E545} - System32\Tasks\{B5DF1DB1-C0F9-480C-9281-BB0E6C2EB486} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH) Task: {C191FDC0-4CF1-4F8F-9E82-10875ABED458} - System32\Tasks\{69044440-C839-428E-8079-6D3979B6842D} => E:\S2\SETUP.EXE Task: {C409ADF5-FF12-4451-B6D1-ABF4D1DC6510} - System32\Tasks\{41DDBE48-43A3-48E0-9048-FF8D6F08DF4F} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {C67A266A-5DC1-41D6-BADD-BC0F4B90CCA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd) Task: {C67C2332-CE25-4759-ACB1-21EE7AFDC3FA} - System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} => C:\Users\Daniel\Downloads\STO_Online_ServerChecker.exe Task: {CD11ECCA-157C-43CA-B7A7-35C95D3EB1E0} - System32\Tasks\{55B58783-E133-4F90-9909-7A0BA16C1073} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {CDE261B1-8B17-44EC-A7C1-47055128E765} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.) Task: {CFE9CA76-1416-4888-BDB0-CF30D54F1E41} - System32\Tasks\{BE174E91-202D-4B20-8B77-A9509C30AF97} => E:\S2\SETUP.EXE Task: {D24DA4B0-1A08-4A6F-92AB-842D16821219} - System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd) Task: {D5475704-31C1-4F9A-9F96-87742F55F1B8} - System32\Tasks\{396AB30D-E0FA-42C6-853F-325CA099A4CA} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe Task: {DAA47877-F275-4DC4-8719-853FA4CA95EE} - System32\Tasks\{663B9866-54C7-46F1-BAAF-0F7203E79B3B} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN) Task: {E057A7C3-A541-43F2-9106-667F7102D12D} - System32\Tasks\{3B22FD6B-6978-4EC1-867B-3AEAC82D7C80} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: {E062A614-05FF-4598-85EE-06AD7420CC8B} - System32\Tasks\{ED0A83FB-4A12-4E5A-B587-37357929ACB1} => C:\Users\Daniel\Desktop\c3up11De.EXE Task: {E92D482A-975D-487D-BF28-EAFEB9F3B2A1} - System32\Tasks\{DCB5CC94-301F-46D1-9D76-95232ED99F04} => E:\S2\SETUP.EXE Task: {E9D3F432-A90C-4B1A-8088-6A66F9FF9253} - System32\Tasks\{0C327DCE-02DB-495E-B0EE-43000B4098DE} => C:\BlueByte\Siedler3\s3.exe [2000-02-15] (Blue Byte ) Task: {EC390F5C-2E7E-4509-A5AC-1586E03077EB} - System32\Tasks\{13AC6F75-921C-4FC2-9162-219DC0C4B4EB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH) Task: {F423C561-80AB-48ED-B98F-22F5E35F9576} - System32\Tasks\{50E458ED-E7F4-4DB3-A9B8-E8FEBE776D73} => E:\DieVoelkerGE.exe Task: {FA534E6C-82BF-413F-A76C-44FAF30F4156} - System32\Tasks\{A2C44D26-5E7A-4773-B378-D2EAB102F3DB} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-03-14 17:28 - 2013-03-14 17:28 - 00653824 ____C () C:\Program Files (x86)\4shared Desktop\CMenu64.dll 2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 ____C () C:\Program Files (x86)\Notepad++\NppShell_05.dll 2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-01-29 13:39 - 2014-01-28 17:44 - 02166272 ____C () C:\Program Files\AVAST Software\Avast\defs\14012801\algo.dll 2014-02-04 17:55 - 2014-02-04 09:16 - 02168320 ____C () C:\Program Files\AVAST Software\Avast\defs\14020400\algo.dll 2013-07-31 20:06 - 2010-02-10 12:34 - 00031840 ____C () C:\Program Files (x86)\Cyberlink\Shared files\RichVideops.dll 2009-11-02 13:20 - 2009-11-02 13:20 - 00619816 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll 2009-11-02 13:23 - 2009-11-02 13:23 - 00013096 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll 2013-10-15 13:34 - 2009-02-27 15:39 - 00019968 ____C () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu 2013-12-09 01:49 - 2013-12-09 01:49 - 19336120 ____C () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-11-15 01:49 - 2013-11-15 01:49 - 00100688 ____C () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00835584 ____C () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00093696 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00094208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00057344 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00096256 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00062976 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00067072 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00158208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00312832 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00038912 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00073728 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll 2013-09-20 13:36 - 2013-11-24 18:08 - 00101888 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/04/2014 04:31:22 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: spoolsv.exe, Version: 6.1.7601.17777, Zeitstempel: 0x4f35fc1d Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24 Ausnahmecode: 0xc0000374 Fehleroffset: 0x00000000000c4102 ID des fehlerhaften Prozesses: 0x77c Startzeit der fehlerhaften Anwendung: 0xspoolsv.exe0 Pfad der fehlerhaften Anwendung: spoolsv.exe1 Pfad des fehlerhaften Moduls: spoolsv.exe2 Berichtskennung: spoolsv.exe3 Error: (02/02/2014 03:38:29 PM) (Source: Application Hang) (User: ) Description: Programm Md8Rntm.exe, Version 6.0.0.151 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: ef4 Startzeit: 01cf202445ad1f84 Endzeit: 1420 Anwendungspfad: E:\RUNTIME\Md8Rntm.exe Berichts-ID: a6c64675-8c17-11e3-8a96-00262dc36228 Error: (01/28/2014 05:03:37 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können. System errors: ============= Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (02/04/2014 05:49:23 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Microsoft Office Sessions: ========================= Error: (02/04/2014 04:31:22 AM) (Source: Application Error)(User: ) Description: spoolsv.exe6.1.7601.177774f35fc1dntdll.dll6.1.7601.18247521eaf24c000037400000000000c410277c01cf1d8d9b889c6aC:\Windows\System32\spoolsv.exeC:\Windows\SYSTEM32\ntdll.dlld0cec5d3-8d4c-11e3-8a96-00262dc36228 Error: (02/02/2014 03:38:29 PM) (Source: Application Hang)(User: ) Description: Md8Rntm.exe6.0.0.151ef401cf202445ad1f841420E:\RUNTIME\Md8Rntm.exea6c64675-8c17-11e3-8a96-00262dc36228 Error: (01/28/2014 05:03:37 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion) Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL) CodeIntegrity Errors: =================================== Date: 2014-01-30 08:35:39.467 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-30 08:35:39.337 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-27 13:27:04.527 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-27 13:27:04.397 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-27 00:03:17.886 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-27 00:03:17.756 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-23 14:22:30.234 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-23 14:22:30.094 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-23 12:52:27.444 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2014-01-23 12:52:27.304 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. ==================== Memory info =========================== Percentage of memory in use: 64% Total physical RAM: 3893.49 MB Available physical RAM: 1363.7 MB Total Pagefile: 7785.16 MB Available Pagefile: 4532.35 MB Total Virtual: 8192 MB Available Virtual: 8191.81 MB ==================== Drives ================================ Drive c: (Boot) (Fixed) (Total:546.25 GB) (Free:64.79 GB) NTFS Drive d: (Recover) (Fixed) (Total:48.83 GB) (Free:6.12 GB) NTFS Drive e: (Daten Medium 19.10.2005 (2)) (CDROM) (Total:0.44 GB) (Free:0 GB) UDF Drive g: (EOS_DIGITAL) (Removable) (Total:3.68 GB) (Free:0.09 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 2BD2C32A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=546 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=49 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=1023 MB) - (Type=12) ======================================================== Disk: 1 (Size: 4 GB) (Disk ID: 00000000) Partition 1: (Not Active) - (Size=4 GB) - (Type=0B) ==================== End Of Log ============================ und das hier ist ein privat rechner kein gewerblich genutzter *gg* |
04.02.2014, 18:13 | #4 |
| werbung in skype deaktivieren Die werbung ist normal hab ich auch,und wen es ein virus sein würde wer die werbung bestimmt nicht von Skype selber aber vieleicht gibt es ja ein plugin das die skype werbung ausblendet
__________________ Mfg K1ramox |
04.02.2014, 18:18 | #5 |
| werbung in skype deaktivieren nicht die standard werbung unten links XD oben beim chat ist die werbung und ich habe auch bei einen anderenr echner skype drauf und dort ist die nicht vorhanden sie ist ja auch erst seit samstag in skype oben. vorher gar nix. ^^ |
04.02.2014, 18:33 | #6 |
| werbung in skype deaktivieren Ja das ist normal aber ich glaub wen man ne ältere version von skype läd ist da auch keine werbung
__________________ --> werbung in skype deaktivieren |
04.02.2014, 18:36 | #7 |
| werbung in skype deaktivieren ist aktuelste version ^^ und die habe ich auch beim anderen drauf ^^ |
04.02.2014, 20:04 | #8 |
/// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten |
05.02.2014, 20:12 | #9 |
| werbung in skype deaktivierenCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009 www.malwarebytes.org Database version: v2014.02.05.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Daniel :: MEDION [administrator] 05.02.2014 15:23:19 mbar-log-2014-02-05 (15-23-19).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged. Objects scanned: 310041 Time elapsed: 2 hour(s), 39 minute(s), 44 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) |
06.02.2014, 03:22 | #10 |
/// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Adware/Junkware/Toolbars entfernen 1. Schritt: adwCleaner Downloade Dir bitte AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
06.02.2014, 13:38 | #11 |
| werbung in skype deaktivierenFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014 Ran by Daniel (administrator) on MEDION on 06-02-2014 13:32:15 Running from C:\Users\Daniel\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe (Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated) HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company) HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation) HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink) HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink) HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.) HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC) HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron) HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.) HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.) HKLM-x32\...\Run: [] - [X] HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.) HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-23] (AVAST Software) HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] () HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [AdobeBridge] - [X] HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [ISUSPM] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-05-16] (Macrovision Corporation) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.) HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\start.exe Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.) ==================== Internet (Whitelisted) ==================== SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://search.reimageplus.com/?sp=reimb&q={searchTerms} BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Chrome: ======= CHR HomePage: CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-11] CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-11] CHR Extension: (Turn Off the Lights) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2013-11-13] CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-11] CHR Extension: (Cake Mania Main Street) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohogdkongdgejlnndnnhamjgfnbfoon [2013-11-13] CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bolmkphclbnmjlbmibfcnfggbakghpck [2013-11-13] CHR Extension: (Mangas und Comics auf Deutsch) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\chmidfbpiiicmkfimcbcoagpmchgmkpl [2013-11-13] CHR Extension: (Monster Dash) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog [2013-11-13] CHR Extension: (Google-Suche) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-11] CHR Extension: (Search by Image (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-13] CHR Extension: (avast! Online Security) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-09] CHR Extension: (TinEye Reverse Image Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2013-11-13] CHR Extension: (Cake Mania) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckjnbilaljpiclmpmnomoapakjmoapj [2013-11-13] CHR Extension: (SparkChess 6) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem [2013-11-13] CHR Extension: (Sand 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\klicmgamjpclmbhppmdeamffedflmkcn [2013-11-13] CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-11] CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-11] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-09] ==================== Services (Whitelisted) ================= S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated) R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [5101928 2014-01-23] (Reimage®) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-23] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-23] (AVAST Software) R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project) R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-24] () R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] () R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.) R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2009-11-07] (X10) ==================== Drivers (Whitelisted) ==================== R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2013-12-09] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-23] (AVAST Software) R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [440672 2014-01-23] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-09] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-23] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-23] (AVAST Software) R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-23] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-21] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] () R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] () S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-02-05] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA) S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] () R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.) S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.) U3 DfSdkS; S3 dgderdrv; System32\drivers\dgderdrv.sys [X] S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-06 13:29 - 2014-02-06 13:29 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Mozilla 2014-02-06 13:18 - 2014-02-06 13:18 - 00000626 ____C () C:\Users\Daniel\Desktop\JRT.txt 2014-02-06 13:01 - 2014-02-06 13:01 - 02082304 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe 2014-02-06 13:00 - 2014-02-06 13:01 - 01037530 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe 2014-02-06 07:41 - 2014-02-06 07:43 - 00000000 ___DC () C:\AdwCleaner 2014-02-06 07:40 - 2014-02-06 07:40 - 01166132 ____C () C:\Users\Daniel\Desktop\adwcleaner.exe 2014-02-05 13:43 - 2014-02-05 20:11 - 00000000 ___DC () C:\Users\Daniel\Desktop\mbar 2014-02-05 13:43 - 2014-02-05 13:43 - 00091352 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-02-05 13:38 - 2014-02-05 13:38 - 12589848 ____C (Malwarebytes Corp.) C:\Users\Daniel\Desktop\mbar-1.07.0.1009.exe 2014-02-04 18:47 - 2009-01-08 00:44 - 00000000 ___DC () C:\Users\Daniel\Desktop\RSVP 2014-02-04 17:58 - 2014-02-04 17:58 - 00061923 ____C () C:\Users\Daniel\Desktop\Addition.txt 2014-02-04 17:57 - 2014-02-06 13:32 - 00017663 ____C () C:\Users\Daniel\Desktop\FRST.txt 2014-02-04 17:57 - 2014-02-06 13:32 - 00000000 ___DC () C:\FRST 2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype 2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk 2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype 2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} 2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm 2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works 2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip 2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip 2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} 2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} 2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker 2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup 2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee 2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-16 14:29 - 2014-01-16 14:28 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-16 14:29 - 2014-01-16 14:28 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java 2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC 2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\ProgramData\Screaming Bee 2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee 2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk 2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini 2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk 2014-01-15 08:15 - 2014-01-15 13:45 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-15 08:15 - 2014-01-15 13:44 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 08:15 - 2013-11-27 02:41 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design 2014-01-12 22:25 - 2014-01-12 22:29 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8 2014-01-12 22:25 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design 2014-01-12 22:25 - 2012-03-01 11:08 - 00966144 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00877568 ____C (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00634880 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00522752 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00467968 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll 2014-01-12 22:25 - 2012-03-01 11:08 - 00467456 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll 2014-01-12 22:25 - 2012-02-11 21:07 - 00413696 ____C (Gabest) C:\Windows\SysWOW64\flvsplitter.ax 2014-01-12 22:25 - 2011-03-29 12:52 - 00962560 ____C (East Wind Software) C:\Windows\SysWOW64\advdaudio.ocx 2014-01-12 22:25 - 2011-03-29 12:52 - 00110080 ____C () C:\Windows\SysWOW64\advd.dll 2014-01-12 22:25 - 2011-03-29 12:52 - 00023040 ____C () C:\Windows\SysWOW64\auth.dll 2014-01-12 22:25 - 2003-08-07 14:01 - 00237568 ____C () C:\Windows\SysWOW64\lame_enc.dll 2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk 2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games 2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ 2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone 2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk ==================== One Month Modified Files and Folders ======= 2014-02-06 13:32 - 2014-02-04 17:57 - 00017663 ____C () C:\Users\Daniel\Desktop\FRST.txt 2014-02-06 13:32 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST 2014-02-06 13:32 - 2013-08-01 16:23 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Skype 2014-02-06 13:29 - 2014-02-06 13:29 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Mozilla 2014-02-06 13:29 - 2013-11-07 14:54 - 00000000 ___DC () C:\Program Files\AntiToolbar 2014-02-06 13:28 - 2013-11-07 14:55 - 00001734 ____C () C:\Users\Public\Desktop\AntiToolbar.lnk 2014-02-06 13:28 - 2013-11-07 14:55 - 00000000 ___DC () C:\ProgramData\AntiToolbar 2014-02-06 13:21 - 2013-11-18 10:37 - 00009563 ____C () C:\Windows\setupact.log 2014-02-06 13:21 - 2013-11-11 16:47 - 00001106 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-06 13:21 - 2009-07-14 06:08 - 00000006 ___HC () C:\Windows\Tasks\SA.DAT 2014-02-06 13:20 - 2013-08-14 08:41 - 02029335 ____C () C:\Windows\WindowsUpdate.log 2014-02-06 13:18 - 2014-02-06 13:18 - 00000626 ____C () C:\Users\Daniel\Desktop\JRT.txt 2014-02-06 13:08 - 2013-07-31 21:11 - 00000884 ____C () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-06 13:05 - 2013-11-21 00:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\bilder 2014-02-06 13:01 - 2014-02-06 13:01 - 02082304 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe 2014-02-06 13:01 - 2014-02-06 13:00 - 01037530 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe 2014-02-06 12:57 - 2013-11-11 16:47 - 00001110 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-06 07:55 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-06 07:55 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-06 07:43 - 2014-02-06 07:41 - 00000000 ___DC () C:\AdwCleaner 2014-02-06 07:40 - 2014-02-06 07:40 - 01166132 ____C () C:\Users\Daniel\Desktop\adwcleaner.exe 2014-02-05 20:11 - 2014-02-05 13:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\mbar 2014-02-05 20:11 - 2013-10-06 12:38 - 00000000 ___DC () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-02-05 14:29 - 2013-08-13 17:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\SecondLife 2014-02-05 13:43 - 2014-02-05 13:43 - 00091352 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-02-05 13:43 - 2013-08-02 16:40 - 00000000 ___DC () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-02-05 13:38 - 2014-02-05 13:38 - 12589848 ____C (Malwarebytes Corp.) C:\Users\Daniel\Desktop\mbar-1.07.0.1009.exe 2014-02-05 10:08 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-02-05 10:08 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-02-05 10:08 - 2013-07-31 21:11 - 00003822 ____C () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-05 09:58 - 2013-11-11 16:48 - 00002139 ____C () C:\Users\Public\Desktop\Google Chrome.lnk 2014-02-04 18:16 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\system32\NDF 2014-02-04 17:58 - 2014-02-04 17:58 - 00061923 ____C () C:\Users\Daniel\Desktop\Addition.txt 2014-02-04 00:29 - 2010-05-12 09:18 - 00699340 ____C () C:\Windows\system32\perfh007.dat 2014-02-04 00:29 - 2010-05-12 09:18 - 00149448 ____C () C:\Windows\system32\perfc007.dat 2014-02-04 00:29 - 2009-07-14 06:13 - 01619272 ____C () C:\Windows\system32\PerfStringBackup.INI 2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype 2014-02-03 18:33 - 2013-08-01 16:23 - 00000000 ___DC () C:\ProgramData\Skype 2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk 2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype 2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} 2014-02-03 17:19 - 2013-08-01 16:06 - 00000000 ___DC () C:\Users\Daniel\Documents\Youcam 2014-02-02 19:51 - 2013-08-19 06:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\vlc 2014-01-30 08:37 - 2013-12-09 01:49 - 00004182 ____C () C:\Windows\System32\Tasks\avast! Emergency Update 2014-01-30 08:33 - 2013-11-18 10:37 - 03268424 ____C () C:\Windows\system32\FNTCACHE.DAT 2014-01-29 23:11 - 2013-11-19 16:01 - 00217648 ____C () C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-29 14:07 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\TS3Client 2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm 2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works 2014-01-28 17:13 - 2013-08-02 18:31 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Office 2014-01-28 17:12 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\Help 2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip 2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip 2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} 2014-01-26 17:24 - 2013-08-03 19:09 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\CrashDumps 2014-01-25 16:55 - 2013-07-31 20:43 - 00000000 __RDC () C:\Users\Daniel\Desktop\Dj Musik 2014-01-24 17:14 - 2013-09-06 12:54 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\.minecraft 2014-01-23 14:11 - 2013-12-09 01:50 - 00002036 ____C () C:\Users\Public\Desktop\avast! SafeZone.lnk 2014-01-23 14:11 - 2013-12-09 01:50 - 00001976 ____C () C:\Users\Public\Desktop\avast! Internet Security.lnk 2014-01-23 14:10 - 2013-12-21 23:19 - 00080184 ____C (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 01038072 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00421704 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00334136 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-01-23 14:10 - 2013-12-09 01:49 - 00078648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-01-23 14:10 - 2013-12-09 01:49 - 00043152 ____C (AVAST Software) C:\Windows\avastSS.scr 2014-01-23 14:09 - 2013-12-09 01:48 - 00440672 ____C (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys 2014-01-23 12:59 - 2013-11-01 16:13 - 00000000 ___DC () C:\Users\Daniel\Downloads\programe 2014-01-23 12:58 - 2013-11-01 16:12 - 00000000 ___DC () C:\Users\Daniel\Downloads\rar verzeichnisse 2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} 2014-01-21 22:30 - 2013-08-06 00:06 - 00000000 ___DC () C:\ProgramData\firebird 2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker 2014-01-21 15:22 - 2013-08-01 16:05 - 00000000 ___DC () C:\Users\Daniel\Documents\Manfred 2014-01-20 21:40 - 2013-08-01 22:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Utherverse 2014-01-16 15:16 - 2013-12-08 20:28 - 00000000 ___DC () C:\Users\Daniel\Desktop\programme 2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup 2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee 2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\ProgramData\Screaming Bee 2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee 2014-01-16 14:38 - 2013-07-31 21:10 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Adobe 2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-01-16 14:37 - 2013-10-20 00:56 - 00000000 ___DC () C:\ProgramData\Oracle 2014-01-16 14:37 - 2013-07-31 21:11 - 00000000 ___DC () C:\Program Files (x86)\Java 2014-01-16 14:28 - 2014-01-16 14:29 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-16 14:28 - 2014-01-16 14:29 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java 2014-01-16 14:27 - 2013-12-16 02:22 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\BitTorrent 2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC 2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk 2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini 2014-01-16 13:45 - 2013-07-31 18:47 - 00000000 ___DC () C:\Users\Daniel 2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk 2014-01-16 13:42 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client 2014-01-16 13:38 - 2013-11-19 18:45 - 00000000 ___DC () C:\Users\Daniel\Desktop\sims 2014-01-16 13:38 - 2013-08-21 22:22 - 00000000 ___DC () C:\Users\Daniel\Desktop\spiele 2014-01-15 13:45 - 2014-01-15 08:15 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-15 13:44 - 2014-01-15 08:15 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 13:44 - 2009-07-14 03:34 - 00000634 ____C () C:\Windows\win.ini 2014-01-15 13:43 - 2013-08-01 10:11 - 00000000 ___DC () C:\Windows\system32\MRT 2014-01-15 13:38 - 2013-07-31 22:46 - 86054176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-12 22:29 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8 2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio 2014-01-12 22:27 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design 2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design 2014-01-12 22:25 - 2013-11-30 14:03 - 00000000 ___DC () C:\Program Files (x86)\Franzis 2014-01-12 00:00 - 2013-11-20 00:00 - 00198156 ____C () C:\Windows\PFRO.log 2014-01-11 09:50 - 2013-09-20 20:07 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk 2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games 2014-01-11 09:48 - 2013-07-31 18:53 - 00000000 __HDC () C:\Program Files (x86)\InstallShield Installation Information 2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences 2014-01-10 07:10 - 2013-10-16 09:23 - 00000000 ___DC () C:\Users\Daniel\Documents\Mama 2013 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ 2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ 2014-01-09 02:28 - 2013-08-03 15:10 - 00000000 __RDC () C:\Users\Daniel\Dropbox 2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone 2014-01-08 21:46 - 2013-08-19 06:16 - 00000919 ____C () C:\Users\Public\Desktop\VLC media player.lnk 2014-01-08 15:34 - 2013-08-03 15:06 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Dropbox 2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk 2014-01-08 06:43 - 2013-07-31 21:36 - 00001612 ____C () C:\Users\Daniel\Desktop\DivX Movies.lnk 2014-01-08 06:43 - 2013-07-31 21:31 - 00000000 ___DC () C:\Program Files (x86)\DivX 2014-01-08 06:43 - 2013-07-31 21:29 - 00000000 ___DC () C:\ProgramData\DivX 2014-01-08 06:42 - 2013-09-10 00:46 - 00001091 ____C () C:\Users\Public\Desktop\DivX Converter.lnk Some content of TEMP: ==================== C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll C:\Users\Daniel\AppData\Local\Temp\ginstall.dll C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe C:\Users\Daniel\AppData\Local\Temp\Second_Life_3_6_13_284995_i686_Setup.exe C:\Users\Daniel\AppData\Local\Temp\vlc-2.1.2-win64.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 00:09 ==================== End Of Log ============================ Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.1 (02.04.2014:1) OS: Windows 7 Home Premium x64 Ran by Daniel on 06.02.2014 at 13:11:12,04 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 06.02.2014 at 13:18:28,92 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 06/02/2014 um 07:43:37 # Updated 28/01/2014 von Xplode # Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits) # Benutzername : Daniel - MEDION # Gestartet von : C:\Users\Daniel\Desktop\adwcleaner.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Ordner Gelöscht : C:\Users\Daniel\AppData\LocalLow\boost_interprocess Datei Gelöscht : C:\END ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785} Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785} Schlüssel Gelöscht : HKCU\Software\Conduit ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Google Chrome v32.0.1700.107 [ Datei : C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1546 octets] - [06/02/2014 07:41:55] AdwCleaner[S0].txt - [1411 octets] - [06/02/2014 07:43:37] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1471 octets] ########## |
06.02.2014, 13:48 | #12 |
/// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM) Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
06.02.2014, 21:06 | #13 |
| werbung in skype deaktivierenCode:
ATTFilter ESETSmartInstaller@High as downloader log: all ok ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=a37a664c38115042b1a74b6c25e14e5a # engine=16964 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2014-02-06 08:02:07 # local_time=2014-02-06 09:02:07 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=772 16777213 66 82 1237166 5170364 0 0 # compatibility_mode=5893 16776573 100 94 30607 143346777 0 0 # scanned=647095 # found=3 # cleaned=0 # scan_time=22824 sh=C513DDE65EE06D8741EE7093623DD1264810A39F ft=0 fh=0000000000000000 vn="JS/Exploit.Pdfka.PNY trojan" ac=I fn="C:\Users\Daniel\Documents\My 3D Models\Deep Exploration 5 Example Files\Feature Examples\Example PDF Output\Transmission with Steps, Realited and Compressed.pdf" sh=D8E3B8B8FDAA7E194A8858150EDAF28C389CBFA5 ft=0 fh=0000000000000000 vn="Win32/AdWare.Linkular.AH application" ac=I fn="C:\Users\Daniel\Dropbox\programme\Light Image Resizer v4.4.1.0 with Key [TorDigger].zip" sh=7C1AA1A980D6CA3E5C3B609426C6C45AA358CE79 ft=0 fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Users\Daniel\Dropbox\programme\studio.rar" Code:
ATTFilter Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.06.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Daniel :: MEDION [Administrator] Schutz: Aktiviert 06.02.2014 14:16:10 mbam-log-2014-02-06 (14-16-10).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 259914 Laufzeit: 12 Minute(n), 27 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
07.02.2014, 00:33 | #14 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivierenZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
07.02.2014, 09:33 | #15 |
| werbung in skype deaktivieren eine ist light image resizer als exe mit meinen key gepackt das andere ist deep exploration studio als iso von einer cd erste von website runter geladen von ligfht image resizer 2 von meiner cd die ich gekauft habe ein abbild |
Themen zu werbung in skype deaktivieren |
banner, chats, dauerhaft, deaktivieren, deaktiviert, eingefangen, erhalte, erscheint, folge, folgende, gefangen, home, kurzem, latein, medion, möglichkeit, premium, samstag, skype, version, virus, werbung, windows, windows 7, würde |