Windows 7, störende Werbeanzeigen beim aufrufen von Webseiten, Probleme bei Beseitigung

96lukas · 12.03.2014, 17:28

Guten Tag liebe Community,

ich habe ein Problem mit meinem Windows 7 Laptop.

Ich wollte nicht ähnliche Problemlösungen befolgen da davon abgeraten wurde.

Zum Problem:

Immer wenn ich mit Browsern wie Opera und Mozilla Firefox surfe öffnen sich beim starten, beim öffnen einer Webseite, beim klicken auf Suchflächen oder einfach zwischendurch Werbeanzeigen in denne ich aufegfordert werde meinen Media-Player zu aktualisieren oder das Programm runterzuladen da ich Viren auf meinem Laptop habe oder es sind irgendwelche Sex Werbungen.

Da ich in Sachen Computer nicht sehr begabt bin hoffe ich hier auf Hilfe um aus dieser sache rauszukommen.

Ich habe schon probiert ob es an den Browsern liegt habe verschiedene getestet, deinstalliert und neu installiert doch es gab keine Veränderung.

Ich hoffe mal diese Infos genügen wenn nicht gebt mir bitte kurz Bescheid.

Vielen Dank im Vorraus,

Lukas

aharonov · 12.03.2014, 17:40

Hallo Lukas,

mach bitte einen FRST-Scan:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

96lukas · 12.03.2014, 17:52

Hier ist einmal das FRST.txt

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2014
Ran by Lukas Grave (administrator) on LUKASPC on 12-03-2014 17:45:07
Running from C:\Users\Lukas Grave\AppData\Local\Temp\tpvtwele.tmp
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool 
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Dropbox, Inc.) C:\Users\Lukas Grave\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
() C:\Program Files (x86)\BringStar\updateBringStar.exe
() C:\Program Files (x86)\BringStar\bin\utilBringStar.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files (x86)\Safari\Safari.exe
(Apple Inc.) C:\Program Files (x86)\Safari\Apple Application Support\WebKit2WebProcess.exe
(Microsoft Corporation) C:\Windows\splwow64.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2095400 2010-04-16] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6486120 2014-02-04] (Realtek Semiconductor)
HKLM\...\Run: [HPWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-06-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-06-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [577408 2012-02-15] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [TrayServer] - C:\Program Files (x86)\MAGIX\Video_deluxe_2008\TrayServer.exe [90112 2008-01-17] (MAGIX AG)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] - "c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update [21720 2014-03-12] (Hewlett-Packard)
HKLM-x32\...\Runonce: [freem4atomp3converteropab] -  [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-05-19] (Hewlett-Packard Company)
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\MountPoints2: {7f34e9ff-abfa-11e2-9535-ec6d725c8ec9} - G:\Startme.exe
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1355040 2014-03-03] (Conduit)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1050912 2014-03-03] (Conduit)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Suche
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Awesomehp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Awesomehp
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Awesomehp
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = Awesomehp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Awesomehp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe Awesomehp
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
SearchScopes: HKLM - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
SearchScopes: HKLM-x32 - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP9A034931-B284-4886-B0D3-27EA3C5536C8&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP9A034931-B284-4886-B0D3-27EA3C5536C8&q={searchTerms}&SSPV=
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1392835883&from=tugs&uid=ST9320325AS_5VD56KZE&q={searchTerms}
SearchScopes: HKCU - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: MediaPlayerEnhance - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-bho64.dll (Feven)
BHO: Plus-HD-7.5 - {11111111-1111-1111-1111-110511071176} - C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-bho64.dll (Plus HD)
BHO: HQ-Video-Profession-1.3 - {11111111-1111-1111-1111-110511151178} - C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-bho64.dll (HQ-Video)
BHO: HQ-Video-Pro-1.4 - {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho64.dll (HQ-Video)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: SaveSense - {0f21b1e5-5afc-43c9-9c66-515046e92ec2} - C:\Program Files (x86)\SaveSense\SaveSenseIE.dll (SaveSense)
BHO-x32: MediaPlayerEnhance - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-bho.dll (Feven)
BHO-x32: Plus-HD-7.5 - {11111111-1111-1111-1111-110511071176} - C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-bho.dll (Plus HD)
BHO-x32: HQ-Video-Profession-1.3 - {11111111-1111-1111-1111-110511151178} - C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-bho.dll (HQ-Video)
BHO-x32: HQ-Video-Pro-1.4 - {11111111-1111-1111-1111-110511291120} - C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-bho.dll (HQ-Video)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: BringStar - {6f0d3dec-9246-4b6f-a5e3-c1c169493eef} - C:\Program Files (x86)\BringStar\BringStarbho.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -  No File
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {434D472D-5637-006A-76A7-7A786E7484D7} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=3 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin-x32: @tools.updaterss.com/SaveSenseLive Update;version=9 - C:\Program Files (x86)\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-12]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-02-19] (Cherished Technololgy LIMITED)
S2 savesenselive; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-02-04] (SaveSense)
S3 savesenselivem; C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920 2014-02-04] (SaveSense)
R2 Update BringStar; C:\Program Files (x86)\BringStar\updateBringStar.exe [112416 2014-03-11] ()
R2 Util BringStar; C:\Program Files (x86)\BringStar\bin\utilBringStar.exe [112416 2014-03-11] ()
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [493568 2014-02-19] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-12 17:44 - 2014-03-12 17:45 - 00000000 ____D () C:\FRST
2014-03-12 16:29 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Macromedia
2014-03-12 16:28 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Mozilla
2014-03-12 16:28 - 2014-03-12 16:28 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-12 16:19 - 2014-03-12 16:19 - 00000056 _____ () C:\Windows\setupact.log
2014-03-12 16:19 - 2014-03-12 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 15:32 - 2014-03-12 15:32 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-12 15:32 - 2014-03-12 15:32 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-12 15:32 - 2014-03-12 15:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-09 11:57 - 2014-03-12 16:47 - 00000000 ____D () C:\Program Files (x86)\IminentToolbar
2014-03-09 11:57 - 2014-03-12 16:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-09 11:57 - 2014-03-09 12:12 - 00003538 _____ () C:\Windows\System32\Tasks\FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl
2014-03-09 11:57 - 2014-03-09 12:12 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl
2014-03-09 11:56 - 2014-03-12 13:51 - 00003124 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job
2014-03-09 11:56 - 2014-03-12 13:51 - 00002610 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-09 11:56 - 2014-03-12 13:51 - 00001550 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-updater.job
2014-03-09 11:56 - 2014-03-12 13:51 - 00001512 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-09 11:56 - 2014-03-12 13:51 - 00001410 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job
2014-03-09 11:56 - 2014-03-09 11:56 - 00004580 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-updater
2014-03-09 11:56 - 2014-03-09 11:56 - 00004542 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-09 11:56 - 2014-03-09 11:56 - 00004440 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler
2014-03-09 11:56 - 2014-03-09 11:56 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-09 11:55 - 2014-03-09 11:55 - 00001151 _____ () C:\Users\Lukas Grave\Desktop\Free M4a to MP3 Converter.lnk
2014-03-09 11:55 - 2014-03-09 11:55 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter
2014-03-09 11:54 - 2014-03-09 11:54 - 06424632 _____ (ManiacTools.com ) C:\Users\Lukas Grave\Downloads\m4a-to-mp3-81converter.exe
2014-03-09 09:15 - 2014-03-09 09:15 - 00001129 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera Software
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera Software
2014-03-08 15:53 - 2014-03-08 15:53 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Skype
2014-02-19 20:24 - 2014-02-26 17:43 - 00000000 ____D () C:\Program Files (x86)\BringStar
2014-02-19 20:12 - 2014-02-19 20:12 - 00825208 _____ (AnyProtect.com) C:\Users\Lukas Grave\AppData\Local\nsp19D0.tmp
2014-02-19 19:52 - 2014-03-12 13:52 - 00003468 _____ () C:\Windows\Tasks\MediaPlayerEnhance-chromeinstaller.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00002436 _____ () C:\Windows\Tasks\MediaPlayerEnhance-firefoxinstaller.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00002404 _____ () C:\Windows\Tasks\Plus-HD-7.5-validator.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00002344 _____ () C:\Windows\Tasks\Plus-HD-7.5-firefoxinstaller.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001630 _____ () C:\Windows\Tasks\MediaPlayerEnhance-updater.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001592 _____ () C:\Windows\Tasks\MediaPlayerEnhance-codedownloader.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001592 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-updater.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001520 _____ () C:\Windows\Tasks\Plus-HD-7.5-updater.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001490 _____ () C:\Windows\Tasks\MediaPlayerEnhance-enabler.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001482 _____ () C:\Windows\Tasks\Plus-HD-7.5-codedownloader.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001452 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-enabler.job
2014-02-19 19:52 - 2014-03-12 13:52 - 00001380 _____ () C:\Windows\Tasks\Plus-HD-7.5-enabler.job
2014-02-19 19:52 - 2014-02-19 19:52 - 00005434 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-validator
2014-02-19 19:52 - 2014-02-19 19:52 - 00004660 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004622 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-codedownloader
2014-02-19 19:52 - 2014-02-19 19:52 - 00004622 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004550 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004520 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00004512 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-codedownloader
2014-02-19 19:52 - 2014-02-19 19:52 - 00004482 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00004410 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\SupTab
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\ProgramData\WPM
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\ProgramData\IePluginService
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\Plus-HD-7.5
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerEnhance
2014-02-19 19:51 - 2014-03-12 13:52 - 00001554 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-codedownloader.job
2014-02-19 19:51 - 2014-03-12 13:51 - 00003152 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-chromeinstaller.job
2014-02-19 19:51 - 2014-03-12 13:51 - 00002680 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-firefoxinstaller.job
2014-02-19 19:51 - 2014-02-19 19:52 - 00004584 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-codedownloader
2014-02-19 19:51 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Profession-1.3
2014-02-19 19:51 - 2014-02-19 19:51 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\awesomehp
2014-02-19 19:50 - 2014-02-19 19:50 - 00000000 _____ () C:\END
2014-02-14 14:11 - 2014-02-28 22:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-13 17:20 - 2014-02-13 17:20 - 00000000 ____D () C:\Windows\SysWOW64\SearchProtect
2014-02-10 17:16 - 2014-02-11 18:43 - 07229506 _____ () C:\Users\Lukas Grave\Documents\un präsentation.odp

==================== One Month Modified Files and Folders =======

2014-03-12 17:45 - 2014-03-12 17:44 - 00000000 ____D () C:\FRST
2014-03-12 17:38 - 2013-04-27 18:57 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 17:38 - 2013-04-27 18:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-12 17:38 - 2013-04-18 21:07 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 17:38 - 2013-04-18 21:07 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 17:28 - 2010-11-04 22:43 - 01926362 _____ () C:\Windows\WindowsUpdate.log
2014-03-12 17:24 - 2013-09-09 16:19 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-12 17:01 - 2014-02-04 19:42 - 00000310 _____ () C:\Windows\Tasks\SaveSense.job
2014-03-12 16:47 - 2014-03-09 11:57 - 00000000 ____D () C:\Program Files (x86)\IminentToolbar
2014-03-12 16:47 - 2014-02-04 19:42 - 00000942 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job
2014-03-12 16:42 - 2013-04-18 20:16 - 00000000 ___RD () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-12 16:39 - 2013-04-18 20:56 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\vlc
2014-03-12 16:29 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Macromedia
2014-03-12 16:29 - 2014-03-12 16:28 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Mozilla
2014-03-12 16:28 - 2014-03-12 16:28 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-12 16:28 - 2014-03-09 11:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-12 16:28 - 2013-04-18 21:06 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Mozilla
2014-03-12 16:28 - 2013-04-18 21:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-12 16:19 - 2014-03-12 16:19 - 00000056 _____ () C:\Windows\setupact.log
2014-03-12 16:19 - 2014-03-12 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 16:14 - 2013-12-17 14:48 - 00000000 ____D () C:\Windows\Minidump
2014-03-12 16:14 - 2009-09-07 02:57 - 00000000 ____D () C:\Windows\Panther
2014-03-12 15:32 - 2014-03-12 15:32 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-12 15:32 - 2014-03-12 15:32 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-12 15:32 - 2014-03-12 15:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-12 14:03 - 2014-02-04 19:42 - 00000938 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job
2014-03-12 14:03 - 2013-10-01 17:43 - 00003222 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForLukas Grave
2014-03-12 14:03 - 2013-10-01 17:43 - 00000356 _____ () C:\Windows\Tasks\HPCeeScheduleForLukas Grave.job
2014-03-12 14:03 - 2013-09-09 16:19 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-12 14:03 - 2013-04-23 20:46 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-12 14:02 - 2013-05-01 10:49 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-03-12 13:52 - 2014-02-19 19:52 - 00003468 _____ () C:\Windows\Tasks\MediaPlayerEnhance-chromeinstaller.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00002436 _____ () C:\Windows\Tasks\MediaPlayerEnhance-firefoxinstaller.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00002404 _____ () C:\Windows\Tasks\Plus-HD-7.5-validator.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00002344 _____ () C:\Windows\Tasks\Plus-HD-7.5-firefoxinstaller.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001630 _____ () C:\Windows\Tasks\MediaPlayerEnhance-updater.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001592 _____ () C:\Windows\Tasks\MediaPlayerEnhance-codedownloader.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001592 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-updater.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001520 _____ () C:\Windows\Tasks\Plus-HD-7.5-updater.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001490 _____ () C:\Windows\Tasks\MediaPlayerEnhance-enabler.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001482 _____ () C:\Windows\Tasks\Plus-HD-7.5-codedownloader.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001452 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-enabler.job
2014-03-12 13:52 - 2014-02-19 19:52 - 00001380 _____ () C:\Windows\Tasks\Plus-HD-7.5-enabler.job
2014-03-12 13:52 - 2014-02-19 19:51 - 00001554 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-codedownloader.job
2014-03-12 13:51 - 2014-03-09 11:56 - 00003124 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job
2014-03-12 13:51 - 2014-03-09 11:56 - 00002610 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-12 13:51 - 2014-03-09 11:56 - 00001550 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-updater.job
2014-03-12 13:51 - 2014-03-09 11:56 - 00001512 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-12 13:51 - 2014-03-09 11:56 - 00001410 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job
2014-03-12 13:51 - 2014-02-19 19:51 - 00003152 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-chromeinstaller.job
2014-03-12 13:51 - 2014-02-19 19:51 - 00002680 _____ () C:\Windows\Tasks\HQ-Video-Profession-1.3-firefoxinstaller.job
2014-03-10 18:25 - 2013-04-23 11:55 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Skype
2014-03-10 16:09 - 2013-04-18 21:14 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Dropbox
2014-03-09 12:12 - 2014-03-09 11:57 - 00003538 _____ () C:\Windows\System32\Tasks\FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl
2014-03-09 12:12 - 2014-03-09 11:57 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl
2014-03-09 11:56 - 2014-03-09 11:56 - 00004580 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-updater
2014-03-09 11:56 - 2014-03-09 11:56 - 00004542 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-09 11:56 - 2014-03-09 11:56 - 00004440 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-enabler
2014-03-09 11:56 - 2014-03-09 11:56 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-09 11:55 - 2014-03-09 11:55 - 00001151 _____ () C:\Users\Lukas Grave\Desktop\Free M4a to MP3 Converter.lnk
2014-03-09 11:55 - 2014-03-09 11:55 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter
2014-03-09 11:54 - 2014-03-09 11:54 - 06424632 _____ (ManiacTools.com ) C:\Users\Lukas Grave\Downloads\m4a-to-mp3-81converter.exe
2014-03-09 09:15 - 2014-03-09 09:15 - 00001129 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera Software
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera Software
2014-03-09 09:15 - 2013-04-18 20:26 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-09 09:11 - 2009-07-14 05:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-09 09:11 - 2009-07-14 05:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-09 09:09 - 2010-07-20 22:46 - 00654610 _____ () C:\Windows\system32\perfh007.dat
2014-03-09 09:09 - 2010-07-20 22:46 - 00130192 _____ () C:\Windows\system32\perfc007.dat
2014-03-09 09:09 - 2009-07-14 06:13 - 01500018 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-09 09:06 - 2013-04-18 21:16 - 00000000 ___RD () C:\Users\Lukas Grave\Dropbox
2014-03-09 09:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-08 15:53 - 2014-03-08 15:53 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Skype
2014-03-08 15:53 - 2013-04-23 11:55 - 00000000 ____D () C:\ProgramData\Skype
2014-03-06 16:48 - 2014-02-04 16:03 - 00000000 ____D () C:\Program Files (x86)\SearchProtect
2014-03-01 19:17 - 2013-04-18 20:27 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera
2014-03-01 19:17 - 2013-04-18 20:27 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera
2014-03-01 19:16 - 2013-04-18 20:16 - 00001256 _____ () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-28 22:24 - 2014-02-14 14:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-26 17:43 - 2014-02-19 20:24 - 00000000 ____D () C:\Program Files (x86)\BringStar
2014-02-20 19:19 - 2013-09-09 16:19 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-20 19:19 - 2013-09-09 16:19 - 00003864 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-19 20:12 - 2014-02-19 20:12 - 00825208 _____ (AnyProtect.com) C:\Users\Lukas Grave\AppData\Local\nsp19D0.tmp
2014-02-19 19:52 - 2014-02-19 19:52 - 00005434 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-validator
2014-02-19 19:52 - 2014-02-19 19:52 - 00004660 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004622 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-codedownloader
2014-02-19 19:52 - 2014-02-19 19:52 - 00004622 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004550 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-updater
2014-02-19 19:52 - 2014-02-19 19:52 - 00004520 _____ () C:\Windows\System32\Tasks\MediaPlayerEnhance-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00004512 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-codedownloader
2014-02-19 19:52 - 2014-02-19 19:52 - 00004482 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00004410 _____ () C:\Windows\System32\Tasks\Plus-HD-7.5-enabler
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\SupTab
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\ProgramData\WPM
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\ProgramData\IePluginService
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\Plus-HD-7.5
2014-02-19 19:52 - 2014-02-19 19:52 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerEnhance
2014-02-19 19:52 - 2014-02-19 19:51 - 00004584 _____ () C:\Windows\System32\Tasks\HQ-Video-Profession-1.3-codedownloader
2014-02-19 19:52 - 2014-02-19 19:51 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Profession-1.3
2014-02-19 19:51 - 2014-02-19 19:51 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\awesomehp
2014-02-19 19:51 - 2013-04-18 20:16 - 00001583 _____ () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-02-19 19:50 - 2014-02-19 19:50 - 00000000 _____ () C:\END
2014-02-19 19:16 - 2013-10-27 11:42 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\SoftGrid Client
2014-02-14 14:01 - 2014-02-04 20:43 - 00000089 _____ () C:\Users\Lukas Grave\AppData\Roaming\WB.CFG
2014-02-14 14:01 - 2014-02-04 19:42 - 00003260 _____ () C:\Windows\System32\Tasks\SaveSense
2014-02-13 17:20 - 2014-02-13 17:20 - 00000000 ____D () C:\Windows\SysWOW64\SearchProtect
2014-02-11 18:45 - 2014-01-31 14:15 - 00020261 _____ () C:\Users\Lukas Grave\Documents\un.odt
2014-02-11 18:43 - 2014-02-10 17:16 - 07229506 _____ () C:\Users\Lukas Grave\Documents\un präsentation.odp

Some content of TEMP:
====================
C:\Users\Lukas Grave\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-05 19:27

==================== End Of Log ============================

--- --- ---

Und das Addition.txtFRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2014
Ran by Lukas Grave at 2014-03-12 17:45:42
Running from C:\Users\Lukas Grave\AppData\Local\Temp\tpvtwele.tmp
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.7.0.1530 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\{9ECF7817-DB11-4FBA-9DF1-296A578D513A}) (Version: 11.5.7.609 - Adobe Systems, Inc)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.95 - WildTangent) Hidden
Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{1795BAA8-65EC-66D0-9DA4-D4B1FBE7700E}) (Version: 3.0.778.0 - ATI Technologies, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Biologie heute CD (HKLM-x32\...\com.schroedel.bioheuteeinleger) (Version: 1.0 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterwe)
Biologie heute CD (x32 Version: 1.0 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterwe) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BringStar (HKLM\...\BringStar) (Version: 2014.02.18.174317 - BringStar)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.350.6 - Broadcom Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0621.2137.36973 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0621.2137.36973 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help English (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help French (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help German (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0621.2136.36973 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0621.2137.36973 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2010.0621.2137.36973 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.1.3868 - CDBurnerXP)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.3003 - CyberLink Corp.)
CyberLink DVD Suite (x32 Version: 7.0.3003 - CyberLink Corp.) Hidden
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.1.4217 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.1.4217 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2511 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.0.2511 - CyberLink Corp.) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\Firebird SQL Server D) (Version: 2.0.1.13 - MAGIX AG)
Fragen-Lern-CD 4.3 (HKLM-x32\...\de.3m5.wendel.flcd.FLCDB.FC622282278C06838B5CD08883589F2C8AB9EEDC.1) (Version: 4.3.5 - Wendel-Verlag GmbH)
Fragen-Lern-CD 4.3 (x32 Version: 4.3.5 - Wendel-Verlag GmbH) Hidden
Free iPad Video Converter 3.7.2.1 (HKLM-x32\...\Free iPad Video Converter_is1) (Version:  - FreeAudioVideoSoftTech, Inc.)
Free M4a to MP3 Converter 8.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version:  - ManiacTools.com)
Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10262.3295 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.4 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{B360E24A-BF25-4353-AA79-1B54F509024A}) (Version: 1.0.0.0 - Hewlett-Packard)
HP Game Console (x32 Version:  - WildTangent) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.3 - WildTangent)
HP Power Manager (HKLM-x32\...\{D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}) (Version: 1.4.7 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{00A42832-B21A-4296-B5F4-D296D0BC4A3E}) (Version: 2.6.3 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{72D90DB3-A16A-4545-B555-868471101833}) (Version: 8.1.4186.3400 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{62BD9D85-46D9-400E-95F1-A09B667CB57F}) (Version: 3.5.23.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Wireless Assistant (HKLM\...\{E342EC6B-5F25-47FE-B92C-DE616149B430}) (Version: 4.0.9.0 - Hewlett-Packard)
HQ-Video-Pro-1.4 (HKLM-x32\...\HQ-Video-Pro-1.4) (Version: 1.34.2.13 - HQ-Video) <==== ATTENTION
HQ-Video-Profession-1.3 (HKLM-x32\...\HQ-Video-Profession-1.3) (Version: 1.34.1.29 - HQ-Video) <==== ATTENTION
IePluginService12.27.0.3326 (HKLM-x32\...\IePlugins) (Version: 12.27.0.3326 - Cherished Technololgy LIMITED) <==== ATTENTION
Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Jewel Quest II (x32 Version: 2.2.0.95 - WildTangent) Hidden
Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2907 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2907 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{46BA053F-57B3-4153-BDB6-D37EEC8B12D7}) (Version: 1.18.15.1 - LightScribe)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Goya burnR 1.3.1.3 (D) (HKLM-x32\...\MAGIX Goya burnR D) (Version: 1.3.1.3 - MAGIX AG)
MAGIX Online Druck Service 3.4.3.0 (D) (HKLM-x32\...\MAGIX Online Druck Service D) (Version: 3.4.3.0 - MAGIX AG)
MAGIX Screenshare 4.3.6.1987 (D) (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Video deluxe 2008 7.5.3.1 (D) (HKLM-x32\...\MAGIX Video deluxe 2008 D) (Version: 7.5.3.1 - MAGIX AG)
MediaPlayerEnhance (HKLM-x32\...\MediaPlayerEnhance) (Version: 1.34.2.13 - Feven) <==== ATTENTION
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
Mozilla Thunderbird 24.0.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.0.1 (x86 de)) (Version: 24.0.1 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Opera Stable 20.0.1387.64 (HKLM-x32\...\Opera 20.0.1387.64) (Version: 20.0.1387.64 - Opera Software ASA)
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden
Plus-HD-7.5 (HKLM-x32\...\Plus-HD-7.5) (Version: 1.34.1.29 - Plus HD) <==== ATTENTION
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4204 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.4204 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3003 - CyberLink Corp.)
PowerDirector (x32 Version: 8.0.3003 - CyberLink Corp.) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6196 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.3023 - CyberLink Corp.) Hidden
RtVOsd (HKLM\...\{091A0130-A82F-4A6D-9C61-3BBBB3289030}) (Version: 1.0.6 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SaveSense (HKCU\...\SaveSense) (Version:  - ) <==== ATTENTION
SaveSense (remove only) (HKLM-x32\...\SaveSense) (Version: 5.3.0.6 - SaveSense) <==== ATTENTION
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.11.11.7 - Conduit) <==== ATTENTION
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Sony Ericsson Update Engine (HKLM-x32\...\Update Engine) (Version: 2.13.6.201305161305 - Sony Ericsson Communications AB)
Sony PC Companion 2.10.188 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.188 - Sony)
SupTab (HKLM-x32\...\SupTab) (Version: 1.1.1.0 - ) <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.17.0 - Synaptics Incorporated)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
War Thunder Launcher 1.0.1.269 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - 2013 Gaijin Entertainment Corporation)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Movie Maker (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WPM17.8.0.3325 (HKLM-x32\...\WPM) (Version: 17.8.0.3325 - Cherished Technololgy LIMITED) <==== ATTENTION
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0130AA61-87B3-405A-96F3-6F5019757BC1} - System32\Tasks\MediaPlayerEnhance-firefoxinstaller => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-firefoxinstaller.exe [2014-02-19] (Feven) <==== ATTENTION
Task: {02B2614C-B7B8-4424-9306-ED0A893A6540} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.)
Task: {0953D53A-0475-4986-80CC-501EAEE2D0EE} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {0E4AC1D9-A43A-4257-8358-7D91558009DB} - System32\Tasks\MediaPlayerEnhance-enabler => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-enabler.exe [2014-02-19] (Feven) <==== ATTENTION
Task: {0E767831-5C8F-47DD-A3CB-5F5D0D64C25C} - System32\Tasks\Plus-HD-7.5-firefoxinstaller => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-firefoxinstaller.exe [2014-02-19] (Plus HD) <==== ATTENTION
Task: {1118E748-9461-4C09-A3D9-40F9FC48FBC1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {21723A8C-0F8A-4712-8871-6374D800728D} - System32\Tasks\HQ-Video-Pro-1.4-firefoxinstaller => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-firefoxinstaller.exe [2014-03-09] (HQ-Video) <==== ATTENTION
Task: {2A80987C-82E8-4C45-9F34-C8014181C3D7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-02-10] (Hewlett-Packard)
Task: {39BBDA43-A105-4355-8549-06531E4C36DD} - System32\Tasks\MediaPlayerEnhance-chromeinstaller => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-chromeinstaller.exe [2014-02-19] (Feven) <==== ATTENTION
Task: {3CC20054-9EAB-4A49-8181-2A6EB3D6C64B} - System32\Tasks\HQ-Video-Pro-1.4-codedownloader => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-codedownloader.exe [2014-03-09] (HQ-Video) <==== ATTENTION
Task: {3F06446C-501A-42F6-BB8D-D7DAF827B601} - System32\Tasks\HPCeeScheduleForLukas Grave => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05] (Hewlett-Packard)
Task: {3F4438A3-C519-469B-834E-091569081AF2} - System32\Tasks\HQ-Video-Profession-1.3-updater => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-updater.exe [2014-02-19] (HQ-Video) <==== ATTENTION
Task: {49888ADA-9D27-47A1-B1CA-F7BB6784A9F0} - System32\Tasks\SaveSenseLiveUpdateTaskMachineUA => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [2014-02-04] (SaveSense) <==== ATTENTION
Task: {49F1158E-4548-46C8-82CE-3C8D9C8F4991} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {4A9C8B31-1B91-405B-ADDC-D023CFD08BCC} - System32\Tasks\SaveSenseLiveUpdateTaskMachineCore => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [2014-02-04] (SaveSense) <==== ATTENTION
Task: {5C34C6FD-61CA-4354-92F6-26367D1913C2} - System32\Tasks\HQ-Video-Pro-1.4-updater => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-updater.exe [2014-03-09] (HQ-Video) <==== ATTENTION
Task: {5CE321D5-5540-4091-A8CC-175E088A1151} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-03-12] (Microsoft)
Task: {660FA116-4523-47D3-8B4B-4D2AA11AE4BE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {66BACB16-7400-4B23-A95E-770B9FD172C2} - System32\Tasks\SaveSense => C:\Users\Lukas Grave\AppData\Roaming\SaveSense\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {70A341B5-D43E-44CC-8DFF-ABF0A45D15F0} - System32\Tasks\MediaPlayerEnhance-codedownloader => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-codedownloader.exe [2014-02-19] (Feven) <==== ATTENTION
Task: {71A058A1-77E1-4434-9F9A-4D9A5AC17829} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {7B7A2DA6-AA40-4A37-92D1-8D3D6FC6C2EB} - System32\Tasks\Plus-HD-7.5-enabler => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-enabler.exe [2014-02-19] (Plus HD) <==== ATTENTION
Task: {7CD1A83E-D6D0-409F-9B73-D356962FFD5B} - System32\Tasks\Plus-HD-7.5-codedownloader => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-codedownloader.exe [2014-02-19] (Plus HD) <==== ATTENTION
Task: {819810FA-B12B-4D82-8904-E31DC815353D} - System32\Tasks\MediaPlayerEnhance-updater => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-updater.exe [2014-02-19] (Feven) <==== ATTENTION
Task: {89B9E2EA-89A7-41E6-A0B6-C90017BD04F5} - System32\Tasks\HQ-Video-Pro-1.4-enabler => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-enabler.exe [2014-03-09] (HQ-Video) <==== ATTENTION
Task: {89FE096A-C9E5-49E3-8259-E447B07961CE} - System32\Tasks\HQ-Video-Profession-1.3-chromeinstaller => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-chromeinstaller.exe [2014-02-19] (HQ-Video) <==== ATTENTION
Task: {8C574235-C313-4E0C-B17E-8B6E2B9F2891} - System32\Tasks\HQ-Video-Profession-1.3-firefoxinstaller => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-firefoxinstaller.exe [2014-02-19] (HQ-Video) <==== ATTENTION
Task: {91A7C37B-E3D8-4ABC-BC0B-6D1A99A4E202} - System32\Tasks\HQ-Video-Profession-1.3-enabler => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-enabler.exe [2014-02-19] (HQ-Video) <==== ATTENTION
Task: {9762C0F5-C89E-4CE5-95E2-F2C57DE18EF0} - System32\Tasks\Plus-HD-7.5-updater => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-updater.exe [2014-02-19] (Plus HD) <==== ATTENTION
Task: {A3FF6E8C-07EF-41A3-A81A-07ECBE01DF73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {A9FE5F78-F52A-4D21-AEC3-C5BDF83896A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-02-10] (Hewlett-Packard)
Task: {AF291133-5B66-40D3-8D8E-5E616226D15E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-09] (Google Inc.)
Task: {C76B9AC9-1545-4232-ADAD-B955E6E0B865} - System32\Tasks\Plus-HD-7.5-validator => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-validator.exe [2014-02-19] (Plus HD) <==== ATTENTION
Task: {C894AF72-048A-4355-9642-65C0EA142AD4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {CF825535-DAF1-4F07-B74F-3335C0E9CA3D} - System32\Tasks\FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl => C:\Users\Lukas Grave\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl\minibarchrome.exe [2014-03-09] (Sien SA)
Task: {DA3F23E2-ACD1-4473-974A-7D8128164BBD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {DAD83575-D975-497B-9CE7-9ADA10254BE5} - System32\Tasks\HQ-Video-Profession-1.3-codedownloader => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-codedownloader.exe [2014-02-19] (HQ-Video) <==== ATTENTION
Task: {EDA886E6-DF28-4118-9FD4-C2DC2EF63D12} - System32\Tasks\HQ-Video-Pro-1.4-chromeinstaller => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-chromeinstaller.exe [2014-03-09] (HQ-Video) <==== ATTENTION
Task: {FCEF686B-7FB9-4775-AEBE-46359A913773} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForLukas Grave.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-enabler.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Pro-1.4-updater.job => C:\Program Files (x86)\HQ-Video-Pro-1.4\HQ-Video-Pro-1.4-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Profession-1.3-chromeinstaller.job => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Profession-1.3-codedownloader.job => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Profession-1.3-enabler.job => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Profession-1.3-firefoxinstaller.job => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\HQ-Video-Profession-1.3-updater.job => C:\Program Files (x86)\HQ-Video-Profession-1.3\HQ-Video-Profession-1.3-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-chromeinstaller.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-codedownloader.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-enabler.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-firefoxinstaller.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-updater.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-7.5-codedownloader.job => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-7.5-enabler.job => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-7.5-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-7.5-updater.job => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\Plus-HD-7.5-validator.job => C:\Program Files (x86)\Plus-HD-7.5\Plus-HD-7.5-validator.exe <==== ATTENTION
Task: C:\Windows\Tasks\SaveSense.job => C:\Users\LUKASG~1\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION
Task: C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job => C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2013-04-23 13:20 - 2013-10-31 11:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2010-06-18 15:26 - 2010-06-18 15:26 - 00267832 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPCommon.XmlSerializers.dll
2010-06-10 17:12 - 2010-06-10 17:12 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-06-21 21:36 - 2010-06-21 21:36 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2010-06-18 15:26 - 2010-06-18 15:26 - 00030264 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_LogicLayer.dll
2010-06-18 15:26 - 2010-06-18 15:26 - 00052280 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HardwareAccess.dll
2014-02-18 18:43 - 2014-03-11 17:29 - 00112416 _____ () C:\Program Files (x86)\BringStar\updateBringStar.exe
2014-02-19 21:28 - 2014-03-11 17:32 - 00112416 _____ () C:\Program Files (x86)\BringStar\bin\utilBringStar.exe
2013-04-18 20:32 - 2013-01-25 08:25 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-05-19 10:05 - 2010-05-19 10:05 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2010-05-19 10:05 - 2010-05-19 10:05 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2010-05-19 10:05 - 2010-05-19 10:05 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2013-04-23 13:20 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2013-04-23 13:20 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2013-04-23 13:20 - 2013-05-20 11:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2013-04-23 13:20 - 2010-01-11 15:44 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2014-01-03 10:38 - 2014-01-03 10:38 - 00571392 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2013-06-11 08:31 - 2013-06-11 08:31 - 00090112 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CalEngine.dll
2012-04-04 13:33 - 2012-04-04 13:33 - 00139776 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CAgdLNotes.dll
2013-01-08 16:02 - 2013-01-08 16:02 - 00163840 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\CAgdOutlook.dll
2012-07-26 10:51 - 2012-07-26 10:51 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VistaCalendar.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Lukas Grave\AppData\Roaming\Dropbox\bin\libcef.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2014-01-27 15:19 - 2014-01-27 15:19 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9e5dc5d1c75de12100f8c1d8c65de002\IsdiInterop.ni.dll
2010-11-04 22:46 - 2010-04-13 09:52 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-04-24 19:18 - 2012-04-24 19:18 - 00087912 _____ () C:\Program Files (x86)\Safari\Apple Application Support\zlib1.dll
2012-04-24 19:18 - 2012-04-24 19:18 - 01242472 _____ () C:\Program Files (x86)\Safari\Apple Application Support\libxml2.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/12/2014 04:58:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Safari.exe, Version: 5.34.57.2, Zeitstempel: 0x4f982b5e
Name des fehlerhaften Moduls: JavaScriptCore.dll, Version: 7534.57.3.3, Zeitstempel: 0x4f973ed0
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0009eae2
ID des fehlerhaften Prozesses: 0x28384
Startzeit der fehlerhaften Anwendung: 0xSafari.exe0
Pfad der fehlerhaften Anwendung: Safari.exe1
Pfad des fehlerhaften Moduls: Safari.exe2
Berichtskennung: Safari.exe3

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5366

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5366

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4368

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4368

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3370

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3370

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (03/12/2014 03:22:10 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{EC668A1E-797B-4D5C-854F-6389DA7FD880}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (03/09/2014 06:32:54 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (03/09/2014 02:40:55 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{EC668A1E-797B-4D5C-854F-6389DA7FD880}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (03/09/2014 00:14:53 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{EC668A1E-797B-4D5C-854F-6389DA7FD880}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (03/09/2014 11:57:05 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Search Protect by Conduit Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/09/2014 11:57:04 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "WinkHandler" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/09/2014 11:57:03 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SProtection" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (03/09/2014 11:36:16 AM) (Source: NetBT) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.2.108
registriert werden. Der Computer mit IP-Adresse 192.168.2.104 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (03/09/2014 09:54:57 AM) (Source: Microsoft-Windows-Kernel-Power) (User: NT-AUTORITÄT)
Description: Das System ist aufgrund eines kritischen thermischen Ereignisses in den Ruhezustand gewechselt.
Zeit für den Ruhezustand = 2014-03-09T08:54:57.353833100Z
            
ACPI-Thermozone = ACPI\ThermalZone\TSZ0
            
_HOT = 369K

Error: (03/08/2014 11:13:26 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "WerSvc" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1352

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (03/12/2014 04:58:54 PM) (Source: Application Error)(User: )
Description: Safari.exe5.34.57.24f982b5eJavaScriptCore.dll7534.57.3.34f973ed0c00000050009eae22838401cf3e0bf3bdbb3bC:\Program Files (x86)\Safari\Safari.exeC:\Program Files (x86)\Safari\Apple Application Support\JavaScriptCore.dll35bc5731-a9ff-11e3-a620-982b66d13ac3

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5366

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5366

Error: (03/12/2014 03:58:46 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4368

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4368

Error: (03/12/2014 03:58:45 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3370

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3370

Error: (03/12/2014 03:58:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


==================== Memory info =========================== 

Percentage of memory in use: 40%
Total physical RAM: 3893.86 MB
Available physical RAM: 2300.09 MB
Total Pagefile: 7785.86 MB
Available Pagefile: 5266.87 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:280.96 GB) (Free:140.96 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:16.83 GB) (Free:2.43 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: CB9E9924)

Partition: GPT Partition Type.

==================== End Of Log ============================

--- --- ---

Ich hoffe das ist so korrekt eingefügt oder muss ich das anders machen?

aharonov · 12.03.2014, 18:11

Passt so.

Schritt 1

Gehe zu Start --> Systemsteuerung und öffne Programme und Funktionen.
Suche und deinstalliere dort der Reihe nach folgende Einträge:
BringStar
HQ-Video-Pro-1.4
HQ-Video-Profession-1.3
IePluginService12.27.0.3326
MediaPlayerEnhance
Plus-HD-7.5
SaveSense
SaveSense (remove only)
Search Protect
SupTab
WPM17.8.0.3325
Schliesse das Fenster wieder und führe einen Neustart durch, wenn das gefordert wurde.

Schritt 2

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 3

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Bitte poste in deiner nächsten Antwort:

Log von AdwCleaner
Log von FRST

96lukas · 12.03.2014, 18:42

Hi Leo,
vielen Dank schonmal.

Hier die beiden Logs:
Vom AdwCleaner

Code:

ATTFilter

# AdwCleaner v3.021 - Bericht erstellt am 12/03/2014 um 18:30:36
# Aktualisiert 10/03/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium  (64 bits)
# Benutzername : Lukas Grave - LUKASPC
# Gestartet von : C:\Users\Lukas Grave\AppData\Local\Temp\5ei7a48t.tmp\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : savesenselive
[#] Dienst Gelöscht : savesenselivem

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\IePluginService
Ordner Gelöscht : C:\ProgramData\SaveSenseLive
Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\Program Files (x86)\IminentToolbar
Ordner Gelöscht : C:\Program Files (x86)\SaveSenseLive
Ordner Gelöscht : C:\Program Files (x86)\SupTab
Ordner Gelöscht : C:\Windows\SysWOW64\SearchProtect
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Local\SaveSenseLive
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\awesomehp
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\OpenCandy
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\SaveSense
Ordner Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\SupTab
Datei Gelöscht : C:\END
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Datei Gelöscht : C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default\user.js
Datei Gelöscht : C:\Windows\Tasks\SaveSense.job
Datei Gelöscht : C:\Windows\System32\Tasks\SaveSense
Datei Gelöscht : C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job
Datei Gelöscht : C:\Windows\System32\Tasks\SaveSenseLiveUpdateTaskMachineCore

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Classes\iLivid.torrent
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IMinentToolbar_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IMinentToolbar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6F0D3DEC-9246-4B6F-A5E3-C1C169493EEF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F0D3DEC-9246-4B6F-A5E3-C1C169493EEF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F0D3DEC-9246-4B6F-A5E3-C1C169493EEF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F21B1E5-5AFC-43C9-9C66-515046E92EC2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F0D3DEC-9246-4B6F-A5E3-C1C169493EEF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Daten Wiederhergestellt : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Daten Wiederhergestellt : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\SAFARI.EXE\shell\open\command
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\ilivid
Schlüssel Gelöscht : HKCU\Software\SaveSenseLive
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKLM\Software\caphyon
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\Software\SaveSenseLive
Schlüssel Gelöscht : HKLM\Software\supTab
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\Wpm
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Iminent

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16526

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v27.0.1 (de)

[ Datei : C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [9795 octets] - [12/03/2014 18:29:48]
AdwCleaner[S0].txt - [8017 octets] - [12/03/2014 18:30:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8077 octets] ##########

Und von FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2014
Ran by Lukas Grave (administrator) on LUKASPC on 12-03-2014 18:37:50
Running from C:\Users\Lukas Grave\AppData\Local\Temp\6u8l2klm.tmp
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool 
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Apple Inc.) C:\Program Files (x86)\Safari\Safari.exe
(Apple Inc.) C:\Program Files (x86)\Safari\Apple Application Support\WebKit2WebProcess.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\RtVOsd\RtVOsd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2095400 2010-04-16] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6486120 2014-02-04] (Realtek Semiconductor)
HKLM\...\Run: [HPWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-06-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-06-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [577408 2012-02-15] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [TrayServer] - C:\Program Files (x86)\MAGIX\Video_deluxe_2008\TrayServer.exe [90112 2008-01-17] (MAGIX AG)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-03-12] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-05-19] (Hewlett-Packard Company)
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-213023526-3373501649-270970349-1001\...\MountPoints2: {7f34e9ff-abfa-11e2-9535-ec6d725c8ec9} - G:\Startme.exe

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {4E9E0FEE-2A58-4832-95A9-78E181535829} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {53F00C7F-BEB7-4439-A693-F54C8BFB2E64} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {434D472D-5637-006A-76A7-7A786E7484D7} -  No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Lukas Grave\AppData\Roaming\Mozilla\Firefox\Profiles\m5i8mioz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-12]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
S3 RSUSBSTOR; C:\Windows\SysWOW64\Drivers\RtsUStor.sys [225280 2009-09-23] (Realtek Semiconductor Corp.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-12 18:38 - 2014-03-12 18:38 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-12 18:29 - 2014-03-12 18:30 - 00000000 ____D () C:\AdwCleaner
2014-03-12 18:24 - 2014-03-12 18:32 - 00012536 _____ () C:\Windows\PFRO.log
2014-03-12 18:24 - 2014-03-12 18:24 - 00000000 _____ () C:\Windows\SysWOW64\sho24D9.tmp
2014-03-12 17:44 - 2014-03-12 18:37 - 00000000 ____D () C:\FRST
2014-03-12 16:29 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Macromedia
2014-03-12 16:28 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Mozilla
2014-03-12 16:28 - 2014-03-12 16:28 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-12 16:19 - 2014-03-12 18:32 - 00000168 _____ () C:\Windows\setupact.log
2014-03-12 16:19 - 2014-03-12 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 15:32 - 2014-03-12 15:32 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-12 15:32 - 2014-03-12 15:32 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-12 15:32 - 2014-03-12 15:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-09 11:57 - 2014-03-12 16:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-09 11:55 - 2014-03-09 11:55 - 00001151 _____ () C:\Users\Lukas Grave\Desktop\Free M4a to MP3 Converter.lnk
2014-03-09 11:55 - 2014-03-09 11:55 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter
2014-03-09 11:54 - 2014-03-09 11:54 - 06424632 _____ (ManiacTools.com ) C:\Users\Lukas Grave\Downloads\m4a-to-mp3-81converter.exe
2014-03-09 09:15 - 2014-03-09 09:15 - 00001129 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera Software
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera Software
2014-03-08 15:53 - 2014-03-08 15:53 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Skype
2014-02-19 20:12 - 2014-02-19 20:12 - 00825208 _____ (AnyProtect.com) C:\Users\Lukas Grave\AppData\Local\nsp19D0.tmp
2014-02-14 14:11 - 2014-02-28 22:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-10 17:16 - 2014-02-11 18:43 - 07229506 _____ () C:\Users\Lukas Grave\Documents\un präsentation.odp

==================== One Month Modified Files and Folders =======

2014-03-12 18:38 - 2014-03-12 18:38 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-12 18:38 - 2013-04-27 18:57 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 18:38 - 2013-04-27 18:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-12 18:38 - 2013-04-18 21:07 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 18:38 - 2013-04-18 21:07 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-12 18:37 - 2014-03-12 17:44 - 00000000 ____D () C:\FRST
2014-03-12 18:33 - 2013-09-09 16:19 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-12 18:32 - 2014-03-12 18:24 - 00012536 _____ () C:\Windows\PFRO.log
2014-03-12 18:32 - 2014-03-12 16:19 - 00000168 _____ () C:\Windows\setupact.log
2014-03-12 18:32 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-12 18:31 - 2010-11-04 22:43 - 01947908 _____ () C:\Windows\WindowsUpdate.log
2014-03-12 18:31 - 2009-07-14 05:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-12 18:31 - 2009-07-14 05:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-12 18:30 - 2014-03-12 18:29 - 00000000 ____D () C:\AdwCleaner
2014-03-12 18:30 - 2013-04-18 20:16 - 00000995 _____ () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-03-12 18:25 - 2013-10-01 17:43 - 00000356 _____ () C:\Windows\Tasks\HPCeeScheduleForLukas Grave.job
2014-03-12 18:24 - 2014-03-12 18:24 - 00000000 _____ () C:\Windows\SysWOW64\sho24D9.tmp
2014-03-12 18:24 - 2013-09-09 16:19 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-12 18:24 - 2013-04-18 21:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-12 17:47 - 2014-02-04 19:42 - 00000942 _____ () C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job
2014-03-12 16:42 - 2013-04-18 20:16 - 00000000 ___RD () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-12 16:39 - 2013-04-18 20:56 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\vlc
2014-03-12 16:29 - 2014-03-12 16:29 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Macromedia
2014-03-12 16:29 - 2014-03-12 16:28 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Mozilla
2014-03-12 16:28 - 2014-03-12 16:28 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-12 16:28 - 2014-03-09 11:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-12 16:28 - 2013-04-18 21:06 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Mozilla
2014-03-12 16:19 - 2014-03-12 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-12 16:14 - 2013-12-17 14:48 - 00000000 ____D () C:\Windows\Minidump
2014-03-12 16:14 - 2009-09-07 02:57 - 00000000 ____D () C:\Windows\Panther
2014-03-12 15:32 - 2014-03-12 15:32 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-03-12 15:32 - 2014-03-12 15:32 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-12 15:32 - 2014-03-12 15:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-12 14:03 - 2013-10-01 17:43 - 00003222 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForLukas Grave
2014-03-12 14:03 - 2013-04-23 20:46 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-03-12 14:02 - 2013-05-01 10:49 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-03-10 18:25 - 2013-04-23 11:55 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Skype
2014-03-10 16:09 - 2013-04-18 21:14 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Dropbox
2014-03-09 11:55 - 2014-03-09 11:55 - 00001151 _____ () C:\Users\Lukas Grave\Desktop\Free M4a to MP3 Converter.lnk
2014-03-09 11:55 - 2014-03-09 11:55 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter
2014-03-09 11:54 - 2014-03-09 11:54 - 06424632 _____ (ManiacTools.com ) C:\Users\Lukas Grave\Downloads\m4a-to-mp3-81converter.exe
2014-03-09 09:15 - 2014-03-09 09:15 - 00001129 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera Software
2014-03-09 09:15 - 2014-03-09 09:15 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera Software
2014-03-09 09:15 - 2013-04-18 20:26 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-09 09:09 - 2010-07-20 22:46 - 00654610 _____ () C:\Windows\system32\perfh007.dat
2014-03-09 09:09 - 2010-07-20 22:46 - 00130192 _____ () C:\Windows\system32\perfc007.dat
2014-03-09 09:09 - 2009-07-14 06:13 - 01500018 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-09 09:06 - 2013-04-18 21:16 - 00000000 ___RD () C:\Users\Lukas Grave\Dropbox
2014-03-08 15:53 - 2014-03-08 15:53 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-08 15:53 - 2014-03-08 15:53 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Skype
2014-03-08 15:53 - 2013-04-23 11:55 - 00000000 ____D () C:\ProgramData\Skype
2014-03-01 19:17 - 2013-04-18 20:27 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\Opera
2014-03-01 19:17 - 2013-04-18 20:27 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Local\Opera
2014-03-01 19:16 - 2013-04-18 20:16 - 00001256 _____ () C:\Users\Lukas Grave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-28 22:24 - 2014-02-14 14:11 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-20 19:19 - 2013-09-09 16:19 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-20 19:19 - 2013-09-09 16:19 - 00003864 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-19 20:12 - 2014-02-19 20:12 - 00825208 _____ (AnyProtect.com) C:\Users\Lukas Grave\AppData\Local\nsp19D0.tmp
2014-02-19 19:16 - 2013-10-27 11:42 - 00000000 ____D () C:\Users\Lukas Grave\AppData\Roaming\SoftGrid Client
2014-02-14 14:01 - 2014-02-04 20:43 - 00000089 _____ () C:\Users\Lukas Grave\AppData\Roaming\WB.CFG
2014-02-11 18:45 - 2014-01-31 14:15 - 00020261 _____ () C:\Users\Lukas Grave\Documents\un.odt
2014-02-11 18:43 - 2014-02-10 17:16 - 07229506 _____ () C:\Users\Lukas Grave\Documents\un präsentation.odp

Some content of TEMP:
====================
C:\Users\Lukas Grave\AppData\Local\Temp\avgnt.exe
C:\Users\Lukas Grave\AppData\Local\Temp\nsn78F5.exe
C:\Users\Lukas Grave\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-05 19:27

==================== End Of Log ============================

--- --- ---
Ich hoffe dieses mal ist etwas positives herauszulesen..

Dankeschön,

Gruß

Lukas

aharonov · 12.03.2014, 21:18

Hallo Lukas,

sieht schon besser aus. Wie läuft die Kiste jetzt?

Schritt 1

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Windows 7, störende Werbeanzeigen beim aufrufen von Webseiten, Probleme bei Beseitigung

Plagegeister aller Art und deren Bekämpfung: Windows 7, störende Werbeanzeigen beim aufrufen von Webseiten, Probleme bei Beseitigung