Plötzlich weißer oder schwarzer Bildschirm im Internet

frigorifica · 06.02.2014, 10:31

Hallo liebe Helfer, seit einiger Zeit beobachte ich folgendes Problem: Ich bin mit Chrome im Internet z.B. auf Facebook oder Ebay und plötzlich ist die Seite verschwunden und mein Bildschirm ist entweder völlig scharz oder weiß, kein Mauszeiger zu sehen. Es bleibt mir dann nichts anderes übrig, als das Gerät per Knopfdruck auszuschalten. Ich bin mir natürlich nicht sicher, ob das ein Software oder Hardwareproblem ist, aber vielleicht könnt ihr mir helfen.Welche weiteren Infos braucht ihr?

Aneri · 06.02.2014, 10:37

Eine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.

Bitte arbeite alle Schritte der Reihe nach ab.
Lese die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
Nur Scanns durchführen zu denen Du von einem Helfer aufgefordert wirst.
Bitte kein Crossposting ( posten in mehreren Foren).
Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf. Erschwert mir nämlich das auswerten.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist.

Vista und Win7 User
Alle Tools mit Rechtsklick "als Administrator ausführen" starten.

Schritt 1 Hardware

Tritt das Problem nur beim Browser auf oder generell wenn du an dem System arbeitest?
Kontrolliere einmal beide Stecker des Monitorkabels ob hier etwas locker ist.

Tritt der Effekt auf wenn der Montior längere Zeit läuft oder sofort nach Start? DAs könnte auf eine kalte Lötstelle hinweisen.

Schritt 2 Software

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

frigorifica · 06.02.2014, 11:00

Das Problem ist bisher nur beim Surfen im Internet, bei diesen o.g. Seiten und mit Chrome aufgetreten. Es passiert etwa 10 Minuten nach Start des Rechners, ansonsten kann ich den Rechner stundenlang benutzen ohne das so etwas auftritt.

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014
Ran by Ilka (administrator) on ILKA-PC on 06-02-2014 10:51:48
Running from C:\Users\Ilka\Downloads
Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Starfield Technologies, Inc.) C:\Program Files (x86)\Starfield\offSyncService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
() C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe
(Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe
() C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Windows\RAVCpl64.exe [5426688 2007-10-01] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-08-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2012-11-13] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BePCSC] - C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe [130560 2007-05-03] ()
HKLM-x32\...\Run: [SmartMon] - C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe [234496 2006-12-18] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\.DEFAULT\...\Run: [wben] - C:\Program Files (x86)\Starfield\wben.exe [1076432 2010-07-07] (Starfield Technologies, Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [7301A870A0401D35B8EA64B798C40F82AE3726B5._service_run] - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe [866632 2014-02-02] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [Google Update] - C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe [133104 2009-01-08] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [AdobeBridge] - [X]

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=343
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=343
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}
SearchScopes: HKCU - {CE6C1439-11F2-4309-B076-A3FF0992A6DF} URL = hxxp://es.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=302398&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: AusweisApp 1.8.0.0 - {C9EE92B7-EDD5-4ad9-8029-2EC6818E653A} - C:\Program Files (x86)\AusweisApp\siqeCardClient.ols (OpenLimit SignCubes AG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: HKLM-x32 {65EEE2E1-B8D5-4724-8489-048B551045BF} https://karte.seb-bank.de/gei/plugins/SEBChipcardPlugin1211.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{820C886A-5B6E-4869-ACCF-4C424769B1F0}: [NameServer]62.36.225.150,62.37.228.20

FireFox:
========
FF ProfilePath: C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @reiner-sct.com/OWOK,version=2.0.0.4 - C:\Program Files (x86)\REINER SCT\OWOK\NPAPI-20\nprsct_owok_npapi-2004.dll (REINER Kartengeräte GmbH und Co. KG.)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @coreonline.com/run3d,version=1.0 - C:\Users\Ilka\AppData\LocalLow\Square Enix\nprun3d.dll (Square Enix)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: WBE Paste - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\wbepaste@starfield [2010-10-16]
FF Extension: Starfield Zoom - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\zoomext@starfield [2010-10-16]
FF Extension: Santander Chipcard Plugin - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default\Extensions\{fd639891-5cc6-45ae-9055-a7a6abb5a7a9} [2013-04-21]
FF Extension: No Name - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-02-10]
FF Extension: PutLockerDownloader - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi [2012-11-06]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-04-20]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM-x32\...\Firefox\Extensions: [{4F3D26C8-9907-48ff-BC74-B8C572D317BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{4F0963A3-1658-4fde-9585-23A25CC288BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-21]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Skype Toolbars) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (Online File Folder plugin 1.0.0.17) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
CHR Plugin: (Web-Based Email plug-in 1.0.0.13) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (DivX OVS Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Bejeweled) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm [2012-07-17]
CHR Extension: (Search by Image for Google™) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdigejhabbnmfbbebmchkkjhcdjmeli [2011-10-26]
CHR Extension: (Angry Birds) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2011-10-22]
CHR Extension: (BeFunky Photo Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2012-12-14]
CHR Extension: (Immortall) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccgofchligkleafmbnobellmjjoppoin [2011-10-30]
CHR Extension: (Adblock Plus) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2012-08-05]
CHR Extension: (ChromeTheme.net) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgkmdlcgbebbcmjopfcmlbnklimnkbpn [2013-12-08]
CHR Extension: (Google Kalender) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2012-05-21]
CHR Extension: (Elemente und Physik) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcpedjbhjpalhdjkbchahkcceaikoda [2011-11-12]
CHR Extension: (PicMonkey) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2013-04-13]
CHR Extension: (The QR Code Generator) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2012-05-21]
CHR Extension: (AdBlock) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-05-20]
CHR Extension: (Creatures & Castles (Kreaturen & Burgen)) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpeacgpdnhofhebmincihdelcemhagd [2011-10-26]
CHR Extension: (Pixlr Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2012-05-21]
CHR Extension: (DVDVideoSoft) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-06-27]
CHR Extension: (Google Wallet) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Psykopaint) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2011-10-26]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-06-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR StartMenuInternet: Google Chrome - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-12-19] (AVAST Software)
R2 File Backup; C:\Program Files (x86)\Starfield\offSyncService.exe [1310960 2010-07-16] (Starfield Technologies, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MSSQL$MSSMLBIZ; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2009-09-06] ()
R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-12-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-12-19] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [59144 2013-12-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-12-19] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-12-19] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-12-19] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-12-19] ()
S1 Beep; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-20] (DT Soft Ltd)
S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] ()
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2011-07-06] ()
S3 USBCCID; C:\Windows\System32\DRIVERS\usbccid.sys [38400 2009-04-10] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254464 2010-11-09] (Jungo)
S3 ALLOW-IO; \??\H:\ALLOW-IO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U2 SCardDrv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-06 10:51 - 2014-02-06 10:52 - 00027801 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 10:51 - 2014-02-06 10:51 - 00000000 ____D () C:\FRST
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:18 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-06 10:17 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-06 10:17 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-06 10:17 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-06 10:16 - 2014-02-06 10:17 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-05 19:02 - 2014-02-06 09:44 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-01 13:34 - 2014-02-01 13:42 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-20 11:31 - 2014-01-20 11:34 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-12 16:01 - 2014-01-12 16:01 - 00017915 _____ () C:\Users\Ilka\Desktop\Carmen Fuengirola.odt
2014-01-12 13:22 - 2014-01-13 21:16 - 00020152 _____ () C:\Users\Ilka\Desktop\Nico palmeras.odt
2014-01-08 12:57 - 2014-01-08 13:02 - 00000000 ____D () C:\AdwCleaner
2014-01-08 12:56 - 2014-01-08 12:56 - 01233962 _____ () C:\Users\Ilka\Downloads\adwcleaner.exe
2014-01-08 12:25 - 2014-01-08 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 12:25 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-08 12:10 - 2014-01-08 12:10 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-01-08 12:08 - 2014-01-30 23:16 - 00000000 ____D () C:\Users\Ilka\AppData\Local\JDownloader v2.0
2014-01-08 12:07 - 2014-01-08 12:07 - 00077976 _____ (AppWork GmbH) C:\Users\Ilka\Downloads\WebInstallerJD2.exe
2014-01-07 21:22 - 2014-01-07 21:31 - 00016224 _____ () C:\Users\Ilka\Desktop\edwin istan.odt

==================== One Month Modified Files and Folders =======

2014-02-06 10:52 - 2014-02-06 10:51 - 00027801 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 10:51 - 2014-02-06 10:51 - 00000000 ____D () C:\FRST
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:35 - 2012-11-15 09:42 - 00000336 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-02-06 10:28 - 2009-07-01 21:11 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003UA.job
2014-02-06 10:23 - 2012-10-18 08:09 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-06 10:17 - 2014-02-06 10:16 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-06 10:17 - 2009-01-31 20:04 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-06 10:14 - 2008-12-12 17:05 - 02049106 _____ () C:\Windows\WindowsUpdate.log
2014-02-06 10:10 - 2013-04-21 22:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-06 10:10 - 2010-01-06 15:51 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\WTablet
2014-02-06 10:09 - 2008-10-09 09:17 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-06 10:09 - 2006-11-02 16:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-06 10:09 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-06 10:09 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 10:09 - 2006-11-02 16:07 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-06 09:44 - 2014-02-05 19:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-06 09:43 - 2013-05-02 10:49 - 00029642 _____ () C:\Windows\PFRO.log
2014-02-06 09:38 - 2009-07-01 21:11 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003Core.job
2014-02-06 09:26 - 2008-12-18 12:29 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Adobe
2014-02-05 17:23 - 2012-10-18 08:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 17:23 - 2012-10-18 08:09 - 00003736 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 17:23 - 2011-10-17 08:10 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 17:02 - 2012-03-07 12:55 - 00003682 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{BC421043-F7A9-4BF2-91FC-61C948B221E8}
2014-02-03 23:17 - 2009-01-08 14:39 - 00002029 _____ () C:\Users\Ilka\Desktop\Google Chrome.lnk
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-03 13:00 - 2009-01-03 18:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Paint.NET
2014-02-02 10:37 - 2011-01-29 19:52 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-02-01 13:42 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-30 23:16 - 2014-01-08 12:08 - 00000000 ____D () C:\Users\Ilka\AppData\Local\JDownloader v2.0
2014-01-30 22:58 - 2009-01-01 18:50 - 00000000 ___RD () C:\Users\Ilka\Hörbücher
2014-01-30 22:14 - 2013-08-25 10:49 - 00000000 ____D () C:\Users\Ilka\Desktop\PC KAISER
2014-01-30 13:32 - 2009-01-01 19:38 - 00000000 ____D () C:\Users\Ilka\Documents\Excelfiles
2014-01-29 19:57 - 2013-06-24 10:55 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Captcha_Brotherhood
2014-01-27 17:09 - 2006-11-02 16:42 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-27 12:33 - 2013-04-21 22:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-01-27 12:30 - 2013-04-21 22:42 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-01-26 18:19 - 2012-10-21 12:29 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-01-26 12:20 - 2009-05-18 20:46 - 00000000 ____D () C:\Users\Ilka\Documents\Arnold work
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-23 14:31 - 2011-05-28 16:05 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-01-20 11:34 - 2014-01-20 11:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 15:55 - 2008-10-09 08:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-13 21:16 - 2014-01-12 13:22 - 00020152 _____ () C:\Users\Ilka\Desktop\Nico palmeras.odt
2014-01-12 16:01 - 2014-01-12 16:01 - 00017915 _____ () C:\Users\Ilka\Desktop\Carmen Fuengirola.odt
2014-01-09 13:52 - 2011-01-29 19:55 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Canon
2014-01-08 13:18 - 2008-12-13 17:17 - 00000000 ___RD () C:\Users\Ilka\Desktop\unbenutzt
2014-01-08 13:07 - 2013-04-08 09:57 - 00000000 ____D () C:\Users\Ilka\Desktop\Computerwartung
2014-01-08 13:02 - 2014-01-08 12:57 - 00000000 ____D () C:\AdwCleaner
2014-01-08 13:01 - 2013-04-08 09:36 - 00000791 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-08 13:01 - 2009-01-08 14:38 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-08 13:01 - 2008-12-12 17:16 - 00000903 _____ () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-08 13:01 - 2008-12-12 17:16 - 00000903 _____ () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-01-08 12:56 - 2014-01-08 12:56 - 01233962 _____ () C:\Users\Ilka\Downloads\adwcleaner.exe
2014-01-08 12:50 - 2008-01-21 12:10 - 01751980 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-08 12:50 - 2008-01-21 12:09 - 00743744 _____ () C:\Windows\system32\perfh007.dat
2014-01-08 12:50 - 2008-01-21 12:09 - 00176562 _____ () C:\Windows\system32\perfc007.dat
2014-01-08 12:28 - 2014-01-08 12:25 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 12:10 - 2014-01-08 12:10 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-01-08 12:07 - 2014-01-08 12:07 - 00077976 _____ (AppWork GmbH) C:\Users\Ilka\Downloads\WebInstallerJD2.exe
2014-01-07 21:31 - 2014-01-07 21:22 - 00016224 _____ () C:\Users\Ilka\Desktop\edwin istan.odt

Files to move or delete:
====================
C:\Users\Ilka\Paint.NET.3.5.2.Install.exe


Some content of TEMP:
====================
C:\Users\Ilka\AppData\Local\temp\drm_dyndata_7370014.dll
C:\Users\Ilka\AppData\Local\temp\drm_dyndata_7410004.dll
C:\Users\Ilka\AppData\Local\temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Ilka\AppData\Local\temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Ilka\AppData\Local\temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Ilka\AppData\Local\temp\proxy_vole6938658747353816266.dll
C:\Users\Ilka\AppData\Local\temp\Quarantine.exe
C:\Users\Ilka\AppData\Local\temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-06 10:16

==================== End Of Log ============================

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-02-2014
Ran by Ilka at 2014-02-06 10:52:20
Running from C:\Users\Ilka\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
2007 Microsoft Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
64 Bit HP CIO Components Installer (Version: 2.2.5 - Hewlett-Packard) Hidden
Activation Assistant for the 2007 Microsoft Office suites (x32 Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 6 Master Collection (x32 Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.9) - Deutsch (x32 Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Widget Browser (x32 Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Apple Application Support (x32 Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 5.2.0.6 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio Elements 10.0.9 (x32 Version: 3.1.1 - Ashampoo GmbH & Co. KG)
AusweisApp (x32 Version: 1.9.0 - OpenLimit SignCubes AG)
avast! Free Antivirus (x32 Version: 8.0.1504.0 - AVAST Software)
Bamboo (x32 Version:  - Wacom Technology Corp.)
Belltech Greeting Card Designer 5.3.2 (x32 Version: 5.3.2.0 - Belltech Systems)
Biet-O-Matic v2.14.8 (x32 Version: 2.14.8 - BOM Development Team)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Business Contact Manager für Outlook 2007 SP2 (x32 Version: 3.0.8619.1 - Microsoft Corporation)
Business Contact Manager für Outlook 2007 SP2 (x32 Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Canon Easy-PhotoPrint EX (x32 Version:  - )
Canon Easy-WebPrint EX (x32 Version:  - )
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (x32 Version:  - )
Canon MP Navigator EX 4.0 (x32 Version:  - )
Canon MP495 series Benutzerregistrierung (x32 Version:  - )
Canon MP495 series MP Drivers (Version:  - )
Canon My Printer (x32 Version:  - )
Canon Solution Menu EX (x32 Version:  - )
Captcha Brotherhood (x32 Version: 1.1.9 - Brotherhood Software)
CCleaner (Version: 4.01 - Piriform)
CDBurnerXP (x32 Version: 4.3.7.2356 - CDBurnerXP)
Ceville 1.0 (x32 Version: 1.0 - Kalypso)
Create™ Demo (x32 Version: 1.0.0.0 - Electronic Arts)
CustomerResearchQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
DAEMON Tools Lite (x32 Version: 4.45.4.0315 - DT Soft Ltd)
Das Vermächtnis: Testament of Sin (x32 Version:  - City Interactive)
Deponia (x32 Version: 1.0 - Daedalic Entertainment)
Desktop Notifier (x32 Version: 1.0.38 - Starfield)
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
D-Fend Reloaded 1.3.3 (deinstallieren) (x32 Version: 1.3.3 - Alexander Herzog)
DIE SIEDLER - Aufstieg eines Königreichs (x32 Version: 1.00.0000 - Ubisoft)
Die Sims™ 3 (x32 Version: 1.55.4 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Late Night (x32 Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87 - Electronic Arts)
DivX-Setup (x32 Version: 2.6.1.22 - DivX, LLC)
DocProcQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Drakensang - Am Fluss der Zeit (x32 Version:  - dtp)
Drakensang (x32 Version:  - dtp)
Drakensang Online (x32 Version:  - )
Dropbox (HKCU Version: 2.0.22 - Dropbox, Inc.)
ESET Online Scanner v3 (x32 Version:  - )
eSupportQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
FileZilla Client 3.2.8.1 (x32 Version: 3.2.8.1 - )
Free Audio CD Burner version 1.4.8 (x32 Version:  - DVDVideoSoft Limited.)
Free Picture Resize Starter 4.5 (x32 Version: 5.5.18 - Bidgood Svcs)
Free Studio version 4.7 (x32 Version:  - DVDVideoSoft Limited.)
Free YouTube to MP3 Converter version 3.12.17.1127 (x32 Version: 3.12.17.1127 - DVDVideoSoft Ltd.)
GIMP 2.8.4 (Version: 2.8.4 - The GIMP Team)
GoGear SA19xx Device Manager (x32 Version: 0.1 - PhilipsDM) Hidden
Google Chrome (HKCU Version: 32.0.1700.107 - Google Inc.)
Google Earth (x32 Version: 7.0.3.8542 - Google)
Google SketchUp 8 (x32 Version: 3.0.3196 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.135 - Google Inc.) Hidden
GPBaseService (x32 Version: 100.0.187.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Grand Ages Rome 1.01 (x32 Version: 1.01 - Kalypso Media)
HP Photo Creations (x32 Version: 1.0.0.12412 - HP)
HP Photosmart Essential (x32 Version: 1.12.0.46 - HP)
HP Update (x32 Version: 5.002.006.003 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
ICQ6.5 (x32 Version: 6.5 - ICQ)
Integrity Tool (x32 Version: 1.9.0 - OpenLimit SignCubes AG)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
JDownloader 2 (Version: 2.0 - AppWork GmbH)
Knights Of Honor (x32 Version: 1.00 - )
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Marvell Miniport Driver (Version: 10.27.5.3 - Marvell)
Mein CEWE FOTOBUCH (x32 Version:  - )
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (x32 Version: 11.0.8003.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (x32 Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Hybrid 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Small Business Connectivity Components (x32 Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 (x32 Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (x32 Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Native Client (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (x32 Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (x32 Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (x32 Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 20.0.1 (x86 de) (x32 Version: 20.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 20.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSVCSetup (x32 Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
myphotobook.de (x32 Version: 1.1.0 - myphotobook GmbH) Hidden
myphotobook.de (x32 Version: 1.1.0-478 - myphotobook GmbH)
Nero BackItUp 2 Essentials (x32 Version: 7.03.1040 - Nero AG)
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NVIDIA 3D Vision Controller-Treiber 310.90 (Version: 310.90 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 311.06 (Version: 311.06 - NVIDIA Corporation)
NVIDIA Display Control Panel (Version: 1.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.06 (Version: 311.06 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
Oblivion (x32 Version: 1.2.0416 - Bethesda Softworks)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
Opera 9.64 (x32 Version: 9.64 - Opera Software ASA)
Origin (x32 Version: 9.1.15.109 - Electronic Arts, Inc.)
Overlord (x32 Version: 1.00.0606 - Codemasters)
OWOK 2.0.0.4 NPAPI (x32 Version: 2.0.0.4 - REINER Kartengeraete GmbH und Co. KG)
Paint.NET v3.5.11 (Version: 3.61.0 - dotPDN LLC)
Patrizier II Gold (x32 Version:  - )
PC Connectivity Solution (x32 Version: 8.15.0.0 - Nokia)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDFCreator (x32 Version: 1.7.0 - pdfforge)
pdfforge Toolbar v4.6 (x32 Version: 4.6 - Spigot, Inc.) <==== ATTENTION
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
PIXresizer 2.0.4 (x32 Version:  - Bluefive software)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.12 - ProtectDisc Software GmbH)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5490 - Realtek Semiconductor Corp.)
SAMSUNG Mobile Composite Device Software (Version:  - )
Samsung Mobile Modem Device Software (Version:  - )
SAMSUNG Mobile Modem Driver Set (Version:  - )
Samsung Mobile phone USB driver Software (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (Version:  - )
SAMSUNG Mobile USB Modem Software (Version:  - )
Samsung New PC Studio (x32 Version: 1.00.0000 - Samsung Electronics Co., Ltd.)
Samsung New PC Studio (x32 Version: 1.00.0000 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Mobile Device Software (Version:  - )
SamsungConnectivityCableDriver (x32 Version: 6.83.6.2.1 - Samsung)
Shop for HP Supplies (Version: 10.0 - HP)
Skype Click to Call (x32 Version: 5.10.9560 - Skype Technologies S.A.)
Skype™ 6.10 (x32 Version: 6.10.104 - Skype Technologies S.A.)
SmartCard Reader Driver Installation (x32 Version: 1.2.4.17 - SmartCard Reader)
SmartCard Reader Driver Installation (x32 Version: 1.2.4.17 - SmartCard Reader) Hidden
Software Informer 1.0 BETA (x32 Version:  - FreeDownloadManager.ORG)
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Songr (x32 Version: 1.8.30 - hxxp://songr.co.cc/)
SPORE™ (x32 Version: 1.05.0001 - Electronic Arts)
Spotify (x32 Version: 0.4.10 - )
Square Enix Secure Launcher (HKCU Version: 1.0.0.108 - Square Enix)
Stronghold 2 (x32 Version: 1.40.1000 - Firefly Studios)
Stronghold Crusader Extreme (x32 Version: 1.20.0000 - Firefly Studios)
Stronghold Legends (x32 Version: 1.20.0000 - Firefly Studios)
System Requirements Lab (x32 Version:  - )
TomTom HOME 2.7.3.1894 (x32 Version: 2.7.3.1894 - TomTom)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
Tropico Reloaded (x32 Version:  - Kalypso Media)
Uninstall 1.0.0.1 (x32 Version:  - )
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (x32 Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 8.0 Runtime Setup Package (x64) (x32 Version: 8.0.0.35 - GRISOFT, s.r.o.)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1 - AVG Technologies)
VoipStunt (x32 Version: 4.02 build 533 - Finarea S.A. Switzerland)
WDtransitionInstall_GD (x32 Version: 1.0.0 - Starfield Technologies)
WebTablet IE Plugin (x32 Version: 1.1.0.4 - Wacom Technology Corp.)
WebTablet Netscape Plugin (x32 Version: 1.1.0.3 - Wacom Technology Corp.)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.6 - Microsoft Corporation)
Windows Live Call (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd  (10/12/2007 6.85.4.0) (Version: 10/12/2007 6.85.4.0 - Nokia)
WinRAR (x32 Version:  - )
Zip Motion Block Video codec (Remove Only) (x32 Version:  - DOSBox Team)

==================== Restore Points  =========================

01-01-2014 20:05:34 Geplanter Prüfpunkt
02-01-2014 10:26:27 Geplanter Prüfpunkt
03-01-2014 12:07:05 Windows Update
04-01-2014 21:18:43 Geplanter Prüfpunkt
06-01-2014 09:14:40 Geplanter Prüfpunkt
07-01-2014 20:15:09 Windows Update
08-01-2014 13:17:18 Geplanter Prüfpunkt
09-01-2014 11:28:07 Geplanter Prüfpunkt
12-01-2014 11:21:30 Windows Update
13-01-2014 12:06:00 Geplanter Prüfpunkt
14-01-2014 17:40:22 Geplanter Prüfpunkt
15-01-2014 16:57:18 Geplanter Prüfpunkt
16-01-2014 10:40:03 Geplanter Prüfpunkt
16-01-2014 14:53:55 Windows Update
18-01-2014 13:39:20 Geplanter Prüfpunkt
20-01-2014 10:31:14 Windows Update
26-01-2014 13:21:54 Geplanter Prüfpunkt
26-01-2014 13:22:27 Windows Update
27-01-2014 11:33:59 avast! antivirus system restore point
29-01-2014 09:48:48 Geplanter Prüfpunkt
30-01-2014 11:59:24 Geplanter Prüfpunkt
01-02-2014 08:42:19 Windows Update
01-02-2014 12:40:42 Installiert SPORE™
05-02-2014 16:04:43 Windows Update
06-02-2014 09:16:09 Installed Java 7 Update 51

==================== Hosts content: ==========================

2006-11-02 13:34 - 2013-04-21 16:04 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {018C99BF-A5CB-407B-9FF4-F63BBE6A42A3} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {054385BC-20AA-4E64-801B-A8E54027B58E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-01-11] (Google Inc.)
Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {15393779-7F15-4BCA-8B54-98B1BC6CDB5C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003UA => C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-08] (Google Inc.)
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {2A109681-4E10-4EBA-ABF4-65D9E0A4C66A} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-01] ()
Task: {2DB00017-0640-4B1F-AA49-3F3EC613CFFA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003Core => C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe [2009-01-08] (Google Inc.)
Task: {49543B3F-6497-4540-9A03-27B6C8353613} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: {57895216-83CA-4887-A471-3DFEACCE8108} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2012-12-02] ()
Task: {5F545018-80E6-41CC-B471-3BCC91519654} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {6ADEA891-D8C5-4240-9F21-B37E0EC36763} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2008-01-21] (Microsoft Corporation)
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {7D20B389-70CB-4FB5-96DE-38E844755B23} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-12-19] (AVAST Software)
Task: {81497F58-E671-4BD5-B3AB-95A564FA4D0C} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {92C62F65-06B7-4918-AA63-79153940E084} - System32\Tasks\{FA598F66-29A0-4704-8739-7C6F0C510858} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.115/de/abandoninstall?page=tsProgressBar
Task: {993D6021-254A-4EFE-A968-D1D0B7BDE8D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-01-11] (Google Inc.)
Task: {A345524C-2219-4186-AAEC-3A75B827BFFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {BAC76840-6FF3-4A5B-8851-9E3101D6DD52} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {ECB565AC-AF37-43D6-8C41-97D83766E6EF} - System32\Tasks\AdobeAAMUpdater-1.0-Ilka-PC-Ilka => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003Core.job => C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003UA.job => C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Loaded Modules (whitelisted) =============

2009-10-10 17:19 - 2009-10-10 17:19 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2008-12-14 00:09 - 2008-06-20 00:41 - 00062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2012-02-28 16:34 - 2012-02-28 16:34 - 00006144 _____ () C:\Users\Ilka\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\CoreTempReader.dll
2012-02-28 16:34 - 2012-02-28 16:34 - 00008704 _____ () C:\Users\Ilka\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\GetCoreTempInfoNET.dll
2012-02-28 16:34 - 2012-02-28 16:34 - 00007680 _____ () C:\Users\Ilka\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V3.5.gadget\SystemInfo.dll
2014-02-05 21:21 - 2014-02-05 19:31 - 02259968 _____ () C:\Program Files\AVAST Software\Avast\defs\14020501\algo.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-10-10 17:55 - 2009-10-10 17:55 - 00094208 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-02-03 23:16 - 2014-02-02 00:42 - 04055368 _____ () C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-03 23:16 - 2014-02-02 00:42 - 00399688 _____ () C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-03 23:16 - 2014-02-02 00:41 - 01634632 _____ () C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/06/2014 10:00:23 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (02/05/2014 05:17:00 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen bereits aktiven Komponentenversion.
Die widersprüchlichen Komponenten sind:
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (02/05/2014 05:14:11 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (01/30/2014 09:52:17 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/30/2014 09:52:17 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/30/2014 11:40:30 AM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/30/2014 11:40:30 AM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/27/2014 00:03:37 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (01/23/2014 02:53:07 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/23/2014 02:53:07 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\ILKA\APPDATA\LOCAL\JDOWNLOADER V2.0\TMP\7ZIP\SEVENZIPJBINDING-FKPZ9> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)


System errors:
=============
Error: (02/06/2014 10:12:06 AM) (Source: Service Control Manager) (User: )
Description: NVIDIA Update Service Daemon%%1069

Error: (02/06/2014 10:12:06 AM) (Source: Service Control Manager) (User: )
Description: nvUpdatusService.\UpdatusUser%%1330

Error: (02/06/2014 10:10:41 AM) (Source: Service Control Manager) (User: )
Description: Beep
i8042prt

Error: (02/06/2014 10:10:41 AM) (Source: Service Control Manager) (User: )
Description: Net.Tcp-ListeneradapterNet.Tcp-Portfreigabedienst%%1058

Error: (02/06/2014 10:10:41 AM) (Source: Service Control Manager) (User: )
Description: Net.Pipe-Listeneradapterwas

Error: (02/06/2014 10:10:41 AM) (Source: Service Control Manager) (User: )
Description: Net.Msmq-Listeneradaptermsmq

Error: (02/06/2014 10:09:07 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 06.02.2014 um 10:05:26 unerwartet heruntergefahren.

Error: (02/06/2014 10:00:56 AM) (Source: Service Control Manager) (User: )
Description: aswRvrt
aswSnx
aswSP
aswTdi
aswVmm
Beep
i8042prt
spldr
Wanarpv6

Error: (02/06/2014 10:00:56 AM) (Source: Service Control Manager) (User: )
Description: Net.Tcp-ListeneradapterNet.Tcp-Portfreigabedienst%%1058

Error: (02/06/2014 10:00:56 AM) (Source: Service Control Manager) (User: )
Description: Net.Pipe-Listeneradapterwas


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-04-21 22:48:20.369
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsha.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:20.225
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsha.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:20.075
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsha.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:19.931
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsha.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:19.743
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:19.595
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:19.451
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:19.305
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidshx.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:16.521
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsdrivera.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-04-21 22:48:16.367
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2013\Drivers\avgidsdrivera.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 32%
Total physical RAM: 8189.58 MB
Available physical RAM: 5526.71 MB
Total Pagefile: 16444.17 MB
Available Pagefile: 13693.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:698.63 GB) (Free:219.05 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: E3CD7A21)
Partition 1: (Active) - (Size=699 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Aneri · 06.02.2014, 13:26

Hi

gut dann machen wir das hier:

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2:

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Schritt 3:
Lade dir

TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.

Öffne die TFC.exe.
Vista und Win 7 User mit Rechtsklick "als Administrator starten".
Schließe alle anderen Programme.
Drücke auf den Button Start.
Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.

Schritt 4:

verändert sich das Verhalten deines Rechners nach den beiden Tools?

Schritt 5:

erstelle ein neues FRST Logfile und poste es hier

frigorifica · 06.02.2014, 14:24

Jetzt habe ich die Tools alle verwendet, bisher ist das Problem noch nicht wieder aufgetreten.

Code:

ATTFilter

# AdwCleaner v3.018 - Bericht erstellt am 06/02/2014 um 13:40:45
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows (TM) Vista Home Premium Service Pack 2 (64 bits)
# Benutzername : Ilka - ILKA-PC
# Gestartet von : C:\Users\Ilka\Downloads\adwcleaner (1).exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16526


-\\ Mozilla Firefox v20.0.1 (de)

[ Datei : C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [7896 octets] - [08/01/2014 12:57:36]
AdwCleaner[R1].txt - [1365 octets] - [06/02/2014 13:39:18]
AdwCleaner[S0].txt - [5916 octets] - [08/01/2014 13:01:57]
AdwCleaner[S1].txt - [1286 octets] - [06/02/2014 13:40:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1346 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows (TM) Vista Home Premium x64
Ran by Ilka on 06.02.2014 at 13:49:33,10
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\software informer"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.02.2014 at 13:57:05,74
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Aneri · 06.02.2014, 14:59

Gut

Schritt 1:
Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 3:
Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Schritt 4:

erstelle ein neues FRST Logfile und poste es hier

frigorifica · 06.02.2014, 20:51

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.79  
 Windows Vista Service Pack 2 x64 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java 7 Update 51  
 Adobe Flash Player 	12.0.0.44  
 Adobe Reader 10.1.9 Adobe Reader out of Date!  
 Mozilla Firefox 20.0.1 Firefox out of Date!  
 Google Chrome 32.0.1700.102  
 Google Chrome 32.0.1700.107  
 Google Chrome 32.0.1700.76  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-02-2014
Ran by Ilka (administrator) on ILKA-PC on 06-02-2014 20:49:12
Running from C:\Users\Ilka\Desktop
Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Starfield Technologies, Inc.) C:\Program Files (x86)\Starfield\offSyncService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe
() C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe
(Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Users\Ilka\Desktop\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Windows\RAVCpl64.exe [5426688 2007-10-01] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-08-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2012-11-13] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BePCSC] - C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe [130560 2007-05-03] ()
HKLM-x32\...\Run: [SmartMon] - C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe [234496 2006-12-18] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\.DEFAULT\...\Run: [wben] - C:\Program Files (x86)\Starfield\wben.exe [1076432 2010-07-07] (Starfield Technologies, Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [7301A870A0401D35B8EA64B798C40F82AE3726B5._service_run] - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe [866632 2014-02-02] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [Google Update] - C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe [133104 2009-01-08] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [AdobeBridge] - [X]

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=343
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}
SearchScopes: HKCU - {CE6C1439-11F2-4309-B076-A3FF0992A6DF} URL = hxxp://es.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=302398&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: AusweisApp 1.8.0.0 - {C9EE92B7-EDD5-4ad9-8029-2EC6818E653A} - C:\Program Files (x86)\AusweisApp\siqeCardClient.ols (OpenLimit SignCubes AG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: HKLM-x32 {65EEE2E1-B8D5-4724-8489-048B551045BF} https://karte.seb-bank.de/gei/plugins/SEBChipcardPlugin1211.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{820C886A-5B6E-4869-ACCF-4C424769B1F0}: [NameServer]62.36.225.150,62.37.228.20

FireFox:
========
FF ProfilePath: C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @reiner-sct.com/OWOK,version=2.0.0.4 - C:\Program Files (x86)\REINER SCT\OWOK\NPAPI-20\nprsct_owok_npapi-2004.dll (REINER Kartengeräte GmbH und Co. KG.)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @coreonline.com/run3d,version=1.0 - C:\Users\Ilka\AppData\LocalLow\Square Enix\nprun3d.dll (Square Enix)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: WBE Paste - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\wbepaste@starfield [2010-10-16]
FF Extension: Starfield Zoom - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\zoomext@starfield [2010-10-16]
FF Extension: Santander Chipcard Plugin - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default\Extensions\{fd639891-5cc6-45ae-9055-a7a6abb5a7a9} [2013-04-21]
FF Extension: No Name - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-02-10]
FF Extension: PutLockerDownloader - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi [2012-11-06]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-04-20]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM-x32\...\Firefox\Extensions: [{4F3D26C8-9907-48ff-BC74-B8C572D317BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{4F0963A3-1658-4fde-9585-23A25CC288BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-21]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Skype Toolbars) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (Online File Folder plugin 1.0.0.17) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
CHR Plugin: (Web-Based Email plug-in 1.0.0.13) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (DivX OVS Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Bejeweled) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm [2012-07-17]
CHR Extension: (Search by Image for Google™) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdigejhabbnmfbbebmchkkjhcdjmeli [2011-10-26]
CHR Extension: (Angry Birds) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2011-10-22]
CHR Extension: (BeFunky Photo Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2012-12-14]
CHR Extension: (Immortall) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccgofchligkleafmbnobellmjjoppoin [2011-10-30]
CHR Extension: (Adblock Plus) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2012-08-05]
CHR Extension: (ChromeTheme.net) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgkmdlcgbebbcmjopfcmlbnklimnkbpn [2013-12-08]
CHR Extension: (Google Kalender) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2012-05-21]
CHR Extension: (Elemente und Physik) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcpedjbhjpalhdjkbchahkcceaikoda [2011-11-12]
CHR Extension: (PicMonkey) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2013-04-13]
CHR Extension: (The QR Code Generator) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2012-05-21]
CHR Extension: (AdBlock) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-05-20]
CHR Extension: (Creatures & Castles (Kreaturen & Burgen)) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpeacgpdnhofhebmincihdelcemhagd [2011-10-26]
CHR Extension: (Pixlr Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2012-05-21]
CHR Extension: (DVDVideoSoft) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-06-27]
CHR Extension: (Google Wallet) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Psykopaint) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2011-10-26]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-06-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR StartMenuInternet: Google Chrome - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-12-19] (AVAST Software)
R2 File Backup; C:\Program Files (x86)\Starfield\offSyncService.exe [1310960 2010-07-16] (Starfield Technologies, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MSSQL$MSSMLBIZ; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2009-09-06] ()
R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-12-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-12-19] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [59144 2013-12-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-12-19] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-12-19] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-12-19] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-12-19] ()
S1 Beep; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-20] (DT Soft Ltd)
S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] ()
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2011-07-06] ()
S3 USBCCID; C:\Windows\System32\DRIVERS\usbccid.sys [38400 2009-04-10] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254464 2010-11-09] (Jungo)
S3 ALLOW-IO; \??\H:\ALLOW-IO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U2 SCardDrv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-06 20:49 - 2014-02-06 20:49 - 00027911 _____ () C:\Users\Ilka\Desktop\FRST.txt
2014-02-06 20:49 - 2014-02-06 20:49 - 00000000 ____D () C:\Users\Ilka\Desktop\FRST-OlderVersion
2014-02-06 20:48 - 2014-02-06 20:49 - 02079744 _____ (Farbar) C:\Users\Ilka\Desktop\FRST64.exe
2014-02-06 20:37 - 2014-02-06 20:36 - 00987425 _____ () C:\Users\Ilka\Desktop\SecurityCheck.exe
2014-02-06 20:36 - 2014-02-06 20:36 - 00987425 _____ () C:\Users\Ilka\Downloads\SecurityCheck.exe
2014-02-06 13:59 - 2014-02-06 13:59 - 00448512 _____ (OldTimer Tools) C:\Users\Ilka\Downloads\TFC.exe
2014-02-06 13:48 - 2014-02-06 13:48 - 01037530 _____ (Thisisu) C:\Users\Ilka\Downloads\JRT.exe
2014-02-06 13:38 - 2014-02-06 13:38 - 01166132 _____ () C:\Users\Ilka\Downloads\adwcleaner (1).exe
2014-02-06 10:52 - 2014-02-06 14:19 - 00032524 _____ () C:\Users\Ilka\Downloads\Addition.txt
2014-02-06 10:51 - 2014-02-06 20:49 - 00000000 ____D () C:\FRST
2014-02-06 10:51 - 2014-02-06 14:19 - 00039215 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:18 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-06 10:17 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-06 10:17 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-06 10:17 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-06 10:16 - 2014-02-06 10:17 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-05 19:02 - 2014-02-06 09:44 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-01 13:34 - 2014-02-01 13:42 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-20 11:31 - 2014-01-20 11:34 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-12 16:01 - 2014-01-12 16:01 - 00017915 _____ () C:\Users\Ilka\Desktop\Carmen Fuengirola.odt
2014-01-12 13:22 - 2014-01-13 21:16 - 00020152 _____ () C:\Users\Ilka\Desktop\Nico palmeras.odt
2014-01-08 12:57 - 2014-02-06 13:40 - 00000000 ____D () C:\AdwCleaner
2014-01-08 12:56 - 2014-01-08 12:56 - 01233962 _____ () C:\Users\Ilka\Downloads\adwcleaner.exe
2014-01-08 12:25 - 2014-01-08 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 12:25 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-08 12:10 - 2014-01-08 12:10 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-01-08 12:08 - 2014-01-30 23:16 - 00000000 ____D () C:\Users\Ilka\AppData\Local\JDownloader v2.0
2014-01-08 12:07 - 2014-01-08 12:07 - 00077976 _____ (AppWork GmbH) C:\Users\Ilka\Downloads\WebInstallerJD2.exe
2014-01-07 21:22 - 2014-01-07 21:31 - 00016224 _____ () C:\Users\Ilka\Desktop\edwin istan.odt

==================== One Month Modified Files and Folders =======

2014-02-06 20:49 - 2014-02-06 20:49 - 00027911 _____ () C:\Users\Ilka\Desktop\FRST.txt
2014-02-06 20:49 - 2014-02-06 20:49 - 00000000 ____D () C:\Users\Ilka\Desktop\FRST-OlderVersion
2014-02-06 20:49 - 2014-02-06 20:48 - 02079744 _____ (Farbar) C:\Users\Ilka\Desktop\FRST64.exe
2014-02-06 20:49 - 2014-02-06 10:51 - 00000000 ____D () C:\FRST
2014-02-06 20:36 - 2014-02-06 20:37 - 00987425 _____ () C:\Users\Ilka\Desktop\SecurityCheck.exe
2014-02-06 20:36 - 2014-02-06 20:36 - 00987425 _____ () C:\Users\Ilka\Downloads\SecurityCheck.exe
2014-02-06 20:35 - 2012-11-15 09:42 - 00000336 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-02-06 20:28 - 2009-07-01 21:11 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003UA.job
2014-02-06 20:23 - 2012-10-18 08:09 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-06 20:10 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-06 20:10 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 19:16 - 2008-12-12 17:05 - 02082843 _____ () C:\Windows\WindowsUpdate.log
2014-02-06 17:44 - 2012-03-07 12:55 - 00003682 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{BC421043-F7A9-4BF2-91FC-61C948B221E8}
2014-02-06 15:25 - 2013-04-08 09:57 - 00000000 ____D () C:\Users\Ilka\Desktop\Computerwartung
2014-02-06 14:19 - 2014-02-06 10:52 - 00032524 _____ () C:\Users\Ilka\Downloads\Addition.txt
2014-02-06 14:19 - 2014-02-06 10:51 - 00039215 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 14:11 - 2010-01-06 15:51 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\WTablet
2014-02-06 14:10 - 2013-05-02 10:49 - 00030126 _____ () C:\Windows\PFRO.log
2014-02-06 14:10 - 2008-10-09 09:17 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-06 14:10 - 2006-11-02 16:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-06 14:10 - 2006-11-02 16:07 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-06 14:09 - 2011-01-29 19:52 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-02-06 14:09 - 2006-11-02 16:42 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-06 13:59 - 2014-02-06 13:59 - 00448512 _____ (OldTimer Tools) C:\Users\Ilka\Downloads\TFC.exe
2014-02-06 13:49 - 2013-04-22 08:46 - 00000000 ____D () C:\Windows\ERUNT
2014-02-06 13:48 - 2014-02-06 13:48 - 01037530 _____ (Thisisu) C:\Users\Ilka\Downloads\JRT.exe
2014-02-06 13:40 - 2014-01-08 12:57 - 00000000 ____D () C:\AdwCleaner
2014-02-06 13:38 - 2014-02-06 13:38 - 01166132 _____ () C:\Users\Ilka\Downloads\adwcleaner (1).exe
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:17 - 2014-02-06 10:16 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-06 10:17 - 2009-01-31 20:04 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-06 10:10 - 2013-04-21 22:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-06 09:44 - 2014-02-05 19:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-06 09:38 - 2009-07-01 21:11 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003Core.job
2014-02-06 09:26 - 2008-12-18 12:29 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Adobe
2014-02-05 17:23 - 2012-10-18 08:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 17:23 - 2012-10-18 08:09 - 00003736 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 17:23 - 2011-10-17 08:10 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 23:17 - 2009-01-08 14:39 - 00002029 _____ () C:\Users\Ilka\Desktop\Google Chrome.lnk
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-03 13:00 - 2009-01-03 18:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Paint.NET
2014-02-01 13:42 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-30 23:16 - 2014-01-08 12:08 - 00000000 ____D () C:\Users\Ilka\AppData\Local\JDownloader v2.0
2014-01-30 22:58 - 2009-01-01 18:50 - 00000000 ___RD () C:\Users\Ilka\Hörbücher
2014-01-30 22:14 - 2013-08-25 10:49 - 00000000 ____D () C:\Users\Ilka\Desktop\PC KAISER
2014-01-30 13:32 - 2009-01-01 19:38 - 00000000 ____D () C:\Users\Ilka\Documents\Excelfiles
2014-01-29 19:57 - 2013-06-24 10:55 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Captcha_Brotherhood
2014-01-27 12:33 - 2013-04-21 22:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-01-27 12:30 - 2013-04-21 22:42 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-01-26 18:19 - 2012-10-21 12:29 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-01-26 12:20 - 2009-05-18 20:46 - 00000000 ____D () C:\Users\Ilka\Documents\Arnold work
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-23 14:31 - 2011-05-28 16:05 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-01-20 11:34 - 2014-01-20 11:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 15:55 - 2008-10-09 08:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-13 21:16 - 2014-01-12 13:22 - 00020152 _____ () C:\Users\Ilka\Desktop\Nico palmeras.odt
2014-01-12 16:01 - 2014-01-12 16:01 - 00017915 _____ () C:\Users\Ilka\Desktop\Carmen Fuengirola.odt
2014-01-09 13:52 - 2011-01-29 19:55 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Canon
2014-01-08 13:18 - 2008-12-13 17:17 - 00000000 ___RD () C:\Users\Ilka\Desktop\unbenutzt
2014-01-08 13:01 - 2013-04-08 09:36 - 00000791 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-08 13:01 - 2009-01-08 14:38 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-01-08 13:01 - 2008-12-12 17:16 - 00000903 _____ () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-08 13:01 - 2008-12-12 17:16 - 00000903 _____ () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-01-08 12:56 - 2014-01-08 12:56 - 01233962 _____ () C:\Users\Ilka\Downloads\adwcleaner.exe
2014-01-08 12:50 - 2008-01-21 12:10 - 01751980 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-08 12:50 - 2008-01-21 12:09 - 00743744 _____ () C:\Windows\system32\perfh007.dat
2014-01-08 12:50 - 2008-01-21 12:09 - 00176562 _____ () C:\Windows\system32\perfc007.dat
2014-01-08 12:28 - 2014-01-08 12:25 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 12:10 - 2014-01-08 12:10 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-01-08 12:07 - 2014-01-08 12:07 - 00077976 _____ (AppWork GmbH) C:\Users\Ilka\Downloads\WebInstallerJD2.exe
2014-01-07 21:31 - 2014-01-07 21:22 - 00016224 _____ () C:\Users\Ilka\Desktop\edwin istan.odt

Files to move or delete:
====================
C:\Users\Ilka\Paint.NET.3.5.2.Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-06 14:24

==================== End Of Log ============================

--- --- ---

Aneri · 07.02.2014, 08:09

Hallo

es Fehlen noch 2 Logfiles von Schritt 1 und 2. Bitte reiche Sie noch nach

frigorifica · 07.02.2014, 10:47

Malwarebytes hatte absolut nichts gefunden ... und diese ESET... ist das wirklich sehr wichtig, ich hab das schon mal gemacht und danach war irgendwie ein ziemliches Chaos. Eventuell ist es auch zu kompliziert für mich und ich machte etwas falsch. Naja - jedenfalls habe ich diesen Scan weggelassen. Falls es wirklich absolut unumdingbar ist, so werde ich es nochmal versuchen.

Aneri · 07.02.2014, 10:49

Das liegt an dir. ESET kontrolliert die gesamte Festplatte auf Schadsoftware.

Bestehen die Probleme auf deinem System noch?

frigorifica · 07.02.2014, 12:04

Bisher ist das Problem nicht wieder aufgetreten, ich kann aber erst wieder heute abend an meinem Rechner. Ich melde mich sobald wieder dieser weiße Bildschirm auftaucht.
Erstmal danke für die Hilfe.

Aneri · 07.02.2014, 12:50

Gut ich warte auf Rückmeldung

frigorifica · 10.02.2014, 10:20

Folgendes ist wieder passiert: Gestern nach dem Aufwecken aus dem Energiesparmodus konnte man etwa 5 Minuten am REchner arbeiten, danach wurde wieder der gesamte Bildschirm weiß. Nur Ausschalten per Knopfdruck möglich und erneutes Hochfahren, wieder weißer Bildschirm (d.h. der Bildschirm ist irgendwie beleuchtet und es erscheint nicht der Hinweis "kein Signal"). Nach einer Weile warten habe ich das ganze nochmal vollzogen und das Problem trat nicht mehr auf. Heute morgen ist es wieder dasselbe gewesen. Ich vermute dass der PC erst nach einer Aufwärmphase funktioniert, du erwähntest doch etwas von "kalter Lötstelle". Scheint also an der Hardware zu liegen, kann man da als Laie etwas dran machen?

Aneri · 10.02.2014, 10:27

Grafikkarte wechseln, aber als Laie schwer.

Als erstes würde ich einmal versuchen den aktuellen Treiber der Grafikkarte zu installieren und das ganze nochmals zu testen.

Schritt 2:

Lass bitte folgendes Tool einmal laufen:

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Schritt 3:

erstelle ein neues FRST Logfile und poste es hier

frigorifica · 10.02.2014, 11:30

Grafikkartentreiber wurde aktualisiert.

Hier dier mbar-log:

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.02.10.02

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Ilka :: ILKA-PC [administrator]

10.02.2014 10:55:44
mbar-log-2014-02-10 (10-55-44).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 288649
Time elapsed: 23 minute(s), 17 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

und hier der FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-02-2014 03
Ran by Ilka (administrator) on ILKA-PC on 10-02-2014 11:27:08
Running from C:\Users\Ilka\Desktop\Computerwartung
Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Starfield Technologies, Inc.) C:\Program Files (x86)\Starfield\offSyncService.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
() C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe
() C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
(Microsoft Corporation) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Wacom Technology, Corp.) C:\Windows\system32\Pen_Tablet.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Wacom Technology, Corp.) C:\Windows\system32\WTablet\Pen_TabletUser.exe
(Wacom Technology, Corp.) C:\Windows\system32\Pen_Tablet.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\conime.exe
(Google Inc.) C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Windows\RAVCpl64.exe [5426688 2007-10-01] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1826816 2007-08-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2012-11-13] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BePCSC] - C:\Program Files (x86)\EmvSmartCardReader\BePCSC.exe [130560 2007-05-03] ()
HKLM-x32\...\Run: [SmartMon] - C:\Program Files (x86)\EmvSmartCardReader\SmartMON.exe [234496 2006-12-18] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\.DEFAULT\...\Run: [wben] - C:\Program Files (x86)\Starfield\wben.exe [1076432 2010-07-07] (Starfield Technologies, Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [7301A870A0401D35B8EA64B798C40F82AE3726B5._service_run] - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe [866632 2014-02-02] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [Google Update] - C:\Users\Ilka\AppData\Local\Google\Update\GoogleUpdate.exe [133104 2009-01-08] (Google Inc.)
HKU\S-1-5-21-301557635-3079252342-3213273295-1003\...\Run: [AdobeBridge] - [X]

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=343
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}
SearchScopes: HKCU - {CE6C1439-11F2-4309-B076-A3FF0992A6DF} URL = hxxp://es.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=302398&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: AusweisApp 1.8.0.0 - {C9EE92B7-EDD5-4ad9-8029-2EC6818E653A} - C:\Program Files (x86)\AusweisApp\siqeCardClient.ols (OpenLimit SignCubes AG)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262E} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: HKLM-x32 {65EEE2E1-B8D5-4724-8489-048B551045BF} https://karte.seb-bank.de/gei/plugins/SEBChipcardPlugin1211.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{820C886A-5B6E-4869-ACCF-4C424769B1F0}: [NameServer]62.36.225.150,62.37.228.20

FireFox:
========
FF ProfilePath: C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @reiner-sct.com/OWOK,version=2.0.0.4 - C:\Program Files (x86)\REINER SCT\OWOK\NPAPI-20\nprsct_owok_npapi-2004.dll (REINER Kartengeräte GmbH und Co. KG.)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @coreonline.com/run3d,version=1.0 - C:\Users\Ilka\AppData\LocalLow\Square Enix\nprun3d.dll (Square Enix)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Ilka\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Ilka\AppData\Roaming\mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: WBE Paste - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\wbepaste@starfield [2010-10-16]
FF Extension: Starfield Zoom - C:\Users\Ilka\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\zoomext@starfield [2010-10-16]
FF Extension: Santander Chipcard Plugin - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\Profiles\wrs8ha24.default\Extensions\{fd639891-5cc6-45ae-9055-a7a6abb5a7a9} [2013-04-21]
FF Extension: No Name - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-02-10]
FF Extension: PutLockerDownloader - C:\Users\Ilka\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi [2012-11-06]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-04-20]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM-x32\...\Firefox\Extensions: [{4F3D26C8-9907-48ff-BC74-B8C572D317BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientExt_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{4F0963A3-1658-4fde-9585-23A25CC288BF}] - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win
FF Extension: AusweisApp - C:\Program Files (x86)\AusweisApp\mozilla\eCardClientPIn_FFxx_Win [2012-11-04]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-21]

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\32.0.1700.107\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Skype Toolbars) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (Online File Folder plugin 1.0.0.17) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npoff.dll ( Starfield Technologies, Inc.)
CHR Plugin: (Web-Based Email plug-in 1.0.0.13) - C:\Users\Ilka\AppData\Roaming\Mozilla\plugins\npwbe.dll (Starfield Technology, Inc.)
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (DivX OVS Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Bejeweled) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm [2012-07-17]
CHR Extension: (Search by Image for Google™) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\agdigejhabbnmfbbebmchkkjhcdjmeli [2011-10-26]
CHR Extension: (Angry Birds) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2011-10-22]
CHR Extension: (BeFunky Photo Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfkepiiddolifkgjmfdgpnipgnfejab [2012-12-14]
CHR Extension: (Immortall) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccgofchligkleafmbnobellmjjoppoin [2011-10-30]
CHR Extension: (Adblock Plus) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2012-08-05]
CHR Extension: (ChromeTheme.net) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgkmdlcgbebbcmjopfcmlbnklimnkbpn [2013-12-08]
CHR Extension: (Google Kalender) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2012-05-21]
CHR Extension: (Elemente und Physik) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcpedjbhjpalhdjkbchahkcceaikoda [2011-11-12]
CHR Extension: (PicMonkey) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgdgokchhicmaiacmgegjnppjkgogdhm [2013-04-13]
CHR Extension: (The QR Code Generator) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2012-05-21]
CHR Extension: (AdBlock) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-05-20]
CHR Extension: (Creatures & Castles (Kreaturen & Burgen)) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpeacgpdnhofhebmincihdelcemhagd [2011-10-26]
CHR Extension: (Pixlr Editor) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2012-05-21]
CHR Extension: (DVDVideoSoft) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-06-27]
CHR Extension: (Google Wallet) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Psykopaint) - C:\Users\Ilka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2011-10-26]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-06-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR StartMenuInternet: Google Chrome - C:\Users\Ilka\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-12-19] (AVAST Software)
R2 File Backup; C:\Program Files (x86)\Starfield\offSyncService.exe [1310960 2010-07-16] (Starfield Technologies, Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MSSQL$MSSMLBIZ; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2009-09-06] ()
R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-12-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-12-19] (AVAST Software)
R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [59144 2013-12-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-12-19] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-12-19] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-12-19] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-12-19] ()
S1 Beep; No ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-05-20] (DT Soft Ltd)
S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] ()
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2011-07-06] ()
S3 USBCCID; C:\Windows\System32\DRIVERS\usbccid.sys [38400 2009-04-10] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254464 2010-11-09] (Jungo)
S3 ALLOW-IO; \??\H:\ALLOW-IO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U2 SCardDrv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-10 10:55 - 2014-02-10 11:25 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-10 10:55 - 2014-02-10 10:55 - 00119000 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-10 10:54 - 2014-02-10 11:25 - 00000000 ____D () C:\Users\Ilka\Desktop\mbar
2014-02-10 10:54 - 2014-02-10 10:54 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-10 10:53 - 2014-02-10 10:53 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Ilka\Desktop\mbar-1.07.0.1009.exe
2014-02-08 04:07 - 2014-02-08 04:07 - 00029354 _____ () C:\Users\Ilka\Desktop\Kurzgeschichte.odt
2014-02-06 20:36 - 2014-02-06 20:36 - 00987425 _____ () C:\Users\Ilka\Downloads\SecurityCheck.exe
2014-02-06 13:59 - 2014-02-06 13:59 - 00448512 _____ (OldTimer Tools) C:\Users\Ilka\Downloads\TFC.exe
2014-02-06 13:48 - 2014-02-06 13:48 - 01037530 _____ (Thisisu) C:\Users\Ilka\Downloads\JRT.exe
2014-02-06 13:38 - 2014-02-06 13:38 - 01166132 _____ () C:\Users\Ilka\Downloads\adwcleaner (1).exe
2014-02-06 10:52 - 2014-02-06 14:19 - 00032524 _____ () C:\Users\Ilka\Downloads\Addition.txt
2014-02-06 10:51 - 2014-02-10 11:27 - 00000000 ____D () C:\FRST
2014-02-06 10:51 - 2014-02-06 14:19 - 00039215 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:18 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-06 10:17 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-06 10:17 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-06 10:17 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-06 10:16 - 2014-02-06 10:17 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-05 19:02 - 2014-02-06 09:44 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-01 13:34 - 2014-02-01 13:42 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-20 11:31 - 2014-01-20 11:34 - 00000000 ____D () C:\Windows\system32\MRT

==================== One Month Modified Files and Folders =======

2014-02-10 11:27 - 2014-02-06 10:51 - 00000000 ____D () C:\FRST
2014-02-10 11:27 - 2013-04-08 09:57 - 00000000 ____D () C:\Users\Ilka\Desktop\Computerwartung
2014-02-10 11:25 - 2014-02-10 10:55 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-10 11:25 - 2014-02-10 10:54 - 00000000 ____D () C:\Users\Ilka\Desktop\mbar
2014-02-10 11:23 - 2012-10-18 08:09 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-10 10:55 - 2014-02-10 10:55 - 00119000 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-10 10:54 - 2014-02-10 10:54 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-10 10:53 - 2014-02-10 10:53 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Ilka\Desktop\mbar-1.07.0.1009.exe
2014-02-10 10:52 - 2013-04-13 09:28 - 00001460 _____ () C:\Users\Ilka\AppData\Local\d3d9caps64.dat
2014-02-10 10:51 - 2008-12-12 17:05 - 01159846 _____ () C:\Windows\WindowsUpdate.log
2014-02-10 10:47 - 2013-04-21 22:42 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-10 10:47 - 2010-01-06 15:51 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\WTablet
2014-02-10 10:47 - 2006-11-02 16:07 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-10 10:46 - 2008-10-09 09:17 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-10 10:46 - 2006-11-02 16:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-10 10:46 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-10 10:46 - 2006-11-02 16:22 - 00003760 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-10 10:45 - 2006-11-02 16:42 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-10 10:35 - 2012-11-15 09:42 - 00000336 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-02-10 10:28 - 2009-07-01 21:11 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003UA.job
2014-02-10 10:19 - 2008-12-18 12:29 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Adobe
2014-02-09 21:04 - 2011-01-29 19:52 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-02-09 20:56 - 2009-01-01 17:40 - 00000000 ____D () C:\Users\Ilka\Documents\Schriftverkehr
2014-02-09 20:01 - 2009-05-18 20:46 - 00000000 ____D () C:\Users\Ilka\Documents\Arnold work
2014-02-09 13:39 - 2009-07-01 21:11 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-301557635-3079252342-3213273295-1003Core.job
2014-02-09 12:54 - 2012-03-07 12:55 - 00003682 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{BC421043-F7A9-4BF2-91FC-61C948B221E8}
2014-02-08 04:07 - 2014-02-08 04:07 - 00029354 _____ () C:\Users\Ilka\Desktop\Kurzgeschichte.odt
2014-02-06 20:36 - 2014-02-06 20:36 - 00987425 _____ () C:\Users\Ilka\Downloads\SecurityCheck.exe
2014-02-06 14:19 - 2014-02-06 10:52 - 00032524 _____ () C:\Users\Ilka\Downloads\Addition.txt
2014-02-06 14:19 - 2014-02-06 10:51 - 00039215 _____ () C:\Users\Ilka\Downloads\FRST.txt
2014-02-06 14:10 - 2013-05-02 10:49 - 00030126 _____ () C:\Windows\PFRO.log
2014-02-06 13:59 - 2014-02-06 13:59 - 00448512 _____ (OldTimer Tools) C:\Users\Ilka\Downloads\TFC.exe
2014-02-06 13:49 - 2013-04-22 08:46 - 00000000 ____D () C:\Windows\ERUNT
2014-02-06 13:48 - 2014-02-06 13:48 - 01037530 _____ (Thisisu) C:\Users\Ilka\Downloads\JRT.exe
2014-02-06 13:40 - 2014-01-08 12:57 - 00000000 ____D () C:\AdwCleaner
2014-02-06 13:38 - 2014-02-06 13:38 - 01166132 _____ () C:\Users\Ilka\Downloads\adwcleaner (1).exe
2014-02-06 10:50 - 2014-02-06 10:50 - 02082304 _____ (Farbar) C:\Users\Ilka\Downloads\FRST64.exe
2014-02-06 10:17 - 2014-02-06 10:16 - 00005327 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-06 10:17 - 2009-01-31 20:04 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-06 09:44 - 2014-02-05 19:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\LogMeIn Rescue Applet
2014-02-05 17:23 - 2012-10-18 08:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 17:23 - 2012-10-18 08:09 - 00003736 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 17:23 - 2011-10-17 08:10 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 23:17 - 2009-01-08 14:39 - 00002029 _____ () C:\Users\Ilka\Desktop\Google Chrome.lnk
2014-02-03 13:16 - 2014-02-03 13:16 - 00033299 _____ () C:\Users\Ilka\Downloads\eBayISAPI (1).gz
2014-02-03 13:00 - 2009-01-03 18:02 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Paint.NET
2014-02-01 13:42 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\AppData\Roaming\SPORE
2014-02-01 13:34 - 2014-02-01 13:34 - 00000000 ____D () C:\Users\Ilka\Documents\MeinSpore-Kreationen
2014-01-30 23:16 - 2014-01-08 12:08 - 00000000 ____D () C:\Users\Ilka\AppData\Local\JDownloader v2.0
2014-01-30 22:58 - 2009-01-01 18:50 - 00000000 ___RD () C:\Users\Ilka\Hörbücher
2014-01-30 22:14 - 2013-08-25 10:49 - 00000000 ____D () C:\Users\Ilka\Desktop\PC KAISER
2014-01-30 13:32 - 2009-01-01 19:38 - 00000000 ____D () C:\Users\Ilka\Documents\Excelfiles
2014-01-29 19:57 - 2013-06-24 10:55 - 00000000 ____D () C:\Users\Ilka\AppData\Local\Captcha_Brotherhood
2014-01-27 12:33 - 2013-04-21 22:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-01-27 12:30 - 2013-04-21 22:42 - 00000000 _____ () C:\Windows\SysWOW64\config.nt
2014-01-26 18:19 - 2012-10-21 12:29 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-01-23 14:52 - 2014-01-23 14:52 - 00000164 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.rsdf
2014-01-23 14:51 - 2014-01-23 14:51 - 00001264 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.dlc
2014-01-23 14:51 - 2014-01-23 14:51 - 00000560 _____ () C:\Users\Ilka\Downloads\085thrank6j5md5.ccf
2014-01-23 14:31 - 2011-05-28 16:05 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-01-20 11:34 - 2014-01-20 11:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 15:55 - 2008-10-09 08:57 - 00000000 ____D () C:\ProgramData\Microsoft Help

Files to move or delete:
====================
C:\Users\Ilka\Paint.NET.3.5.2.Install.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-10 10:54

==================== End Of Log ============================

--- --- ---

07.02.2014, 08:09	#8
Aneri /// Malwareteam	Plötzlich weißer oder schwarzer Bildschirm im Internet Hallo es Fehlen noch 2 Logfiles von Schritt 1 und 2. Bitte reiche Sie noch nach __________________ Gruß Aneri Mitglied von UNITE Lob oder Kritik? hier wirst du es los

07.02.2014, 10:49	#10
Aneri /// Malwareteam	Plötzlich weißer oder schwarzer Bildschirm im Internet Das liegt an dir. ESET kontrolliert die gesamte Festplatte auf Schadsoftware. Bestehen die Probleme auf deinem System noch? __________________ Gruß Aneri Mitglied von UNITE Lob oder Kritik? hier wirst du es los

07.02.2014, 12:50	#12
Aneri /// Malwareteam	Plötzlich weißer oder schwarzer Bildschirm im Internet Gut ich warte auf Rückmeldung __________________ Gruß Aneri Mitglied von UNITE Lob oder Kritik? hier wirst du es los

Plötzlich weißer oder schwarzer Bildschirm im Internet

Plagegeister aller Art und deren Bekämpfung: Plötzlich weißer oder schwarzer Bildschirm im Internet