| |
| |||||||
Log-Analyse und Auswertung: Avira Scan, versteckter Treiber gefunden, infiziertes Objekt, Fehlermeldungen - bin ziemlich überfordertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
| |
19.02.2014, 17:53
| #1 |
 |  Avira Scan, versteckter Treiber gefunden, infiziertes Objekt, Fehlermeldungen - bin ziemlich überfordert Hallo an das Forum, ich habe leider diverse Probleme mit meinem Laptop und bin damit ziemlich überfordert. Bei Avira Suchläufen wurden schon öfter "versteckte Objekte" gefunden, dieses Problem ließ sich meist damit lösen, daß ich mit CCCleaner altes Zeug gelöscht habe. Nachdem nun bei einem Suchlauf außer den versteckten Objekten auch ein versteckter Treiber gefunden wurde, habe ich mit Malwarebytes einen Scan gemacht. Es wurde ein infiziertes Objekt gefunden, das habe ich gelöscht (hoffe ich zumindest). Mir wurde auch bei den Suchläufen mit Avira (wenn das obige Problem auftrat) mitgeteilt, daß "versteckte Objekte" gefunden wurden, die auf ein unerwünschtes Programm, oder einen Virus hinweisen können. Nach Ende des Avira Suchlaufs wurde aber jeweils angezeigt: Kein Virus gefunden. Außerdem erscheint beim Hochfahren meines Laptops ab und an die Fehlermeldung: Das ich mein Antivirenprogramm aktivieren soll, obwohl das laut Avira Control Center aktiviert ist. Wenn ich dann auf das "Fähnchen" gehe, um Avira zu starten, wird Programm zwar geöffnet, aber die Fehlermeldung bleibt weiterhin sichtbar. Irgendwann verschwindet diese dann. Des Weiteren habe ich Programme, die upgedatet werden müssen, hier weiß ich aber nicht, ob wirklich alle Updates sein müssen. Letzte Woche verschickte ich eine Mail und erhielt eine Rückmail eines "Mail Delivery Service (Mailer-Daemon)", daß meine Mail nicht zugestellt werden konnte. Beigefügt waren 2 Anlagen, diese habe ich jedoch nicht geöffnet, sondern das Ganze gelöscht. Die Mail ist übrigens normal beim Empfänger angekommen. Und einige andere komische "Dinge" die mit meinem Laptop passieren, wie Fehlermeldungen, Langsamkeit usw. Außerdem erhalte ich in letzter Zeit vermehrt Werbeeinblendungen, teilweise mit Popup-Fenster, Werbung, die "sich bewegt" oder manchmal auch Musik, die plötzlich läuft. Logfile Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.18.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16518 Papagena :: HOME [Administrator] 19.02.2014 00:05:58 mbam-log-2014-02-19 (00-05-58).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 239616 Laufzeit: 9 Minute(n), 21 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Program Files (x86)\SoftonicDownloader_fuer_messenger-reviver.exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Punkt 1: Laufwerksemulationen abschalten mit Defogger, ausgeführt. Punkt 2: Logfile mit Farbar: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014 Ran by Papagena (administrator) on HOME on 19-02-2014 01:56:05 Running from C:\Program Files (x86) Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (AMD) C:\Windows\system32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe (Acer Incorporated) C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Acer Group) C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe (Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe (FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Acer Incorporated) C:\Program Files\eMachines\eMachines Power Management\ePowerEvent.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe (Google Inc.) C:\Users\Papagena\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Papagena\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Google Inc.) C:\Users\Papagena\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Papagena\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE (Microsoft Corporation) C:\Windows\splwow64.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\avscan.exe (Microsoft Corporation) C:\Windows\system32\mspaint.exe (Microsoft Corporation) C:\Windows\winsxs\amd64_microsoft-windows-taskmgr_31bf3856ad364e35_6.1.7601.17514_none_7288349cbfd37b08\taskmgr.exe (Farbar) C:\Program Files (x86)\Farbar Recovery Scan-FRST64.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2097960 2010-04-22] (Synaptics Incorporated) HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-13] (Realtek Semiconductor) HKLM\...\Run: [Acer ePower Management] - C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated) HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation) HKLM-x32\...\Run: [] - [X] HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-18] (Avira Operations GmbH & Co. KG) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware ] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation) HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [3872080 2013-05-14] (Microsoft Corporation) HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\Run: [Google Update] - C:\Users\Papagena\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-18] (Google Inc.) HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\Run: [FileHippo.com] - C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com) HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: E - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: G - G:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: H - H:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {0bf68197-6351-11e3-aec1-5cac4c10752e} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {0bf681a4-6351-11e3-aec1-5cac4c10752e} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {0bf68253-6351-11e3-aec1-60eb696c34a2} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {2f16472e-4860-11e3-80c7-46ac4c10752e} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {63a49862-4dca-11e2-ac58-5cac4c10752e} - F:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {721d8243-3964-11e3-904a-60eb696c34a2} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {c41d2e9d-3851-11e3-b0e9-5cac4c10752e} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {c41d2ecb-3851-11e3-b0e9-5cac4c10752e} - E:\.\Autorun.exe AUTORUN=1 HKU\S-1-5-21-3809914474-2379848128-2296167677-1000\...\MountPoints2: {f64ab3bf-1aa9-11e0-b28b-5cac4c10752e} - H:\.\Autorun.exe AUTORUN=1 ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/ SearchScopes: HKCU - {DBFD8F59-B386-4152-A699-8FFBB643E036} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=kw&q={searchTerms}&locale=&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=3a3d7026-c8f4-42c3-9857-1f6ed4c57c44&apn_sauid=BC5A1834-5134-4BC3-9B8B-B95B02772D0B BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Tcpip\..\Interfaces\{EBFE3F1E-CF30-4637-9277-C8BD08B755DC}: [NameServer]212.23.115.84 212.23.115.148 Chrome: ======= CHR HomePage: hxxp://www.google.com CHR DefaultSearchURL: hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 CHR DefaultNewTabURL: CHR Plugin: (Shockwave Flash) - C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Extension: (Google Wallet) - C:\Users\Papagena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [68096 2011-01-09] () R2 ALDITALKVerbindungsassistent_Service; C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2013-07-26] () R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG) S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-18] (Avira Operations GmbH & Co. KG) R2 ePowerSvc; C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [868896 2010-06-11] (Acer Incorporated) S3 GameConsoleService; C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe [246520 2010-04-04] (WildTangent, Inc.) R2 GREGService; C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] () R2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group) ==================== Drivers (Whitelisted) ==================== R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-30] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-18] (Avira Operations GmbH & Co. KG) S3 ewsercd; C:\Windows\System32\DRIVERS\ewsercd.sys [112896 2011-01-08] (Huawei Technologies Co., Ltd.) S3 ew_hwusbdev; C:\Windows\SysWOW64\DRIVERS\ew_hwusbdev.sys [117248 2013-12-12] (Huawei Technologies Co., Ltd.) R3 hwdatacard; C:\Windows\SysWOW64\DRIVERS\ewusbmdm.sys [121600 2013-12-12] (Huawei Technologies Co., Ltd.) U3 Usbilt; U3 ugtdipow; \??\C:\Users\Papagena\AppData\Local\Temp\ugtdipow.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-19 01:56 - 2014-02-19 01:56 - 00013948 _____ () C:\Program Files (x86)\FRST.txt 2014-02-19 01:55 - 2014-02-19 01:56 - 00000000 ____D () C:\FRST 2014-02-19 01:54 - 2014-02-19 01:55 - 00050477 _____ () C:\Users\Papagena\Downloads\Defogger (1).exe 2014-02-19 01:41 - 2014-02-19 01:43 - 00380416 _____ () C:\Users\Papagena\Downloads\Gmer-19357.exe 2014-02-19 01:37 - 2014-02-19 01:39 - 00017265 _____ () C:\Users\Papagena\Downloads\Defogger.exe 2014-02-19 01:35 - 2014-02-19 01:35 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-19 01:35 - 2014-02-19 01:35 - 00000000 _____ () C:\Windows\setupact.log 2014-02-19 01:22 - 2014-02-19 01:30 - 02153472 _____ (Farbar) C:\Program Files (x86)\Farbar Recovery Scan-FRST64.exe 2014-02-18 23:34 - 2014-02-18 23:34 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-02-18 23:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-02-18 11:16 - 2014-02-18 11:16 - 00002012 _____ () C:\Users\Papagena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk 2014-02-18 11:16 - 2014-02-18 11:16 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com 2014-02-18 02:57 - 2014-02-18 02:58 - 00264757 _____ () C:\Program Files (x86)\File Hippo Update Checker-FHSetup.exe 2014-02-18 02:00 - 2014-02-18 02:00 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\Fax 2014-02-18 01:54 - 2014-02-18 01:56 - 00700980 _____ () C:\Program Files (x86)\adblock_edge-2.0.7-sm+an+tb+fx-windows.xpi 2014-02-16 11:59 - 2014-02-16 12:27 - 00019968 _____ () C:\Users\Papagena\Eigene Dokumente\XXX Lohn berechnen.xls 2014-02-14 01:02 - 2014-02-14 01:02 - 00007698 _____ () C:\Program Files (x86)\hijackthis.log 2014-02-13 04:58 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-02-13 04:58 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-02-13 04:58 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-02-13 04:58 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-02-13 04:58 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-02-13 04:58 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-02-13 04:58 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-02-13 04:58 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-02-13 04:58 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-02-13 04:58 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-02-13 04:58 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-02-13 04:58 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-02-13 04:58 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-02-13 04:58 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-02-13 04:58 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-02-13 04:58 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-02-13 04:58 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-02-13 04:58 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-02-13 04:58 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-02-13 04:58 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-02-13 04:58 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-02-13 04:58 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-02-13 04:58 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-02-13 04:58 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-02-13 04:58 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-02-13 04:58 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-02-13 04:58 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-02-13 04:58 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-02-13 04:58 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-02-13 04:58 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-02-13 04:58 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-02-13 04:58 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-02-13 04:58 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-02-13 04:58 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-02-13 04:58 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-02-13 04:58 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-02-13 04:58 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-02-13 04:58 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-02-13 04:58 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-02-13 02:46 - 2014-02-13 02:46 - 00003024 _____ () C:\Windows\System32\Tasks\{379DF8EF-DFCC-468D-ADE2-9AC566292CF1} 2014-02-13 01:38 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll 2014-02-13 01:38 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll 2014-02-13 01:38 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll 2014-02-13 01:38 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll 2014-02-13 01:38 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2014-02-13 01:38 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe 2014-02-13 01:38 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe 2014-02-13 01:38 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe 2014-02-13 01:38 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe 2014-02-13 01:38 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll 2014-02-13 01:38 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll 2014-02-13 01:38 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll 2014-02-13 01:38 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll 2014-02-13 01:38 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2014-02-13 01:38 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe 2014-02-13 01:38 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe 2014-02-13 01:38 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe 2014-02-13 01:38 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe 2014-02-13 01:37 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2014-02-13 01:37 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-02-13 01:37 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2014-02-13 01:37 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-02-13 00:01 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-02-13 00:01 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-02-12 23:18 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-02-12 23:18 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-02-12 23:18 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-02-12 23:18 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-02-12 23:11 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls 2014-02-12 23:11 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls 2014-02-02 14:00 - 2014-02-02 14:00 - 00000000 ____D () C:\Program Files (x86)\backups 2014-01-28 22:49 - 2014-01-28 22:49 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\Meine empfangenen Dateien 2014-01-25 21:00 - 2014-01-25 21:00 - 00000000 ____D () C:\Users\Papagena\AppData\Roaming\Avira 2014-01-25 20:12 - 2014-01-25 20:20 - 130658432 _____ () C:\Program Files (x86)\avira_free_antivirus_de.exe 2014-01-23 23:37 - 2014-01-30 15:08 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\XXX 2014-01-21 16:53 - 2014-01-21 16:53 - 00006514 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-01-21 16:53 - 2014-01-21 16:53 - 00002976 _____ () C:\Windows\System32\Tasks\{9CAE0ACA-697C-441E-B198-1F86552BE328} 2014-01-21 15:34 - 2014-01-21 15:34 - 00002970 _____ () C:\Windows\System32\Tasks\{ADB3E73F-DAF0-4DC1-B1A9-9A6C9D66E718} 2014-01-21 15:24 - 2014-01-21 15:24 - 00002958 _____ () C:\Windows\System32\Tasks\{CAAEE4C8-5AEF-4F41-BE9C-B09DD371C4E2} ==================== One Month Modified Files and Folders ======= 2014-02-19 01:56 - 2014-02-19 01:56 - 00013948 _____ () C:\Program Files (x86)\FRST.txt 2014-02-19 01:56 - 2014-02-19 01:55 - 00000000 ____D () C:\FRST 2014-02-19 01:55 - 2014-02-19 01:54 - 00050477 _____ () C:\Users\Papagena\Downloads\Defogger (1).exe 2014-02-19 01:43 - 2014-02-19 01:41 - 00380416 _____ () C:\Users\Papagena\Downloads\Gmer-19357.exe 2014-02-19 01:40 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-19 01:40 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-19 01:39 - 2014-02-19 01:37 - 00017265 _____ () C:\Users\Papagena\Downloads\Defogger.exe 2014-02-19 01:35 - 2014-02-19 01:35 - 00000000 _____ () C:\Windows\setuperr.log 2014-02-19 01:35 - 2014-02-19 01:35 - 00000000 _____ () C:\Windows\setupact.log 2014-02-19 01:33 - 2013-06-08 20:19 - 00000000 ____D () C:\Firefox 2014-02-19 01:33 - 2011-01-09 11:07 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-02-19 01:32 - 2012-09-18 14:46 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000UA.job 2014-02-19 01:30 - 2014-02-19 01:22 - 02153472 _____ (Farbar) C:\Program Files (x86)\Farbar Recovery Scan-FRST64.exe 2014-02-19 01:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-02-19 00:44 - 2009-01-01 01:24 - 02087139 _____ () C:\Windows\WindowsUpdate.log 2014-02-18 23:34 - 2014-02-18 23:34 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2014-02-18 23:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing 2014-02-18 22:46 - 2011-01-13 23:09 - 00000000 ____D () C:\Users\Papagena\AppData\Local\Adobe 2014-02-18 18:32 - 2012-09-18 14:46 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000Core.job 2014-02-18 15:51 - 2011-01-07 16:11 - 00000000 ____D () C:\Users\Papagena 2014-02-18 13:05 - 2011-01-10 19:09 - 00000000 ____D () C:\Users\Papagena\Tracing 2014-02-18 12:33 - 2011-01-09 11:07 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-02-18 11:18 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-18 11:16 - 2014-02-18 11:16 - 00002012 _____ () C:\Users\Papagena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk 2014-02-18 11:16 - 2014-02-18 11:16 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com 2014-02-18 03:14 - 2013-12-12 18:18 - 00000000 ____D () C:\Users\Papagena\AppData\Roaming\ALDITALKVerbindungsassistent 2014-02-18 03:14 - 2013-03-26 18:50 - 00000000 ___RD () C:\Users\Papagena\Eigene Dokumente 2014-02-18 02:58 - 2014-02-18 02:57 - 00264757 _____ () C:\Program Files (x86)\File Hippo Update Checker-FHSetup.exe 2014-02-18 02:05 - 2009-07-14 06:13 - 00006512 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-18 02:05 - 2009-01-01 10:12 - 09566480 _____ () C:\Windows\system32\perfh007.dat 2014-02-18 02:05 - 2009-01-01 10:12 - 03000618 _____ () C:\Windows\system32\perfc007.dat 2014-02-18 02:00 - 2014-02-18 02:00 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\Fax 2014-02-18 01:56 - 2014-02-18 01:54 - 00700980 _____ () C:\Program Files (x86)\adblock_edge-2.0.7-sm+an+tb+fx-windows.xpi 2014-02-17 12:28 - 2011-01-09 11:07 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-02-17 12:28 - 2011-01-09 11:07 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-02-16 18:27 - 2012-09-18 14:46 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000UA 2014-02-16 18:27 - 2012-09-18 14:46 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000Core 2014-02-16 12:27 - 2014-02-16 11:59 - 00019968 _____ () C:\Users\Papagena\Eigene Dokumente\XXX Lohn berechnen.xls 2014-02-14 01:02 - 2014-02-14 01:02 - 00007698 _____ () C:\Program Files (x86)\hijackthis.log 2014-02-13 14:18 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-02-13 02:46 - 2014-02-13 02:46 - 00003024 _____ () C:\Windows\System32\Tasks\{379DF8EF-DFCC-468D-ADE2-9AC566292CF1} 2014-02-13 01:12 - 2013-07-14 01:23 - 00000000 ____D () C:\Windows\system32\MRT 2014-02-13 01:09 - 2011-03-27 23:02 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-02-08 02:18 - 2013-11-21 02:28 - 00025600 _____ () C:\Users\Papagena\Dokumente\Unterlagen XXX.xls 2014-02-06 13:16 - 2014-02-13 04:58 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-02-06 12:30 - 2014-02-13 04:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-02-06 12:30 - 2014-02-13 04:58 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-02-06 12:12 - 2014-02-13 04:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-02-06 12:07 - 2014-02-13 04:58 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-02-06 12:06 - 2014-02-13 04:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-02-06 11:57 - 2014-02-13 04:58 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-02-06 11:56 - 2014-02-13 04:58 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-02-06 11:52 - 2014-02-13 04:58 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-02-06 11:49 - 2014-02-13 04:58 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-02-06 11:48 - 2014-02-13 04:58 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-02-06 11:48 - 2014-02-13 04:58 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-02-06 11:38 - 2014-02-13 04:58 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-02-06 11:32 - 2014-02-13 04:58 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-02-06 11:20 - 2014-02-13 04:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-02-06 11:17 - 2014-02-13 04:58 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-02-06 11:11 - 2014-02-13 04:58 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-02-06 11:01 - 2014-02-13 04:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-02-06 11:00 - 2014-02-13 04:58 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-02-06 10:57 - 2014-02-13 04:58 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-02-06 10:57 - 2014-02-13 04:58 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-02-06 10:52 - 2014-02-13 04:58 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-02-06 10:52 - 2014-02-13 04:58 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-02-06 10:50 - 2014-02-13 04:58 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-02-06 10:49 - 2014-02-13 04:58 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-02-06 10:47 - 2014-02-13 04:58 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-02-06 10:46 - 2014-02-13 04:58 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-02-06 10:25 - 2014-02-13 04:58 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-02-06 10:25 - 2014-02-13 04:58 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-02-06 10:24 - 2014-02-13 04:58 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-02-06 10:22 - 2014-02-13 04:58 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-02-06 10:13 - 2014-02-13 04:58 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-02-06 10:09 - 2014-02-13 04:58 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-02-06 10:03 - 2014-02-13 04:58 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-02-06 09:55 - 2014-02-13 04:58 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-02-06 09:41 - 2014-02-13 04:58 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-02-06 09:40 - 2014-02-13 04:58 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-02-06 09:36 - 2014-02-13 04:58 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-02-06 09:34 - 2014-02-13 04:58 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-02-04 22:52 - 2012-01-17 23:52 - 00000000 ____D () C:\ProgramData\CanonIJPLM 2014-02-04 12:33 - 2014-01-06 23:34 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\Ausdrucken 2014-02-03 13:27 - 2013-09-23 17:31 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\G+N 2014-02-03 12:23 - 2009-01-01 01:23 - 00000000 ____D () C:\Program Files (x86)\Launch Manager 2014-02-02 14:00 - 2014-02-02 14:00 - 00000000 ____D () C:\Program Files (x86)\backups 2014-01-30 15:08 - 2014-01-23 23:37 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\MXXX 2014-01-28 22:49 - 2014-01-28 22:49 - 00000000 ____D () C:\Users\Papagena\Eigene Dokumente\Meine empfangenen Dateien 2014-01-25 21:00 - 2014-01-25 21:00 - 00000000 ____D () C:\Users\Papagena\AppData\Roaming\Avira 2014-01-25 20:20 - 2014-01-25 20:12 - 130658432 _____ () C:\Program Files (x86)\avira_free_antivirus_de.exe 2014-01-25 16:51 - 2013-06-08 20:18 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-01-25 16:51 - 2013-02-14 12:57 - 00000000 ____D () C:\ProgramData\Avira 2014-01-25 16:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration 2014-01-21 16:53 - 2014-01-21 16:53 - 00006514 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-01-21 16:53 - 2014-01-21 16:53 - 00002976 _____ () C:\Windows\System32\Tasks\{9CAE0ACA-697C-441E-B198-1F86552BE328} 2014-01-21 15:34 - 2014-01-21 15:34 - 00002970 _____ () C:\Windows\System32\Tasks\{ADB3E73F-DAF0-4DC1-B1A9-9A6C9D66E718} 2014-01-21 15:24 - 2014-01-21 15:24 - 00002958 _____ () C:\Windows\System32\Tasks\{CAAEE4C8-5AEF-4F41-BE9C-B09DD371C4E2} Some content of TEMP: ==================== C:\Users\Papagena\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-02-18 11:49 ==================== End Of Log ============================ [CODE]Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2014 Ran by Papagena at 2014-02-19 01:56:42 Running from C:\Program Files (x86) Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Acrobat.com (x32 Version: 1.6.65 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden Adobe Flash Player 10 ActiveX (x32 Version: 10.1.53.64 - Adobe Systems Incorporated) Adobe Photoshop CS (x32 Version: CS - Adobe Systems, Inc.) Adobe Reader 9.5.5 MUI (x32 Version: 9.5.5 - Adobe Systems Incorporated) Agatha Christie - Death on the Nile (x32 Version: 2.2.0.95 - WildTangent) Hidden Alcor Micro USB Card Reader (x32 Version: 1.9.17.06019 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 1.9.17.06019 - Alcor Micro Corp.) Hidden ALDI TALK Verbindungsassistent (x32 Version: ALDI TALK 4.2 - ALDI TALK Verbindungsassistent) ATI Catalyst Install Manager (Version: 3.0.778.0 - ATI Technologies, Inc.) Avira Free Antivirus (x32 Version: 14.0.2.344 - Avira) BeCyPDFMetaEdit (x32 Version: 2.37.0 - Benjamin Bentmann) Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Broadcom Gigabit NetLink Controller (Version: 14.2.4.2 - Broadcom Corporation) Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden Canon Easy-PhotoPrint EX (x32 Version: - ) Canon Easy-WebPrint EX (x32 Version: - ) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (x32 Version: - ) Canon MG5100 series Benutzerregistrierung (x32 Version: - ) Canon MG5100 series MP Drivers (Version: - ) Canon MP Navigator EX 4.0 (x32 Version: - ) Canon My Printer (x32 Version: - ) Canon Solution Menu EX (x32 Version: - ) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0527.1242.20909 - ATI) Hidden Catalyst Control Center InstallProxy (x32 Version: 2010.0527.1242.20909 - ATI Technologies, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2010.0527.1242.20909 - ATI) Hidden CCC Help Chinese Standard (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Chinese Traditional (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Czech (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Danish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Dutch (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help English (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Finnish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help French (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help German (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Greek (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Hungarian (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Italian (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Japanese (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Korean (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Norwegian (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Polish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Portuguese (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Russian (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Spanish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Swedish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Thai (x32 Version: 2010.0527.1241.20909 - ATI) Hidden CCC Help Turkish (x32 Version: 2010.0527.1241.20909 - ATI) Hidden ccc-core-static (x32 Version: 2010.0527.1242.20909 - Ihr Firmenname) Hidden ccc-utility64 (Version: 2010.0527.1242.20909 - ATI) Hidden CCleaner (Version: 3.27 - Piriform) CDex - Open Source Digital Audio CD Extractor (x32 Version: 1.70.4.2009 - Georgy Berdyshev) Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden eBay Worldwide (x32 Version: 2.1.0901 - OEM) eMachines Game Console (x32 Version: - WildTangent) Hidden eMachines Games (x32 Version: 1.0.1.3 - WildTangent) eMachines Power Management (x32 Version: 5.00.3005 - Acer Incorporated) eMachines Recovery Management (x32 Version: 4.05.3013 - Acer Incorporated) eMachines Registration (x32 Version: 1.03.3003 - Acer Incorporated) eMachines ScreenSaver (x32 Version: 1.1.0806.2010 - Acer Incorporated) eMachines Updater (x32 Version: 1.02.3001 - Acer Incorporated) Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden FileHippo.com Update Checker (x32 Version: - ) Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden Google Chrome (HKCU Version: 32.0.1700.107 - Google Inc.) Google Earth (x32 Version: 7.1.2.2019 - Google) Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden Identity Card (x32 Version: 1.00.3003 - Acer Incorporated) Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation) Intel(R) Rapid Storage Technology (x32 Version: 9.6.0.1014 - Intel Corporation) Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden Launch Manager (x32 Version: 4.0.12 - eMachines) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden NTI Media Maker 9 (x32 Version: 9.0.2.8928 - NTI Corporation) NTI Media Maker 9 (x32 Version: 9.0.2.8928 - NTI Corporation) Hidden PDFCreator (x32 Version: 1.2.3 - Frank Heindörfer, Philip Chinery) Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden Realtek High Definition Audio Driver (x32 Version: 6.0.1.6156 - Realtek Semiconductor Corp.) Synaptics Pointing Device Driver (Version: 15.0.18.0 - Synaptics Incorporated) Video Web Camera (x32 Version: 1.0.4.2 - Liteon) Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden Welcome Center (x32 Version: 1.02.3004 - Acer Incorporated) Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5 - Microsoft Corporation) Windows Live Call (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden Windows Live Essentials (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden Windows Live Fotogalerie (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden Windows Live Mail (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden Windows Live Messenger (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden Windows Live Movie Maker (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden Windows Live Sync (x32 Version: 14.0.8117.416 - Microsoft Corporation) Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Windows Live-Uploadtool (x32 Version: 14.0.8014.1029 - Microsoft Corporation) Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Zuma's Revenge (x32 Version: 2.2.0.95 - WildTangent) Hidden ==================== Restore Points ========================= 11-02-2014 15:01:40 Windows Update 12-02-2014 22:56:25 Windows Update 13-02-2014 00:08:25 Windows Update 13-02-2014 03:57:50 Windows Update 18-02-2014 20:09:39 Windows Update ==================== Hosts content: ========================== 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {036175AC-C01D-4611-B90E-A6DD5D50E4DD} - System32\Tasks\{C8FC5804-544D-4048-9602-548BBC016BC3} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup.exe [2013-07-26] () Task: {08E25EAC-7997-47BD-860B-B8F147909C75} - System32\Tasks\{40285521-2DB4-4863-89EB-5B167B2429A3} => C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe [2013-12-18] (Avira Operations GmbH & Co. KG) Task: {09F4085D-4DE0-4A29-A969-A4D9ECB030A9} - System32\Tasks\{FB21A8D4-F989-4BBD-A7F2-5F0E7B6F39FA} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe [2013-07-26] () Task: {0A416707-89BE-445B-BC13-68E428D7DABA} - System32\Tasks\{ADB3E73F-DAF0-4DC1-B1A9-9A6C9D66E718} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {0AB448DF-D6F7-42CF-92EE-9845E6B561D9} - System32\Tasks\{7C2A5CA5-D09F-4133-B7E9-A14944B6A13F} => C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_SMSMMS.exe [2012-12-21] (WebToGo Mobiles Internet GmbH) Task: {0DDAA953-CEAD-4044-8F17-5AFA693C0194} - System32\Tasks\{379DF8EF-DFCC-468D-ADE2-9AC566292CF1} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {135C1DB9-5069-4595-B285-BED8DB596E98} - System32\Tasks\{3356BE13-2C99-4384-872D-692AD4E17512} => C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [2010-04-16] (Microsoft Corporation) Task: {13FC8A93-E787-4272-9801-F879614F4A0A} - System32\Tasks\{A8681DB0-6F75-4842-AA3F-67D74AF1BA9B} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {170EA8DC-F6F6-427C-859F-CC0475B11BFC} - System32\Tasks\{7F16C150-933D-4E5C-B460-F1B8B888FA75} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {17C1650B-0418-4A33-967C-724D85C1CB83} - System32\Tasks\{8A890854-5304-45D2-8C04-D03A2A374E70} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {18219F34-5C77-4BBC-A0F5-88B6079E8990} - System32\Tasks\{B5B46A82-B928-4B9E-9895-C1541E187DD0} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {18D18A1E-A64D-4E65-A47A-B4FBDC118E82} - System32\Tasks\{7FA59A5C-2C27-40C2-A2B5-61816E6BDF87} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {19171FAD-2AE8-49BB-B42A-A4B741E0D1F3} - System32\Tasks\{EF49D117-556C-4CBD-8CA7-A78AF7C87534} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {20DF5031-A7E0-4546-94BF-FB116E0D07A6} - System32\Tasks\{BE8DB7F9-D69C-404B-8785-D64A865E38F7} => C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe [2012-12-21] () Task: {20F486DB-4F68-47A9-AC54-B74B2B768791} - System32\Tasks\{A9DEB582-E307-4088-992E-A23333582AF6} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {232E6FCB-F6B2-4FBB-BD71-8B636F01DEF7} - System32\Tasks\{F4F46C31-0FA7-4C83-877D-E4251C02E37B} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {233D6139-7DB3-46DC-8DF1-F8B4BA1190F5} - System32\Tasks\{683D0E79-A2A3-4B6F-A324-187CF90E9CEF} => C:\Program Files (x86)\Skype\\Phone\Skype.exe Task: {25D3962A-B0ED-470D-90C4-6389ACDC845B} - System32\Tasks\{B8A87761-2091-49F1-B2D7-58F74915BB99} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {266ED89F-957C-456C-9A4C-9F9E52073E8B} - System32\Tasks\{70286F7A-A30A-4000-8F2F-0726BB97064E} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {2C6DFFEC-EC70-4816-BCF0-17D3F5CCFFCC} - System32\Tasks\{D02C5B72-7DB6-47CE-8F20-14179AF523FD} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {2F70DDC9-7F7F-4E8F-AED3-087847890F08} - System32\Tasks\{8DEDA9DC-BF73-43D9-A853-7E8F7DED4DBD} => C:\Program Files (x86)\eMachines Games\Zuma's Revenge\ZumasRevenge-WT.exe [2010-04-16] (WildTangent, Inc.) Task: {30325255-706A-49DF-A17B-82F2F89B4DED} - System32\Tasks\{473A3E87-72C9-408F-A38E-0220D395E9F0} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {3902A497-AFB7-4728-B575-9FAD7E2A1BC4} - System32\Tasks\{DD63D180-043E-42BE-BD5B-7B7E00BC6F30} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {3A490A68-4CC1-4E5E-AE56-D29AE5BCBD7D} - System32\Tasks\{FC5569FB-D19F-4C0F-8CC6-DA7B9387C0D1} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {3C4209DF-43ED-47EB-BCB0-C4E7700DCD6B} - System32\Tasks\{95D3264C-CD0F-4A32-AEA7-7F6775B1A61D} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {3D46397A-3277-476C-9485-E52BAF44EA5C} - System32\Tasks\{B51A5920-B44D-4280-9E9E-74F0826D11CA} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {3E6BB79B-E127-4E80-A786-0611E63BD0D7} - System32\Tasks\{7168DD9F-4C65-41F5-A4D0-FAFB52059AB6} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {4121669C-1B96-4489-A3E0-A97A5335505D} - System32\Tasks\{FB49050B-3750-4012-8BED-9716081DAC5A} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {427A2D44-24F8-48CF-B402-7373E38BD32B} - System32\Tasks\{F14524C1-A225-4214-8F28-D3C3DD735E74} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {431B767B-C1BA-45F6-8981-834FB714000F} - System32\Tasks\{32D95867-4173-4DA5-9D46-1031DE7CFEA0} => C:\Program Files (x86)\Verbindungsassistent\Verbindungsassistent.exe Task: {47945319-DCA6-4594-A84A-4198ED004DF4} - System32\Tasks\{542F032C-4490-4217-882B-D3B155F9B788} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {51DB8090-CC0E-4416-BA52-33DB31802D28} - System32\Tasks\{4AAED0D6-3712-45DE-990C-F188D1EF166A} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {53FC3079-5A10-41B0-A69F-30A40FD629C3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-09] (Google Inc.) Task: {568615BE-853A-4555-90D4-EF9F60139689} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000Core => C:\Users\Papagena\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-18] (Google Inc.) Task: {5AF7F1D4-EEAF-4590-947C-685446423546} - System32\Tasks\{E3989110-5C3F-46D2-B1E6-8D8442E6E4B8} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {5B7DF626-0D62-4637-BFEB-0CBF1191619B} - System32\Tasks\{43321596-17B4-4D9E-A823-E614E360819C} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=4.1.0.179.369&LastError=206 Task: {5C027C8F-2800-4230-B6D8-1F99A020F6CA} - System32\Tasks\{210AAEAA-556F-483A-BF29-F7A0F2E564AE} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {5FCCFF90-5E56-465D-9D92-DCCF8CB1ED09} - System32\Tasks\{B80A9CF5-A5DC-4E5C-B151-667864192241} => C:\Users\Papagena\Downloads\mbam-setup-1.75.0.1300 (2).exe Task: {606481F4-D4B3-4D7A-82B4-F0447173A209} - System32\Tasks\{909EFB60-DB88-46DB-9877-8FB6AF99DCA1} => \\localhost\C$\@GMT-2012.12.21-10.10.41\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe Task: {6177351D-6F38-4826-83BF-8C225AA977F5} - System32\Tasks\{777BFBBA-CBE0-4FBA-8947-C9AD727FDB9B} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {619D5B79-2FD5-4860-AD9E-0E51F92C5376} - System32\Tasks\{D74B577D-C95C-4181-B3D2-03449EDF388C} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {649D678E-2E30-49F0-863B-AA22CDAAFE84} - System32\Tasks\{4D3562D0-F623-4D7E-8A80-23BC4EB4CC46} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {67091232-C062-4D43-B5E5-F8AE75AAF935} - System32\Tasks\{2804F6D4-762B-4BBB-A92F-C1CC0BC45316} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {6ACBAEF8-81C6-42BE-AECA-C06B3DDDBB9A} - System32\Tasks\{81333A75-576B-4577-A8FA-A915D561B264} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=4.1.0.179.369&LastError=206 Task: {6B6FC9CE-B0CC-4F60-992C-4DD0E36EB274} - System32\Tasks\{AD03F8FA-4DEB-400B-AC7D-A25D3B6370B0} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {6D9EA902-9F85-42A8-81F1-D819B69250ED} - System32\Tasks\{AE5889CE-BB50-47E2-B424-A7E3A661401D} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {71C78925-0D75-498F-AF44-87C69D018FAE} - System32\Tasks\{BD3B71E9-48E1-4FD2-8625-031EFE8A98B9} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {73C56966-ADAE-434D-8104-B01C25A8D036} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-09] (Google Inc.) Task: {767F87E5-8D73-4E27-9423-C2FBE9880B2A} - System32\Tasks\{C9A0B571-5019-4D36-9B79-4AB0FA2C7EC0} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {775AD2AC-2DE4-498B-9731-5574311AB614} - System32\Tasks\{CAAEE4C8-5AEF-4F41-BE9C-B09DD371C4E2} => C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [2010-04-16] (Microsoft Corporation) Task: {777CBA19-AE26-42CA-8545-BD983B8D5B9E} - System32\Tasks\{2E69D95C-57CA-4760-AAA2-BE45843A0DED} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {79BD430C-F56D-43D1-B574-EBBBD014B271} - System32\Tasks\{9ABD609D-435A-4A1E-9810-3558114476CF} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {813F8E96-AACB-41C5-8A9E-7E4B598E2712} - System32\Tasks\{4975156E-C53A-48DE-82B9-CB0882C15A24} => \\localhost\C$\@GMT-2012.12.21-10.10.41\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe Task: {847B347B-E571-4378-A4FF-A49853389B98} - System32\Tasks\{044EDBE5-A757-4C2C-813F-55CF1BA52E10} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {84C7EA22-A003-451E-856B-7F3014C60965} - System32\Tasks\{745728DB-1961-494D-AE7C-CB4639A00C66} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {884939E5-2FEB-4013-8035-A95AF83F50B6} - System32\Tasks\{4CFD974C-EB5E-4EAE-A871-34D16195CC7E} => C:\Users\Papagena\Downloads\AldiTalkv4_2Win.exe Task: {8899B7BB-E762-4EAC-B2B2-66C2F3DC9D06} - \Advanced System Protector No Task File Task: {8B6D4710-42EA-44A1-AA58-447F230797F4} - System32\Tasks\{AB6ABB71-7F9C-4128-9432-896D0F47C0D9} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {8C30B168-8FA7-43FA-98B7-136470B08841} - System32\Tasks\{BB6DC52B-1DAE-496C-A061-33828E554516} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {91A05DF4-DCD0-4C2F-8060-BF2A80B2C47D} - System32\Tasks\{DB5F05B1-B356-46DE-836E-17150C239ECD} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup.exe [2013-07-26] () Task: {922E4705-789F-4729-8F8A-B9BAD09FCB7A} - System32\Tasks\{50623A8F-73AB-49C1-B8F6-08A39D4CC07A} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {92E1BC15-1FCE-434E-A04E-C9BF6DC08541} - System32\Tasks\{ED87AE63-F2FF-4EBE-8289-16958F84F361} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {93E88BD6-E090-4E10-AA95-D5BF4B6FF85E} - System32\Tasks\{7D76C31E-A93E-4DF7-A882-B22279CA2EB4} => C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe [2013-12-18] (Avira Operations GmbH & Co. KG) Task: {9455FD66-3F83-4C2C-94BE-B6BBD0FBCE10} - \Scheduled Update for Ask Toolbar No Task File Task: {99903ABA-9FF7-4C01-9A46-A27DFF1F735E} - System32\Tasks\{D5E8B8E3-30C7-44EA-93F8-D24D820F1B71} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {9B9BE4CC-8236-4BDB-99C9-7B91FB765C15} - System32\Tasks\{93B29133-84EC-4B21-ADA3-EF2F8553DC93} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {A19ECD98-63C8-4192-9226-B24B59079B10} - System32\Tasks\{574174BA-C5AD-4F64-A634-5543A27451CD} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {A342229F-7B30-4088-B7C0-D55C7E3474D6} - System32\Tasks\{4835E78F-9C84-434A-A270-4A61D5A6C174} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {A4CAED5B-251B-485F-986A-C6EB60C69446} - System32\Tasks\{56AA5313-A2F6-4911-A885-8C7BD27A9CBD} => C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [2010-04-16] (Microsoft Corporation) Task: {A5112260-D4F0-4A22-92D8-5D77A6AE2B4B} - System32\Tasks\{DC902702-C434-449A-A791-CF2D4DE2F13B} => C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe [2013-12-18] (Avira Operations GmbH & Co. KG) Task: {A5311F6D-7DFB-4D92-85F2-851C4025EAD1} - System32\Tasks\{634A3847-1E0A-4FC2-939B-A290D88387E1} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {A54CFC48-86B5-44AE-A091-F9DC4DCED0D9} - System32\Tasks\{1E40213A-6EAD-4229-A1F8-66944ADF4BC5} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {A5DFCFD3-8830-40BE-ADD6-6B26BAA9C144} - System32\Tasks\{108A874E-C002-41A8-A423-8993F8491190} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {A6768EB1-675C-41FD-8E96-2EFB956E4A40} - System32\Tasks\{9CAE0ACA-697C-441E-B198-1F86552BE328} => C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE [2010-06-23] (Microsoft Corporation) Task: {A8D84F87-7E90-4038-81CC-60FCFC5F10CF} - System32\Tasks\{84A58D95-E201-435B-B146-452681104F16} => C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_SMSMMS.exe [2012-12-21] (WebToGo Mobiles Internet GmbH) Task: {AC888673-12F6-41FC-8F75-D3E36C576FA9} - System32\Tasks\{582A5DC6-60E6-463F-8D0B-5C56DC99E09F} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {ADBA1ED6-58E0-48A5-B2CD-8F9AED3F785F} - System32\Tasks\{FA53C799-2563-406E-BEE7-1BC0913263AA} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {B48608BE-F587-4A60-BF01-28BABDA7CF90} - System32\Tasks\{E0704E65-AEAD-4298-9FEC-FC33E1F99BC2} => C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE [2010-06-23] (Microsoft Corporation) Task: {B5926438-F53A-4791-BA62-29CD82584A8A} - System32\Tasks\{D42DBFC9-3D72-454C-8F9D-615CC9969B55} => C:\Users\Papagena\Downloads\spybot-21190.exe Task: {BA7CA76D-6544-4E52-92A0-91F8563ABA33} - System32\Tasks\{FCEBE41A-CD24-41FF-9BB6-46871516820A} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {BB35D1AE-C06F-4708-9E07-307AB7CEDB3C} - System32\Tasks\{F65D90BA-A68F-4324-8DA8-18CE8D016348} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {BBB6A07A-55F2-4DB6-9475-039509EDEB8E} - System32\Tasks\{A3A6726D-2740-4249-9922-C7439AEF4E8E} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {BD400C60-7C6A-4AAF-BFB8-4DBC930A2A56} - System32\Tasks\{7FA8D1BF-6D27-4D79-9640-A3C9CBB20559} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {BD61ABBE-0613-4ADA-891B-3611554D8FDB} - System32\Tasks\{1874C642-4F89-4B76-A388-B8E1046ADC17} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup.exe [2013-07-26] () Task: {BE99B763-B3EA-499D-804B-DE8C25BF5EA4} - System32\Tasks\{D151EEA8-001D-480F-87A9-45030C787283} => C:\Program Files (x86)\Verbindungsassistent\Verbindungsassistent.exe Task: {BFE9A1F7-AB10-4326-8ED8-7901563A1812} - System32\Tasks\{617C5DEA-EFDE-44B9-9F00-324337FCFD41} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {C336C123-C00B-4F16-ADA6-1CD447C6F6FB} - System32\Tasks\{4D2197D9-5687-4561-91B0-CF04543299C9} => C:\Users\Papagena\Downloads\spybot-21190.exe Task: {C356E0FE-9DA7-4D02-9190-8D4B4378BAC2} - System32\Tasks\{9499B234-FCDC-4725-8725-E5C5523966DB} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {CA1D2902-7EAA-49DA-A131-84A534D52857} - System32\Tasks\{3F3B5583-5709-414D-94C5-9E829DF72E05} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe [2013-07-26] () Task: {CCDD4143-E202-4F78-B4A0-8D36F921B0F7} - System32\Tasks\{6E7233D6-F3DC-4157-BF8D-3A565049EFE6} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {D23FAAAC-D3B6-4031-8839-FAC97DE97458} - System32\Tasks\{F29B9FFC-DBE2-4297-930A-715459B7DFCA} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {D33DC6D3-38D9-432E-8376-CCAE1F5A426C} - System32\Tasks\{DCA45132-5793-455B-A8F9-BB1AD4F6A505} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {D43DFF44-FC16-42F3-A1BD-8FBB06857362} - System32\Tasks\{E1BDF06A-3946-4CD2-B87C-CAC4BFF67AC5} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe [2013-07-26] () Task: {D54D44B7-B43B-4215-9DCF-FCBA2289418F} - System32\Tasks\{C9DBFDF3-029E-457B-8F05-204F0D03442B} => C:\Program Files (x86)\Verbindungsassistent\Verbindungsassistent.exe Task: {DABAD21D-74EC-472A-A7B3-9C99E97EA89B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-01-23] (Piriform Ltd) Task: {DB42C483-F4BA-4C17-8925-EDA71242997E} - System32\Tasks\{9BC83DCA-2EE5-4A50-AFB6-75EE4A7E78D2} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {DB5EE1A6-8671-499D-9631-714828DF515C} - System32\Tasks\{487ADD2B-2479-446A-BD57-FF381A1D1559} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\addServices_autorun_fix_tool.exe [2013-12-12] () Task: {DCE2B653-5F16-42EB-B7E6-A0A65E05DC72} - System32\Tasks\{21EEB954-1542-47AE-94DD-787D5E9AE095} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {DD0CCBFB-CA07-4AAF-9896-E474CEDE684F} - System32\Tasks\{F8AF9BAD-23E6-4B3A-A7BF-504EEC9A5819} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {DDAD4753-5414-4193-9D55-132AA950357C} - System32\Tasks\{2C1B161D-EA0F-4B05-8465-1CFD7AD33F7B} => C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe [2013-12-18] (Avira Operations GmbH & Co. KG) Task: {DEDDA663-0DE4-490E-9928-755397013E11} - System32\Tasks\{B8F8CEF7-72DD-410F-B3E0-02922D686357} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {E3B16460-8FF1-4589-A1FC-8D3B571D0E79} - System32\Tasks\{AF29EAF4-028C-40CD-B3E5-8A124DDA870C} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {E65BEB7B-B8B2-464D-A82E-C92C3DA6C0D8} - System32\Tasks\{B3FE9F2C-99C7-4F2E-8E7A-016A83B6D0DA} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {E72E6F26-2F6E-423C-B56F-CD0514E08861} - System32\Tasks\{CF24C47A-CCAD-4C98-804B-B94C4FFE557C} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {E8841371-C18E-4C1E-9D14-13D97669F028} - System32\Tasks\{E21679B7-0947-4102-A295-CDCAD3506023} => C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [2010-04-16] (Microsoft Corporation) Task: {EC7B53E5-2905-44C8-AA64-7A164961BC96} - System32\Tasks\{5AAC7797-3A75-43F4-B6BF-4072714A5FCE} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {F4372B65-7DFE-4680-A449-DF5855941C4D} - System32\Tasks\{F5E15D5C-1800-4363-9B52-C379CCF78E57} => C:\Program Files\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe [2012-12-21] () Task: {F697CF81-DA85-462A-B73A-DEA9703F7536} - System32\Tasks\{DC2CE196-EE4B-4947-BFC3-4CA2B98385DF} => C:\Users\Papagena\Desktop\ALDITALKVerbindungsassistent.exe Task: {F73FBA8E-D726-443E-930F-4C2D44BA1137} - System32\Tasks\{F2BCF8A7-B82A-4D26-9422-92B3301C16AA} => C:\Program Files\PDFCreator\PDFCreator.exe [2012-02-19] (pdfforge hxxp://www.pdfforge.org/) Task: {F75A9905-9787-4D3C-BFF4-F8815CCDEC80} - System32\Tasks\{0CB0EF88-B8A4-450B-9E6E-EA1EDCF1C8F0} => C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [2010-04-16] (Microsoft Corporation) Task: {F75CF576-5304-4246-B773-D24A4A572FA6} - System32\Tasks\{97027CF7-6D45-417F-B79F-246EA1B1452D} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {F7F0BF86-E993-4B79-98A0-B1188CB25FAA} - System32\Tasks\{A6F313EC-BEF4-4B3A-984E-C17912892BE5} => C:\Program Files (x86)\ALDITALKVerbindungsassistent\Setup_1.exe Task: {F9AF5540-DB50-4072-9079-5D76D2AA1868} - System32\Tasks\{ED1C1508-5969-4CE4-84CC-7AF7ADD1A69C} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {FC35D106-DAB6-47A5-8766-3324DDEB7F8B} - System32\Tasks\{8666D1D1-1352-4004-8629-2E6037686BA9} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {FCED9CCB-6677-4955-895D-C7D65C9D4DD7} - System32\Tasks\{AC345700-1B45-40AF-8FCD-2C17847D570F} => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2013-05-14] (Microsoft Corporation) Task: {FE2FDEDB-CD79-47E8-850A-98A71587C510} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000UA => C:\Users\Papagena\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-18] (Google Inc.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000Core.job => C:\Users\Papagena\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3809914474-2379848128-2296167677-1000UA.job => C:\Users\Papagena\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2012-02-19 23:50 - 2005-03-12 01:07 - 00087040 _____ () C:\Windows\System32\pdfcmnnt.dll 2012-01-17 23:52 - 2010-04-05 20:55 - 00116104 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE 2013-12-12 18:18 - 2013-07-26 14:48 - 01792568 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe 2013-12-12 18:18 - 2013-07-26 14:48 - 00510520 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe 2013-12-12 18:18 - 2013-07-26 14:48 - 00358968 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe 2013-06-08 20:18 - 2013-12-18 09:32 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll 2013-12-12 18:18 - 2013-07-26 14:35 - 00102400 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgDatabase.dll 2013-12-12 18:18 - 2013-07-26 14:34 - 00106496 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgUtil.dll 2013-12-12 18:18 - 2013-07-26 14:35 - 00090112 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgPorts.dll 2013-12-12 18:18 - 2013-07-26 14:37 - 00200704 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgDetection.dll 2013-12-12 18:18 - 2013-07-26 14:36 - 00086016 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgDialup.dll 2013-12-12 18:18 - 2013-07-26 14:34 - 00012288 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WTGDebugs.dll 2013-12-12 18:18 - 2013-07-26 14:38 - 00073728 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgDriverInstall.dll 2013-12-12 18:18 - 2013-07-26 14:42 - 00569344 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgCore.dll 2013-12-12 18:18 - 2013-07-26 14:37 - 00139264 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgBluetooth.dll 2013-12-12 18:18 - 2013-07-26 14:39 - 00204800 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\LiveBoxCM.dll 2013-12-12 18:18 - 2007-02-27 19:44 - 00823296 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\LIBEAY32.dll 2013-12-12 18:18 - 2013-07-26 14:36 - 00126976 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WtgWiFi.dll 2013-12-12 18:18 - 2013-07-26 14:48 - 00614400 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WTGXMLUtil.dll 2013-12-12 18:18 - 2013-07-26 14:38 - 00303104 ____N () C:\Program Files (x86)\ALDITALKVerbindungsassistent\WTGSMSPCClient.Dll 2014-02-13 11:39 - 2014-02-13 11:39 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\bfd5296be62268bc7a31a424f0d1ad5f\IsdiInterop.ni.dll 2010-07-26 02:59 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-02-04 03:00 - 2014-02-02 00:41 - 00715592 _____ () C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\libglesv2.dll 2014-02-04 03:00 - 2014-02-02 00:41 - 00100168 _____ () C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\libegl.dll 2014-02-04 03:00 - 2014-02-02 00:42 - 04055368 _____ () C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll 2014-02-04 03:00 - 2014-02-02 00:42 - 00399688 _____ () C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll 2014-02-04 03:00 - 2014-02-02 00:41 - 01634632 _____ () C:\Users\Papagena\AppData\Local\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll 2013-06-08 20:18 - 2013-12-18 09:32 - 00394808 _____ () c:\program files (x86)\avira\antivir desktop\sqlite3.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Disabled items from MSCONFIG ============== MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/18/2014 11:32:00 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (02/18/2014 05:09:21 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: ALDITALKVerbindungsassistent_Service.exe, Version: 0.0.0.0, Zeitstempel: 0x51f27d44 Name des fehlerhaften Moduls: WTGHandOver.dll, Version: 1.0.0.1, Zeitstempel: 0x51f27dfd Ausnahmecode: 0xc0000005 Fehleroffset: 0x00001a10 ID des fehlerhaften Prozesses: 0x67c Startzeit der fehlerhaften Anwendung: 0xALDITALKVerbindungsassistent_Service.exe0 Pfad der fehlerhaften Anwendung: ALDITALKVerbindungsassistent_Service.exe1 Pfad des fehlerhaften Moduls: ALDITALKVerbindungsassistent_Service.exe2 Berichtskennung: ALDITALKVerbindungsassistent_Service.exe3 Error: (02/18/2014 11:52:07 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3. Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein. Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose. Error: (02/18/2014 11:50:50 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT) Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich. Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT) Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich. Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT) Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich. Error: (02/17/2014 11:12:06 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3. Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein. Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose. Error: (02/17/2014 11:10:46 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error: (02/17/2014 02:41:09 PM) (Source: Application Hang) (User: ) Description: Programm ALDITALKVerbindungsassistent.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1818 Startzeit: 01cf2be598513734 Endzeit: 11 Anwendungspfad: C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe Berichts-ID: System errors: ============= Error: (02/18/2014 06:22:39 PM) (Source: DCOM) (User: HOME) Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}HOMEPapagenaS-1-5-21-3809914474-2379848128-2296167677-1000LocalHost (unter Verwendung von LRPC) Error: (02/18/2014 06:22:33 PM) (Source: DCOM) (User: HOME) Description: ComputerstandardLokalAktivierung{9BA05972-F6A8-11CF-A442-00A0C90A8F39}{9BA05972-F6A8-11CF-A442-00A0C90A8F39}HOMEPapagenaS-1-5-21-3809914474-2379848128-2296167677-1000LocalHost (unter Verwendung von LRPC) Error: (02/18/2014 05:09:22 PM) (Source: Service Control Manager) (User: ) Description: Dienst "ALDITALKVerbindungsassistent_Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (02/17/2014 09:19:05 PM) (Source: Server) (User: ) Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{34F651A8-D38D-45DD-B763-14561FABB6A3} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden. Error: (02/17/2014 09:11:02 PM) (Source: DCOM) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (02/17/2014 11:21:50 AM) (Source: Server) (User: ) Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{A210773A-BDAA-4766-9DBB-8B8B4FD70BA6} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden. Error: (02/17/2014 11:10:48 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Error: (02/17/2014 11:10:48 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535. Error: (02/17/2014 01:28:28 AM) (Source: Service Control Manager) (User: ) Description: Dienst "ALDITALKVerbindungsassistent_Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (02/16/2014 11:35:09 PM) (Source: volsnap) (User: ) Description: Das Zeitlimit für den Lösch- und Speicherschreibvorgang für Volume "C:" wurde beim Warten auf eine Schreibvorgangfreigabe überschritten. Microsoft Office Sessions: ========================= Error: (02/18/2014 11:32:00 PM) (Source: SideBySide)(User: ) Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\SoftonicDownloader_fuer_messenger-reviver.exe Error: (02/18/2014 05:09:21 PM) (Source: Application Error)(User: ) Description: ALDITALKVerbindungsassistent_Service.exe0.0.0.051f27d44WTGHandOver.dll1.0.0.151f27dfdc000000500001a1067c01cf2c92b99a6470C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exeC:\Program Files (x86)\ALDITALKVerbindungsassistent\WTGHandOver.dll067eef22-98b7-11e3-a460-60eb696c34a2 Error: (02/18/2014 11:52:07 AM) (Source: SideBySide)(User: ) Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8 Error: (02/18/2014 11:50:50 AM) (Source: SideBySide)(User: ) Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3 Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT) Description: WmiApRplWmiApRpl8F20300004D070000 Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT) Description: Performance1637070000000000000000000009030000 Error: (02/18/2014 02:05:31 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT) Description: Performance1637070000000000000000000009030000 Error: (02/17/2014 11:12:06 PM) (Source: SideBySide)(User: ) Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8 Error: (02/17/2014 11:10:46 PM) (Source: SideBySide)(User: ) Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3 Error: (02/17/2014 02:41:09 PM) (Source: Application Hang)(User: ) Description: ALDITALKVerbindungsassistent.exe0.0.0.0181801cf2be59851373411C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent.exe CodeIntegrity Errors: =================================== Date: 2012-05-15 13:35:13.099 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2012-05-15 13:35:13.036 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-07-13 13:43:14.938 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-07-13 13:43:14.908 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 13:38:00.808 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 13:38:00.798 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 01:16:14.809 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 01:16:14.789 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 01:07:02.227 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-04-25 01:07:02.207 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\eMachines\eMachines Power Management\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 70% Total physical RAM: 3958.81 MB Available physical RAM: 1173.05 MB Total Pagefile: 7915.8 MB Available Pagefile: 4748.4 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (eMachines) (Fixed) (Total:452.66 GB) (Free:363.27 GB) NTFS Drive d: (MD 30219PH) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS Drive e: (MEDION) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: CA353DFD) Partition 1: (Not Active) - (Size=13 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=453 GB) - (Type=07 NTFS) ==================== End Of Log ============================[/CODE Ich hoffe, ich habe alle Anweisungen richtig befolgt. Vielen Dank Papagena |
| Themen zu Avira Scan, versteckter Treiber gefunden, infiziertes Objekt, Fehlermeldungen - bin ziemlich überfordert |
| anlage, antivirus, branding, browser, canon, desktop, device driver, firefox, flash player, hijack, home, homepage, langsamkeit, launch, logfile, netzwerk, programm, pup.optional.softonic, realtek, registry, security, software, svchost.exe, tr/crypt.zpack.gen8, tr/crypt.zpack.gen8., updates, versteckter treiber, vista, werbung |
Baum-Darstellung