Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Kann kein Antivirus-Programm installieren!

Kann kein Antivirus-Programm installieren!


Plagegeister aller Art und deren Bekämpfung: Kann kein Antivirus-Programm installieren!

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 23.04.2014, 19:45   #1
pepe91
 
Kann kein Antivirus-Programm installieren! - Standard

Kann kein Antivirus-Programm installieren!


Ich bin neu hier,weil ich den Eindruck habe viele kompetente Leute in der Materie zu finden,nun zu meinem Problem:

Jedes Mal wenn ich versuche ein Antivirus-Programm herunterzuladen,schließt sich der Browser.
Es passiert immer dann,wenn ich Wörter wie Virus,Antivirus oder jegliche Namen von Programmen im Browser eintippe.Außerdem Ist es mir nicht möglcich die Firewall zu aktivieren,da auch hier das gleiche passiert.Sobald ich versuche das Fenster der Firewall zu öffnen,schließt das System sofort alles.

Ich habe versucht mit adwcleaner nach Spyware zu suchen,aber sobald ich nach dem Scan auf löschen klicke,signalisiert es miras Programm funktioniert nicht mehr...

Ich würde den Rechner ungern formatieren und würde mich freuen wenn jemand mir auf anderer Art und Weise helfen kann.

Alt 23.04.2014, 20:06   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Kann kein Antivirus-Programm installieren! - Standard

Kann kein Antivirus-Programm installieren!


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 23.04.2014, 20:50   #3
pepe91
 
Kann kein Antivirus-Programm installieren! - Standard

Kann kein Antivirus-Programm installieren!


Hier die FRST.txt Datei:
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-04-2014
Ran by Pietro (administrator) on PIETRO-PC on 23-04-2014 21:40:17
Running from C:\Users\Pietro\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
() C:\Windows\ykzviuqfzzcjhast.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Users\Pietro\lvqiox.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Pietro\AppData\Local\Temp\bcgrt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Pietro\AppData\Local\Temp\bcgrt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ssvf] => C:\Windows\bsmnfwxrqvdpsqntsupga.exe [466944 2014-04-23] ()
HKLM-x32\...\Run: [yendkqgpdx] => C:\Users\Pietro\AppData\Local\Temp\fsiftgdtoptbaunpk.exe [466944 2014-04-23] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Runonce: [bcgrt] - octrgusjfhmvvqknji.exe . [X]
HKLM-x32\...\RunOnce: [fkshnshpc] - C:\Users\Pietro\AppData\Local\Temp\mcvvmccvtxeprokpnoiy.exe . [466944 2014-04-23] ()
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [motfik] => C:\Windows\octrgusjfhmvvqknji.exe [466944 2014-04-23] ( ())
HKLM\...\Policies\Explorer\Run: [lkm] => C:\Users\Pietro\AppData\Local\Temp\mcvvmccvtxeprokpnoiy.exe [466944 2014-04-23] ( ())
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [Facebook Update] => C:\Users\Pietro\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-04-04] (Facebook Inc.)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [RGSC] => C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [lvqiox] => C:\Users\Pietro\lvqiox.exe [61440 2013-08-15] ()
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [zcivzcp] => C:\Windows\bsmnfwxrqvdpsqntsupga.exe [466944 2014-04-23] ()
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [ssvf] => C:\Users\Pietro\AppData\Local\Temp\bsmnfwxrqvdpsqntsupga.exe [466944 2014-04-23] () <===== ATTENTION
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [lollipop_04140840] => c:\users\pietro\appdata\local\lollipop\lollipop_04140840.exe [3379712 2014-04-14] (Garner)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\RunOnce: [Application Restart #0] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032 2014-04-02] (Google Inc.)
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\RunOnce: [osznswkr] - bsmnfwxrqvdpsqntsupga.exe .
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\RunOnce: [bcgrt] - C:\Users\Pietro\AppData\Local\Temp\octrgusjfhmvvqknji.exe [466944 2014-04-23] ()
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\Policies\system: [DisableRegistryTools] 1
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\MountPoints2: {270b2205-dd7b-11e2-a975-90fba64808de} - F:\LaunchU3.exe -a
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\MountPoints2: {4b948be1-2344-11e1-bfa8-90fba64808de} - E:\Setup.exe
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\MountPoints2: {7fa627e1-20c3-11e1-b2e8-90fba64808de} - E:\.\autorun.exe
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\MountPoints2: {91da412a-20b3-11e1-a380-cde6764b80da} - I:\pushinst.exe
HKU\S-1-5-21-2904802376-3464329387-873405524-1000\...\MountPoints2: {f357650d-20b2-11e1-8af2-806e6f6e6963} - B:\setup.exe /autorun
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Startup.pif ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK-Konfigurationstool.lnk
ShortcutTarget: TP-LINK-Konfigurationstool.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe ()
Startup: C:\Users\Pietro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Startup.pif ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=ec0b9164-92ec-4fb2-ab16-af7062db4966&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAD1B29E1E0B4CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=ec0b9164-92ec-4fb2-ab16-af7062db4966&searchtype=ds&q={searchTerms}&installDate=01/06/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
URLSearchHook: HKLM-x32 - (No Name) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - No File
URLSearchHook: HKLM-x32 - (No Name) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_medium=amt&utm_campaign=eXQ&utm_content=sc&from=amt&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&ts=1380014022
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = 
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=ec0b9164-92ec-4fb2-ab16-af7062db4966&searchtype=ds&q={searchTerms}&installDate=01/06/2013
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&q={searchTerms}
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPFAA953DD-C018-4AD0-907C-329F89985F66&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Bundlore&dpid=Bundlore&co=DE&userid=ec0b9164-92ec-4fb2-ab16-af7062db4966&searchtype=ds&q={searchTerms}&installDate=01/06/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPFAA953DD-C018-4AD0-907C-329F89985F66&q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837&ts=1393413543&type=default&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: No Name - {51a86bb3-6602-4c85-92a5-130ee4864f13} -  No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: No Name - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} -  No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKCU - No Name - {C840E246-6B95-475E-9BD7-CAA1C7ECA9F2} -  No File
Toolbar: HKCU - No Name - {51A86BB3-6602-4C85-92A5-130EE4864F13} -  No File
Toolbar: HKCU - No Name - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{E7876B3D-E100-4B13-B980-ECFCC07C966F}: [NameServer]208.67.222.222,208.67.220.220

FireFox:
========
FF ProfilePath: C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default
FF user.js: detected! => C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\user.js
FF NewTab: hxxp://www.delta-homes.com/newtab/?type=nt&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
FF DefaultSearchEngine: delta-homes
FF SearchEngineOrder.1: qvo6
FF SelectedSearchEngine: delta-homes
FF Homepage: hxxp://www.delta-homes.com/?type=hp&ts=1388677079&from=wpm0102&uid=WDCXWD5000AAKS-22V1A0_WD-WCAWF120983709837
FF NetworkProxy: "ftp", "87.229.26.141"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "87.229.26.141"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "87.229.26.141"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "87.229.26.141"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.10 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Pietro\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\searchplugins\searchplugins.rar
FF SearchPlugin: C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\qvo6.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Pietro\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2013-12-13]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\Extensions\ich@maltegoetz.de [2013-12-13]
FF Extension: Quick Start - C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\Extensions\quick_start@gmail.com [2014-04-19]
FF Extension: Free YouTube Download (Free Studio) Menu - C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011-12-13]
FF Extension: Stealthy - C:\Users\Pietro\AppData\Roaming\Mozilla\Firefox\Profiles\jo00nr1m.default\Extensions\stealthyextension@gmail.com.xpi [2012-01-10]

Chrome: 
=======
CHR HomePage: hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPFAA953DD-C018-4AD0-907C-329F89985F66
CHR StartupUrls: "hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPFAA953DD-C018-4AD0-907C-329F89985F66"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll No File
CHR Plugin: (Skype Toolbars) - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Plugin: (VLC Multimedia Plug-in) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
CHR Plugin: (Windows Live0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Pietro\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-04-22]
CHR Extension: (Google Wallet) - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Widget context) - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ombmmloebnfnpehgjnmkcgoegfachobp [2014-04-23]
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Pietro\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-09-24]
CHR HKLM-x32\...\Chrome\Extension: [leocdeigfnkaojcapikdjcdbedcjmffc] - C:\Users\Pietro\AppData\Local\Temp\ccex.crx [2013-09-24]

==================== Services (Whitelisted) =================

R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [289256 2014-01-16] (McAfee, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-02-28] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [501904 2014-02-26] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

S3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [769024 2010-04-20] (Atheros Communications, Inc.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2011-12-10] (DT Soft Ltd)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2012-10-25] (Realtek Semiconductor Corporation                           )
S3 tmnsusbser; C:\Windows\System32\DRIVERS\tmnsusbser.sys [124416 2010-04-21] (Wireless Device)
S3 tmusbnet; C:\Windows\System32\DRIVERS\tmusbnet.sys [129024 2010-04-20] (QUALCOMM Incorporated)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-23 21:40 - 2014-04-23 21:40 - 00027103 _____ () C:\Users\Pietro\Downloads\FRST.txt
2014-04-23 21:40 - 2014-04-23 21:40 - 00000000 ____D () C:\FRST
2014-04-23 21:39 - 2014-04-23 21:39 - 02061312 _____ (Farbar) C:\Users\Pietro\Downloads\FRST64.exe
2014-04-23 21:35 - 2014-04-23 21:35 - 00238880 _____ (Premium Installer ) C:\Users\Pietro\Downloads\setup (1).exe
2014-04-23 20:46 - 2014-04-23 20:46 - 00055176 _____ () C:\Users\Pietro\Desktop\Extras.Txt
2014-04-23 20:44 - 2014-04-23 20:44 - 00127264 _____ () C:\Users\Pietro\Desktop\OTL.Txt
2014-04-23 20:34 - 2014-04-23 20:34 - 00602112 _____ (OldTimer Tools) C:\Users\Pietro\Desktop\OTL.exe
2014-04-23 20:30 - 2014-04-23 20:30 - 01345435 _____ () C:\Users\Pietro\Desktop\adwcleaner3201.exe
2014-04-23 20:22 - 2014-04-23 20:22 - 00991504 _____ () C:\Users\Pietro\Downloads\setup.exe
2014-04-23 20:20 - 2014-04-23 20:26 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-23 20:20 - 2014-04-23 20:24 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-04-23 20:20 - 2014-04-23 20:20 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-04-23 20:20 - 2014-04-23 20:20 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-23 20:20 - 2014-04-23 20:20 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-04-23 20:20 - 2014-04-23 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-04-23 20:20 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-04-23 20:19 - 2014-04-23 20:20 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Pietro\Downloads\spybot-2.2.25.exe
2014-04-23 20:16 - 2014-04-23 20:16 - 00320520 _____ () C:\Users\Pietro\Downloads\Java.exe
2014-04-23 19:25 - 2014-04-23 19:25 - 01345435 _____ () C:\Users\Pietro\Downloads\adwcleaner.exe
2014-04-23 19:25 - 2014-04-23 19:25 - 00728032 _____ () C:\Users\Pietro\Downloads\COMPUTER_BILD-Download-Manager_fuer_adwcleaner.exe
2014-04-23 19:08 - 2014-04-23 19:08 - 00613200 _____ (Chip Digital GmbH) C:\Users\Pietro\Downloads\AdwCleaner - CHIP-Downloader.exe
2014-04-23 18:49 - 2009-07-14 03:15 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Difxddf9.rra
2014-04-23 18:48 - 2014-04-23 18:48 - 00003118 _____ () C:\Windows\System32\Tasks\{AC07D717-71DE-4B7F-A16F-F5345FAB6FDD}
2014-04-23 18:07 - 2014-04-23 18:07 - 00805776 _____ () C:\Users\Pietro\Downloads\AdobeFlashPlayer.exe
2014-04-23 18:05 - 2014-04-23 18:05 - 01961243 _____ () C:\Users\Pietro\Downloads\DeSmuME.0.9.8-win32.zip
2014-04-23 18:03 - 2014-04-23 18:03 - 00003243 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG DeSmuME_0.98.torrent
2014-04-23 18:03 - 2014-04-23 18:03 - 00003243 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG DeSmuME_0.98 (1).torrent
2014-04-23 17:43 - 2014-04-23 17:43 - 00000799 _____ () C:\Users\Pietro\Desktop\DeSmuME - Verknüpfung.lnk
2014-04-23 17:41 - 2014-04-23 17:41 - 00001713 _____ () C:\Users\Pietro\Desktop\Visual Boy Advance - Verknüpfung.lnk
2014-04-23 17:26 - 2014-04-23 17:41 - 00000000 ____D () C:\Users\Pietro\Desktop\Game Boy Advance Emulator + Games
2014-04-23 17:25 - 2014-04-23 17:42 - 00000000 ____D () C:\Users\Pietro\Desktop\POKEMON GAMES
2014-04-23 17:25 - 2014-04-23 17:37 - 00000000 ____D () C:\Users\Pietro\Desktop\Super Nintendo SNES Collection Emulator plus 763 ROMS H33T 1981CamaroZ28
2014-04-23 17:25 - 2014-04-23 17:25 - 00108711 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG WWE_Raw_02_24_14_DSR_XviD-XWT_-=(SPARROW)=-.torrent
2014-04-23 17:25 - 2014-04-23 17:25 - 00020067 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Game_Boy_Advance_Emulator_+_Games.torrent
2014-04-23 17:24 - 2014-04-23 17:24 - 00016921 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG POKEMON_NDS_GAMES_COLLECTIONS(with_emulator)_BY_BeastBlast.torrent
2014-04-23 17:23 - 2014-04-23 17:23 - 00140164 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Super_Nintendo_SNES_Collection_Emulator_plus_763_ROMS_H33T_1981CamaroZ28.torrent
2014-04-22 19:34 - 2014-04-22 19:34 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files\iTunes
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files\iPod
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-17 15:30 - 2014-04-17 15:30 - 00004253 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-17 15:30 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-17 15:30 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-17 15:30 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-17 15:30 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-12 20:04 - 2014-04-13 18:31 - 00000089 _____ () C:\Users\Pietro\Desktop\Neues Textdokument.txt
2014-04-02 18:05 - 2014-04-02 18:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-28 21:57 - 2014-03-28 21:57 - 00015698 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Final_Destination_2000_German_AC3D_DL_HDRip_XviD-SG.torrent

==================== One Month Modified Files and Folders =======

2014-04-23 21:40 - 2014-04-23 21:40 - 00027103 _____ () C:\Users\Pietro\Downloads\FRST.txt
2014-04-23 21:40 - 2014-04-23 21:40 - 00000000 ____D () C:\FRST
2014-04-23 21:40 - 2013-09-08 23:52 - 00000280 ____H () C:\Windows\SysWOW64\daahfcjjoznfosvhmuvsszx.bbg
2014-04-23 21:40 - 2013-09-08 23:52 - 00000280 ____H () C:\Windows\daahfcjjoznfosvhmuvsszx.bbg
2014-04-23 21:40 - 2013-09-08 23:52 - 00000280 ____H () C:\Program Files (x86)\daahfcjjoznfosvhmuvsszx.bbg
2014-04-23 21:40 - 2013-09-04 19:09 - 00000280 ____H () C:\Users\Pietro\AppData\Local\daahfcjjoznfosvhmuvsszx.bbg
2014-04-23 21:39 - 2014-04-23 21:39 - 02061312 _____ (Farbar) C:\Users\Pietro\Downloads\FRST64.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\zogfvkjbybhrsojnkkd.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\skfhasuppvervuszzcyqln.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\octrgusjfhmvvqknji.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\mcvvmccvtxeprokpnoiy.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\fsiftgdtoptbaunpk.exe
2014-04-23 21:39 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\bsmnfwxrqvdpsqntsupga.exe
2014-04-23 21:35 - 2014-04-23 21:35 - 00238880 _____ (Premium Installer ) C:\Users\Pietro\Downloads\setup (1).exe
2014-04-23 21:19 - 2011-12-10 20:27 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-23 21:13 - 2013-09-24 11:13 - 00000294 _____ () C:\Windows\Tasks\Dealply.job
2014-04-23 20:57 - 2012-01-10 21:01 - 00001142 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000UA.job
2014-04-23 20:46 - 2014-04-23 20:46 - 00055176 _____ () C:\Users\Pietro\Desktop\Extras.Txt
2014-04-23 20:46 - 2013-04-04 17:28 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-23 20:44 - 2014-04-23 20:44 - 00127264 _____ () C:\Users\Pietro\Desktop\OTL.Txt
2014-04-23 20:36 - 2013-09-24 11:13 - 00000000 ____D () C:\Users\Pietro\AppData\Local\Lollipop
2014-04-23 20:35 - 2013-09-24 11:13 - 00002031 _____ () C:\Users\Pietro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lollipop.lnk
2014-04-23 20:34 - 2014-04-23 20:34 - 00602112 _____ (OldTimer Tools) C:\Users\Pietro\Desktop\OTL.exe
2014-04-23 20:31 - 2014-01-03 13:57 - 00000000 ____D () C:\AdwCleaner
2014-04-23 20:31 - 2011-12-11 21:48 - 00000000 ____D () C:\Users\Pietro\AppData\Roaming\Skype
2014-04-23 20:30 - 2014-04-23 20:30 - 01345435 _____ () C:\Users\Pietro\Desktop\adwcleaner3201.exe
2014-04-23 20:26 - 2014-04-23 20:20 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-23 20:24 - 2014-04-23 20:20 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-04-23 20:22 - 2014-04-23 20:22 - 00991504 _____ () C:\Users\Pietro\Downloads\setup.exe
2014-04-23 20:20 - 2014-04-23 20:20 - 00001391 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-04-23 20:20 - 2014-04-23 20:20 - 00001379 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-23 20:20 - 2014-04-23 20:20 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-04-23 20:20 - 2014-04-23 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-04-23 20:20 - 2014-04-23 20:19 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Pietro\Downloads\spybot-2.2.25.exe
2014-04-23 20:16 - 2014-04-23 20:16 - 00320520 _____ () C:\Users\Pietro\Downloads\Java.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\zogfvkjbybhrsojnkkd.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\ykzviuqfzzcjhast.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\skfhasuppvervuszzcyqln.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\octrgusjfhmvvqknji.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\mcvvmccvtxeprokpnoiy.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\fsiftgdtoptbaunpk.exe
2014-04-23 20:15 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\SysWOW64\bsmnfwxrqvdpsqntsupga.exe
2014-04-23 20:10 - 2011-12-07 11:38 - 00003938 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{8976148F-0B8D-462A-8FDA-BD67660AFCD0}
2014-04-23 20:10 - 2009-07-14 06:45 - 00025664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-23 20:10 - 2009-07-14 06:45 - 00025664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-23 20:09 - 2014-02-26 14:11 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2014-04-23 20:07 - 2010-11-21 08:50 - 02368688 _____ () C:\Windows\system32\perfh007.dat
2014-04-23 20:07 - 2010-11-21 08:50 - 00661728 _____ () C:\Windows\system32\perfc007.dat
2014-04-23 20:07 - 2009-07-14 07:13 - 00005194 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 20:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-23 20:05 - 2011-12-07 11:16 - 01830750 _____ () C:\Windows\WindowsUpdate.log
2014-04-23 20:03 - 2013-09-08 23:52 - 00466944 __RSH () C:\Windows\ykzviuqfzzcjhast.exe
2014-04-23 20:03 - 2011-12-10 20:27 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-23 20:03 - 2011-12-10 17:34 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-04-23 20:03 - 2011-12-07 15:57 - 00047079 _____ () C:\Windows\setupact.log
2014-04-23 20:03 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-23 20:02 - 2011-12-11 06:25 - 00250614 _____ () C:\Windows\PFRO.log
2014-04-23 19:25 - 2014-04-23 19:25 - 01345435 _____ () C:\Users\Pietro\Downloads\adwcleaner.exe
2014-04-23 19:25 - 2014-04-23 19:25 - 00728032 _____ () C:\Users\Pietro\Downloads\COMPUTER_BILD-Download-Manager_fuer_adwcleaner.exe
2014-04-23 19:08 - 2014-04-23 19:08 - 00613200 _____ (Chip Digital GmbH) C:\Users\Pietro\Downloads\AdwCleaner - CHIP-Downloader.exe
2014-04-23 18:48 - 2014-04-23 18:48 - 00003118 _____ () C:\Windows\System32\Tasks\{AC07D717-71DE-4B7F-A16F-F5345FAB6FDD}
2014-04-23 18:15 - 2014-02-26 14:10 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-04-23 18:15 - 2012-01-30 17:33 - 00000000 ____D () C:\Users\Pietro\AppData\Local\Rockstar Games
2014-04-23 18:15 - 2012-01-30 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-04-23 18:15 - 2012-01-30 16:58 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-04-23 18:15 - 2011-12-07 11:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-23 18:08 - 2013-04-04 17:28 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-23 18:08 - 2013-04-04 17:28 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-23 18:08 - 2011-12-07 14:55 - 00000000 ____D () C:\Users\Pietro\AppData\Local\Adobe
2014-04-23 18:08 - 2011-12-07 13:05 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-23 18:07 - 2014-04-23 18:07 - 00805776 _____ () C:\Users\Pietro\Downloads\AdobeFlashPlayer.exe
2014-04-23 18:05 - 2014-04-23 18:05 - 01961243 _____ () C:\Users\Pietro\Downloads\DeSmuME.0.9.8-win32.zip
2014-04-23 18:05 - 2011-12-10 18:15 - 00000000 ____D () C:\Users\Pietro\AppData\Roaming\uTorrent
2014-04-23 18:03 - 2014-04-23 18:03 - 00003243 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG DeSmuME_0.98.torrent
2014-04-23 18:03 - 2014-04-23 18:03 - 00003243 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG DeSmuME_0.98 (1).torrent
2014-04-23 17:43 - 2014-04-23 17:43 - 00000799 _____ () C:\Users\Pietro\Desktop\DeSmuME - Verknüpfung.lnk
2014-04-23 17:42 - 2014-04-23 17:25 - 00000000 ____D () C:\Users\Pietro\Desktop\POKEMON GAMES
2014-04-23 17:41 - 2014-04-23 17:41 - 00001713 _____ () C:\Users\Pietro\Desktop\Visual Boy Advance - Verknüpfung.lnk
2014-04-23 17:41 - 2014-04-23 17:26 - 00000000 ____D () C:\Users\Pietro\Desktop\Game Boy Advance Emulator + Games
2014-04-23 17:37 - 2014-04-23 17:25 - 00000000 ____D () C:\Users\Pietro\Desktop\Super Nintendo SNES Collection Emulator plus 763 ROMS H33T 1981CamaroZ28
2014-04-23 17:25 - 2014-04-23 17:25 - 00108711 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG WWE_Raw_02_24_14_DSR_XviD-XWT_-=(SPARROW)=-.torrent
2014-04-23 17:25 - 2014-04-23 17:25 - 00020067 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Game_Boy_Advance_Emulator_+_Games.torrent
2014-04-23 17:24 - 2014-04-23 17:24 - 00016921 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG POKEMON_NDS_GAMES_COLLECTIONS(with_emulator)_BY_BeastBlast.torrent
2014-04-23 17:23 - 2014-04-23 17:23 - 00140164 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Super_Nintendo_SNES_Collection_Emulator_plus_763_ROMS_H33T_1981CamaroZ28.torrent
2014-04-23 14:57 - 2012-01-10 21:01 - 00001120 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000Core.job
2014-04-22 19:34 - 2014-04-22 19:34 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files\iTunes
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files\iPod
2014-04-22 19:34 - 2014-04-22 19:34 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-22 19:31 - 2014-02-06 23:27 - 00000000 ____D () C:\Users\Pietro\AppData\Local\Apple
2014-04-22 19:30 - 2014-02-06 23:28 - 00000000 ____D () C:\Users\Pietro\AppData\Roaming\Apple Computer
2014-04-22 19:30 - 2014-02-06 23:28 - 00000000 ____D () C:\Users\Pietro\AppData\Local\Apple Computer
2014-04-17 15:31 - 2013-09-11 12:42 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-17 15:30 - 2014-04-17 15:30 - 00004253 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-17 15:30 - 2013-09-11 12:08 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-16 07:03 - 2013-05-14 18:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-14 20:13 - 2014-04-17 15:30 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-17 15:30 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-17 15:30 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-17 15:30 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-13 18:31 - 2014-04-12 20:04 - 00000089 _____ () C:\Users\Pietro\Desktop\Neues Textdokument.txt
2014-04-11 06:05 - 2014-02-26 14:10 - 00000000 ____D () C:\ProgramData\IePluginService
2014-04-09 19:21 - 2011-12-10 20:27 - 00002477 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-02 18:05 - 2014-04-02 18:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-01 00:18 - 2013-12-19 01:13 - 00000166 _____ () C:\Users\Pietro\AppData\Roaming\WB.CFG
2014-03-30 14:14 - 2011-12-10 20:27 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-30 14:14 - 2011-12-10 20:27 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\Video.lnk
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\Pictures.lnk
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\Passwords.lnk
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\New Folder.lnk
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\Music.lnk
2014-03-29 12:31 - 2013-10-04 15:22 - 00000676 _____ () C:\Windows\SysWOW64\Documents.lnk
2014-03-28 21:57 - 2014-03-28 21:57 - 00015698 _____ () C:\Users\Pietro\Downloads\MONOVA.ORG Final_Destination_2000_German_AC3D_DL_HDRip_XviD-SG.torrent

Files to move or delete:
====================
C:\Users\Pietro\AppData\Local\Temp\bsmnfwxrqvdpsqntsupga.exe
C:\ProgramData\Application Data.exe
C:\ProgramData\Users.exe
C:\Users\Default\Default User.exe
C:\Users\Default\Default.exe
C:\Users\Pietro\lvqiox.exe
C:\Users\Pietro\Pietro.exe
C:\Users\Public\Public.exe


Some content of TEMP:
====================
C:\Users\Default\AppData\Local\Temp\Temp.exe
C:\Users\Default User\AppData\Local\Temp\Temp.exe
C:\Users\Pietro\AppData\Local\Temp\bcgrt.exe
C:\Users\Pietro\AppData\Local\Temp\bsmnfwxrqvdpsqntsupga.exe
C:\Users\Pietro\AppData\Local\Temp\First15.exe
C:\Users\Pietro\AppData\Local\Temp\fsiftgdtoptbaunpk.exe
C:\Users\Pietro\AppData\Local\Temp\gegznawldbz.exe
C:\Users\Pietro\AppData\Local\Temp\mcvvmccvtxeprokpnoiy.exe
C:\Users\Pietro\AppData\Local\Temp\octrgusjfhmvvqknji.exe
C:\Users\Pietro\AppData\Local\Temp\Quarantine.exe
C:\Users\Pietro\AppData\Local\Temp\skfhasuppvervuszzcyqln.exe
C:\Users\Pietro\AppData\Local\Temp\VP6Install.exe
C:\Users\Pietro\AppData\Local\Temp\VP6VFW.dll
C:\Users\Pietro\AppData\Local\Temp\ykzviuqfzzcjhast.exe
C:\Users\Pietro\AppData\Local\Temp\zogfvkjbybhrsojnkkd.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-19 00:57

==================== End Of Log ============================
--- --- ---



Und hier die Addition.txt Datei:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-04-2014
Ran by Pietro at 2014-04-23 21:40:41
Running from C:\Users\Pietro\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

"F1 2013" (HKLM-x32\...\{3364B3AE-FE5A-4430-BE1B-FF1F0EE75E45}_is1) (Version: 1.0.0.904814 - )
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30740 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 2.5.793.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{52FB2985-F3AD-DAA7-7645-4E38A5B96E17}) (Version: 3.0.851.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.61025.2207 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed Revelations 1.03 (HKLM-x32\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.03 - Ubisoft)
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version:  - )
Belkin USB Wireless Adaptor (HKLM-x32\...\InstallShield_{8524BBAC-E3A7-42F5-9B9A-5AE50A10C500}) (Version: 1.0.0.10 - Belkin)
Belkin USB Wireless Adaptor (x32 Version: 1.0.0.10 - Belkin) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Burraconline 4.53 (HKLM-x32\...\Burraconline) (Version: 4.53 - Drag & Air S.n.c.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (x32 Version: 2011.1025.2231.38573 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.04 - Ubisoft)
Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Free YouTube to MP3 Converter version 3.10.14.1206 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
IePluginService12.27.0.3326 (HKLM-x32\...\IePlugins) (Version: 12.27.0.3326 - Cherished Technololgy LIMITED) <==== ATTENTION
Intel(R) Network Connections 16.6.126.0 (HKLM\...\PROSetDX) (Version: 16.6.126.0 - Intel)
Intel(R) Network Connections 16.6.126.0 (Version: 16.6.126.0 - Intel) Hidden
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.8.0.1003 - Intel Corporation)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416026FF}) (Version: 6.0.260 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Lollipop (HKCU\...\lollipop_04140840) (Version:  - Lollipop Network, S.L.) <==== ATTENTION
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.141.11 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Mozilla Thunderbird (2.0.0.23) (HKLM-x32\...\Mozilla Thunderbird (2.0.0.23)) (Version: 2.0.0.23 (de) - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
NBA 2K14 (HKLM-x32\...\{4FE0545A-1BF3-4B9B-A044-6E1EE719E197}) (Version: 1.0.0 - 2K Sports)
OpenOffice.org 3.3 (HKLM-x32\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.8 - Google, Inc.)
Poker at bet365 (HKLM-x32\...\bet365poker) (Version:  - )
Pro Evolution Soccer 2012 (HKLM-x32\...\{E737A098-F161-4B6F-AF22-86AAE34F6FBD}) (Version: 1.03.0000 - KONAMI)
Pro Evolution Soccer 6 (HKLM-x32\...\InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}) (Version: 1.00.0000 - KONAMI)
Pro Evolution Soccer 6 (x32 Version: 1.00.0000 - KONAMI) Hidden
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6409 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30126 - Realtek Semiconductor Corp.)
SevenZip (HKLM-x32\...\SevenZip) (Version: 9.20 - SevenZip)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tomb Raider (HKLM-x32\...\Tomb Raider_is1) (Version:  - R.G. Origami)
TP-LINK 300Mbps Wireless USB Adapter Treiber (HKLM-x32\...\{852E893E-E4FD-45BB-8B17-72ADDF686974}) (Version: 1.3.1 - TP-LINK)
TP-LINK-Konfigurationstool (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939) (Version: 1 - Microsoft Corporation)
VLC media player 1.1.10 (HKLM-x32\...\VLC media player) (Version: 1.1.10 - VideoLAN)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinZipper (HKLM-x32\...\WinZipper) (Version: 1.5.29 - Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION

==================== Restore Points  =========================

23-04-2014 16:49:18 Entfernt JMicron JMB36X Driver
23-04-2014 17:51:30 Wiederherstellungsvorgang

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {16B82029-6201-494D-8E2C-1C3C3FDFC72B} - System32\Tasks\Dealply => C:\Users\Pietro\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {21E25536-1CD1-4FB3-B370-6BB86C34972A} - System32\Tasks\{682F5BC1-1E27-4384-85C3-56541C50235F} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {36F19B21-30C8-4ECC-BAC0-5D00C7F62F50} - System32\Tasks\{0304E717-5C42-42EB-AC2B-9B91FD76B244} => C:\Program Files (x86)\XSBoxGO\SwitchTool.exe
Task: {3DF6419A-98D4-4573-A6D6-400C2069E368} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {3FE36198-FF25-4873-B4CA-BBA9E46C3FD0} - System32\Tasks\{25877166-D2E4-42CB-B2DA-17971722D2D7} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {4D952708-98AA-4BCF-8D5B-C7BF638CFE6B} - System32\Tasks\{E5499352-9C66-4DA6-9DE8-152559B42D18} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {514B6A55-2AE2-4528-99C3-A938F0C42EB4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5DFFD37E-9BE2-486D-B230-F25AC277E108} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {66A9E5D1-61C6-41BE-A302-7E52155FF109} - System32\Tasks\{FCBCB373-5109-4060-ADB0-2E88D77DC594} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {74A2BA25-8CAE-4E09-BB2D-3D46668EA201} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-10] (Google Inc.)
Task: {74A4282A-3360-4199-8B61-DA541AC7245B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {7F4AE586-35BF-48D2-B0F7-05C43193110C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000UA => C:\Users\Pietro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-04] (Facebook Inc.)
Task: {892F9C00-3216-4EF1-942E-365902083D64} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-23] (Adobe Systems Incorporated)
Task: {92F37500-91A7-45A8-AB19-5EEEF06FE653} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000Core => C:\Users\Pietro\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-04] (Facebook Inc.)
Task: {9D446187-AC9D-43A5-9AA4-2F2A6F90627F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {9E9C55A1-5EF3-4F4A-A327-30D9497C198A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-10] (Google Inc.)
Task: {BA1CAF22-F0E9-4D6A-B56C-4D6534DE8337} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {D9014925-FD77-4677-B96E-CEB6FB4E946B} - System32\Tasks\{06FD0F32-4AEA-4167-BA0F-340C7482434E} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {DA3BED8D-6332-4E8D-85F6-1BD415959474} - System32\Tasks\{F5D9C7D3-578A-4BCC-B98E-9B7FBB1D87B1} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {DF9DCBA2-82B3-40A6-9932-47218AB62D57} - System32\Tasks\{15419AF7-3AA1-449A-9F84-0D50477498B2} => C:\Microgaming\Casino\LuckyNugget\casinogame.exe
Task: {EE47D12D-FBAF-4E20-8BDD-577998415106} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2904802376-3464329387-873405524-1000
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Dealply.job => C:\Users\Pietro\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000Core.job => C:\Users\Pietro\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2904802376-3464329387-873405524-1000UA.job => C:\Users\Pietro\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-02 20:09 - 2014-02-28 17:16 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-08 23:52 - 2014-04-23 20:03 - 00466944 __RSH () C:\Windows\ykzviuqfzzcjhast.exe
2013-08-15 16:31 - 2013-08-15 16:31 - 00061440 __RSH () C:\Users\Pietro\lvqiox.exe
2009-10-14 14:36 - 2009-10-14 14:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 14:34 - 2009-10-14 14:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2011-10-25 22:29 - 2011-10-25 22:29 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-09-08 23:49 - 2013-09-08 23:49 - 00724992 _____ () C:\Users\Pietro\AppData\Local\Temp\bcgrt.exe
2014-02-26 14:11 - 2014-02-26 14:11 - 00612496 _____ () C:\Program Files (x86)\WinZipper\sqlite3.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2013-08-15 13:31 - 2013-08-15 13:31 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\35e0ed91cf25ee1aa403a25cd3b53fa2\IsdiInterop.ni.dll
2011-12-07 13:03 - 2011-10-17 16:08 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-04-23 20:20 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-04-23 20:20 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-04-23 20:20 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-04-23 20:20 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-04-23 20:20 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-04-09 19:21 - 2014-04-02 03:57 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
2014-04-09 19:21 - 2014-04-02 03:57 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
2014-04-09 19:21 - 2014-04-02 03:57 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libegl.dll
2014-04-09 19:21 - 2014-04-02 03:57 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
2014-04-09 19:21 - 2014-04-02 03:58 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
2014-04-09 19:21 - 2014-04-02 03:57 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
2014-04-09 19:21 - 2014-04-02 03:58 - 13691720 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:CE2C623F

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

==================== Faulty Device Manager Devices =============

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2014 08:32:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adwcleaner3201.exe, Version: 3.2.0.1, Zeitstempel: 0x4f25baec
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x950
Startzeit der fehlerhaften Anwendung: 0xadwcleaner3201.exe0
Pfad der fehlerhaften Anwendung: adwcleaner3201.exe1
Pfad des fehlerhaften Moduls: adwcleaner3201.exe2
Berichtskennung: adwcleaner3201.exe3

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (04/23/2014 08:03:15 PM) (Source: System Restore) (User: )
Description: Der ausgewählte Wiederherstellungspunkt wurde während der Wiederherstellung beschädigt oder gelöscht (Windows-Sicherung).

Error: (04/23/2014 07:28:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adwcleaner.exe, Version: 3.2.0.1, Zeitstempel: 0x4f25baec
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xc3c
Startzeit der fehlerhaften Anwendung: 0xadwcleaner.exe0
Pfad der fehlerhaften Anwendung: adwcleaner.exe1
Pfad des fehlerhaften Moduls: adwcleaner.exe2
Berichtskennung: adwcleaner.exe3

Error: (04/23/2014 07:26:53 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adwcleaner.exe, Version: 3.2.0.1, Zeitstempel: 0x4f25baec
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x170c
Startzeit der fehlerhaften Anwendung: 0xadwcleaner.exe0
Pfad der fehlerhaften Anwendung: adwcleaner.exe1
Pfad des fehlerhaften Moduls: adwcleaner.exe2
Berichtskennung: adwcleaner.exe3

Error: (04/23/2014 07:16:43 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adwcleaner3103.exe, Version: 3.2.0.1, Zeitstempel: 0x4f25baec
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x12d8
Startzeit der fehlerhaften Anwendung: 0xadwcleaner3103.exe0
Pfad der fehlerhaften Anwendung: adwcleaner3103.exe1
Pfad des fehlerhaften Moduls: adwcleaner3103.exe2
Berichtskennung: adwcleaner3103.exe3

Error: (04/23/2014 07:13:29 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adwcleaner3103.exe, Version: 3.2.0.1, Zeitstempel: 0x4f25baec
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x524
Startzeit der fehlerhaften Anwendung: 0xadwcleaner3103.exe0
Pfad der fehlerhaften Anwendung: adwcleaner3103.exe1
Pfad des fehlerhaften Moduls: adwcleaner3103.exe2
Berichtskennung: adwcleaner3103.exe3

Error: (04/23/2014 07:07:27 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.


System errors:
=============
Error: (04/23/2014 08:15:44 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "D:" wurden verworfen, weil die Bereitsstellungaufhebung von Volume "D:", das einen Schattenkopiespeicher für diese Schattenkopie enthält, erzwungen wurde.

Error: (04/23/2014 08:05:42 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/23/2014 08:03:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (04/23/2014 08:03:03 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/23/2014 07:04:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (04/23/2014 07:02:32 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/23/2014 06:55:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (04/23/2014 06:54:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/23/2014 06:51:25 PM) (Source: DCOM) (User: )
Description: {4991D34B-80A1-4291-83B6-3328366B9097}

Error: (04/23/2014 06:51:04 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147467243.


Microsoft Office Sessions:
=========================
Error: (04/23/2014 08:32:22 PM) (Source: Application Error)(User: )
Description: adwcleaner3201.exe3.2.0.14f25baecunknown0.0.0.000000000c00000050000000095001cf5f2230503ce6C:\Users\Pietro\Desktop\adwcleaner3201.exeunknown9b37915a-cb15-11e3-915f-90fba64808de

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (04/23/2014 08:07:17 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (04/23/2014 08:03:15 PM) (Source: System Restore)(User: )
Description: Windows-Sicherung

Error: (04/23/2014 07:28:13 PM) (Source: Application Error)(User: )
Description: adwcleaner.exe3.2.0.14f25baecunknown0.0.0.000000000c000000500000000c3c01cf5f193aff11f1C:\Users\Pietro\Downloads\adwcleaner.exeunknowna50a1b9e-cb0c-11e3-912b-90fba64808de

Error: (04/23/2014 07:26:53 PM) (Source: Application Error)(User: )
Description: adwcleaner.exe3.2.0.14f25baecunknown0.0.0.000000000c000000500000000170c01cf5f1909948155C:\Users\Pietro\Downloads\adwcleaner.exeunknown755bd8d0-cb0c-11e3-912b-90fba64808de

Error: (04/23/2014 07:16:43 PM) (Source: Application Error)(User: )
Description: adwcleaner3103.exe3.2.0.14f25baecunknown0.0.0.000000000c00000050000000012d801cf5f176b6ccc78C:\Users\Pietro\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\f8b34e3b5e6e337aa6491ee3f713f8f5\adwcleaner3103.exeunknown09c4ea68-cb0b-11e3-912b-90fba64808de

Error: (04/23/2014 07:13:29 PM) (Source: Application Error)(User: )
Description: adwcleaner3103.exe3.2.0.14f25baecunknown0.0.0.000000000c00000050000000052401cf5f16a1e3e7eeC:\Users\Pietro\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\f8b34e3b5e6e337aa6491ee3f713f8f5\adwcleaner3103.exeunknown963e9524-cb0a-11e3-912b-90fba64808de

Error: (04/23/2014 07:07:27 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000


==================== Memory info =========================== 

Percentage of memory in use: 39%
Total physical RAM: 6103.06 MB
Available physical RAM: 3674.11 MB
Total Pagefile: 12204.31 MB
Available Pagefile: 9502.04 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive b: (NBA 2K14) (CDROM) (Total:6.99 GB) (Free:0 GB) UDF
Drive c: () (Fixed) (Total:195.21 GB) (Free:45.51 GB) NTFS
Drive d: (Volume) (Fixed) (Total:270.45 GB) (Free:270.32 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 09BEDF75)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=270 GB) - (Type=07 NTFS)

==================== End Of Log ============================
__________________
Alt 23.04.2014, 23:35   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Kann kein Antivirus-Programm installieren! - Standard

Kann kein Antivirus-Programm installieren!


Da ist ziemlicher Mist drin! Dann bitte jetzt Combofix ausführen:

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
Logfiles bitte immer in CODE-Tags posten

Antwort

Themen zu Kann kein Antivirus-Programm installieren!
aktiviere, aktivieren, anderer, fenster, firewall, formatieren, funktioniert, funktioniert nicht, installieren, klicke, leute, löschen, namen, neu, problem, programme, programmen, rechner, scan, schließt, spyware, system, versuche, versucht, öffnen


« Internet Laggt stark normal ping 30 jetzt zum teil 8000 | http://update5.flashplays.info/ »


Ähnliche Themen: Kann kein Antivirus-Programm installieren!


  1. Antivirus und andere Programm lassen sich nicht installieren
    Plagegeister aller Art und deren Bekämpfung - 12.01.2015 (10)
  2. Win Vista - kann kein SP2 installieren
    Alles rund um Windows - 02.04.2014 (12)
  3. Kann kein Antiviren Programm aktivieren
    Plagegeister aller Art und deren Bekämpfung - 07.01.2014 (13)
  4. Kann kein Antivierenprogramm installieren!
    Plagegeister aller Art und deren Bekämpfung - 20.10.2012 (1)
  5. Kann kein Programm starten
    Plagegeister aller Art und deren Bekämpfung - 31.05.2012 (18)
  6. Vista. Kann kein Antivirenprogramm meh installieren
    Antiviren-, Firewall- und andere Schutzprogramme - 18.08.2009 (10)
  7. HILFE Kann kein Antivirus Programm installieren
    Log-Analyse und Auswertung - 13.08.2009 (0)
  8. Kann kein Antivirenprogramm wie Avira oder Avast installieren
    Log-Analyse und Auswertung - 04.08.2008 (3)
  9. Kann kein Anti Wir / Windos Updates mehr installieren
    Log-Analyse und Auswertung - 01.06.2008 (11)
  10. Kann kein Antivirus Programm mehr Installieren
    Log-Analyse und Auswertung - 06.12.2007 (3)
  11. ich kann kein gar kein antivirus software installieren ???
    Log-Analyse und Auswertung - 24.11.2007 (2)
  12. Kann kein Antivirus-Programm installieren
    Plagegeister aller Art und deren Bekämpfung - 19.11.2007 (1)
  13. Kann kein Virus Programm mehr installieren.
    Log-Analyse und Auswertung - 12.11.2007 (7)
  14. Großes Problem!kann nichts mehr updaten!kein antivir installieren usw.
    Plagegeister aller Art und deren Bekämpfung - 08.11.2007 (10)
  15. DRINGEND!!!kann kein Antivirenprogramm mehr installieren
    Log-Analyse und Auswertung - 04.09.2007 (3)
  16. Kein Programm lässt sich installieren...:(
    Log-Analyse und Auswertung - 26.12.2004 (2)
  17. kein viren programm kann helfen?
    Plagegeister aller Art und deren Bekämpfung - 12.05.2004 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Kann kein Antivirus-Programm installieren! - Ich bin neu hier,weil ich den Eindruck habe viele kompetente Leute in der Materie zu finden,nun zu meinem Problem: Jedes Mal wenn ich versuche ein Antivirus-Programm herunterzuladen,schließt sich der Browser. - Kann kein Antivirus-Programm installieren!...
Archiv
Du betrachtest: Kann kein Antivirus-Programm installieren! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131