Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: Ständig Pop-Ups/Werbung im Browser

Windows 7: Ständig Pop-Ups/Werbung im Browser


Log-Analyse und Auswertung: Windows 7: Ständig Pop-Ups/Werbung im Browser

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 19.01.2015, 20:06   #1
Nils+
 
Windows 7: Ständig Pop-Ups/Werbung im Browser - Standard

Windows 7: Ständig Pop-Ups/Werbung im Browser


Guten Abend,
Ich habe vor ca. 3 Monaten meinen Pc neu aufgesetzt (vorher wichtige Programme/Datien auf einer externen Festplatte gesichert) und alles neu eingerichtet. Nach einiger Zeit ist mir aufgefallen das mir ständig Werbung in Chrome und Firefox angezeigt wird. Das äußert sich in verschiedenen Arten. Zum einen sind bestimmte Wörter Blau hinterlegt, fett und unterstrichen und führen zu anderen Seiten oder Werbung. Zum anderen wird oft Werbung von verschiedenen Seiten eingeschoben, die man zwar mit einem kleinen "x" schließen kann, die jedoch nach einigen Momenten wieder kommt. Weiterhin öffnen sich Pop-Ups oder Werbung in einem neuen Tab wenn ich auf einen Link klicke. Als Beispiel: Ich bin auf Wikipedia und lese ein Wort das ich nicht kenne und da oft solche Wörter zu einem anderen Wikipedia Artikel führen klicke ich drauf. Es öffnet sich dann der gefragte Artikel, allerdings zusätzlich noch 1-2 andere Tabs/Pop-Ups mit Werbung. Das passiert nicht jedes mal, ich würde sagen so zu 30% wenn ich auf etwas klicke. Mir ist außerdem aufgefallen das an der Werbung oft "Ads by TermTutor" steht. Die Pop-Ups sind oft Gewinnspiele oder eine Seite auf der groß "Windows 7 Pc-Reperatur" steht und die mir ein Programm Namens "eFix Pro" anbietet. Diese Seiten kann ich übrigens nicht direkt schließen, ich muss erst bestätigen das ich sie wirklich verlassen will.

Ich hoffe das beschreibt mein Problem zu genügen und mir kann jemand helfen

(Da ich neu hier bin und nicht genau weiß was ihr braucht halte ich mich einfach an die Checkliste und poste alle Logfiles die ich habe)

defogger_disable
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 18:48 on 19/01/2015 (Nils)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
FRST
Code:
ATTFilter
(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 18:50 - 2015-01-19 18:51 - 00015464 _____ () C:\Users\Nils\Desktop\FRST.txt
2015-01-19 18:50 - 2015-01-19 18:50 - 00000000 ____D () C:\FRST
2015-01-19 18:49 - 2015-01-19 18:49 - 02126848 _____ (Farbar) C:\Users\Nils\Desktop\FRST64.exe
2015-01-19 18:48 - 2015-01-19 18:48 - 00000470 _____ () C:\Users\Nils\Desktop\defogger_disable.log
2015-01-19 18:48 - 2015-01-19 18:48 - 00000000 _____ () C:\Users\Nils\defogger_reenable
2015-01-19 18:47 - 2015-01-19 18:47 - 00050477 _____ () C:\Users\Nils\Desktop\Defogger.exe
2015-01-19 18:24 - 2015-01-19 18:32 - 00000000 ____D () C:\Program Files\KMSpico
2015-01-19 17:04 - 2015-01-19 17:04 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Publish Providers
2015-01-19 17:00 - 2015-01-19 17:00 - 00006058 _____ () C:\Windows\system32\--traceoff
2015-01-19 17:00 - 2015-01-19 17:00 - 00000000 _____ () C:\Windows\system32\--debugoff
2015-01-19 16:59 - 2015-01-19 17:03 - 00000000 ____D () C:\Users\Nils\AppData\Local\Sony
2015-01-19 16:59 - 2015-01-19 16:59 - 00000000 ____D () C:\ProgramData\Sony
2015-01-19 16:59 - 2015-01-19 16:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-01-19 16:59 - 2015-01-19 16:59 - 00000000 ____D () C:\Program Files\Sony
2015-01-19 16:59 - 2015-01-19 16:59 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-01-19 16:58 - 2015-01-19 17:03 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Sony
2015-01-19 16:47 - 2015-01-19 16:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-01-19 16:47 - 2015-01-19 16:47 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-01-19 16:46 - 2015-01-19 16:47 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-17 21:09 - 2015-01-17 21:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-16 19:25 - 2015-01-16 19:25 - 00821953 _____ () C:\Users\Nils\Downloads\Infinite-Cube-Map.zip
2015-01-14 19:15 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 19:15 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 19:15 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 19:15 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 19:15 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 19:15 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 19:15 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 19:15 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 19:15 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 19:15 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 19:15 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 19:15 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 19:15 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-05 21:32 - 2015-01-05 21:33 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-01-05 20:17 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-01-05 20:17 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-01-05 20:17 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-01-05 20:17 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-01-01 20:10 - 2015-01-01 20:10 - 00000000 ____D () C:\ProgramData\EA Core
2014-12-25 23:29 - 2014-12-25 23:32 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Notepad++
2014-12-25 23:29 - 2014-12-25 23:29 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-12-25 23:29 - 2014-12-25 23:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-12-25 23:29 - 2014-12-25 23:29 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-12-25 23:28 - 2014-12-25 23:28 - 01174352 _____ () C:\Users\Nils\Downloads\Notepad - CHIP-Installer.exe
2014-12-24 22:37 - 2014-12-28 18:41 - 00000000 ____D () C:\Users\Nils\AppData\Local\SteelSeries Engine 3 Client
2014-12-24 22:37 - 2014-12-24 22:37 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2014-12-24 22:37 - 2014-12-24 22:37 - 00000000 ____D () C:\Users\admin
2014-12-24 22:36 - 2014-12-24 22:36 - 00005196 _____ () C:\Windows\DPINST.LOG
2014-12-24 22:36 - 2014-12-24 22:36 - 00000000 ____D () C:\ProgramData\SteelSeries
2014-12-24 22:36 - 2014-12-24 22:36 - 00000000 ____D () C:\Program Files\SteelSeries
2014-12-24 22:35 - 2014-12-24 22:36 - 58227312 _____ () C:\Users\Nils\Downloads\SteelSeriesEngine_3.3.1Setup.exe
2014-12-23 22:34 - 2014-12-23 22:44 - 00282296 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-12-23 22:34 - 2014-12-23 22:43 - 00000000 ____D () C:\Users\Nils\Documents\BFBC2
2014-12-23 22:33 - 2014-12-23 22:34 - 02434856 _____ () C:\Windows\SysWOW64\pbsvc_bc2.exe
2014-12-23 22:33 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-23 22:33 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-23 22:33 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-23 22:33 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-23 22:33 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-23 22:33 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-23 22:33 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-23 22:33 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-23 22:33 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-23 22:33 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-23 22:33 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-23 22:33 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-23 22:33 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-23 22:33 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-23 22:33 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-23 22:33 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-23 22:33 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-23 22:33 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-23 22:33 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-23 22:33 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-23 22:33 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-23 22:33 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-23 22:33 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-23 22:33 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-23 22:33 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-23 22:33 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-23 22:33 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-23 22:33 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-23 22:33 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-23 22:33 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-23 22:33 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-23 22:33 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-23 22:33 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-23 22:33 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-23 22:33 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-23 22:33 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-23 22:33 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-23 22:33 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-23 22:33 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-23 22:33 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-23 22:33 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-23 22:33 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-23 22:33 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-23 22:33 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-23 22:33 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-23 22:33 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-23 22:33 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-23 22:33 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-23 22:33 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-23 22:33 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-23 22:33 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-23 22:33 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-23 22:33 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-23 22:33 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-23 22:33 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-23 22:33 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-23 22:33 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-23 22:33 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-23 22:33 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-23 22:33 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-23 22:33 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-23 22:33 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-23 22:33 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-23 22:33 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-23 22:33 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-23 22:33 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-23 22:33 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-23 22:33 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-23 22:33 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-23 22:33 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-23 22:33 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-23 22:33 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-23 22:33 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-23 22:33 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-23 22:33 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-23 22:32 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-23 22:32 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-23 22:32 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-23 22:32 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-23 22:32 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-23 22:32 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-23 22:32 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-23 22:32 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-23 22:32 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-23 22:32 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-23 22:32 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-23 22:32 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-23 22:32 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-23 22:32 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-23 22:32 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-23 22:32 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-23 22:32 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-23 22:32 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-23 22:32 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-23 22:32 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-23 22:32 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-23 22:32 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-23 22:32 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-23 22:32 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-23 22:32 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-23 22:32 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-23 22:32 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-23 22:32 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-23 22:32 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-23 22:32 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-23 22:32 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-23 22:32 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-23 22:32 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-23 22:32 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-23 21:52 - 2015-01-05 21:34 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-12-23 21:52 - 2014-12-23 22:34 - 00000000 ____D () C:\Users\Nils\AppData\Local\PunkBuster
2014-12-23 21:31 - 2014-12-23 21:31 - 00000000 ____D () C:\Users\Nils\AppData\Local\ESN
2014-12-23 21:30 - 2014-12-23 21:31 - 01534736 _____ () C:\Users\Nils\Downloads\battlelog-web-plugins_2.6.2_154.exe
2014-12-20 19:44 - 2014-12-20 19:44 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\AMD
2014-12-20 19:42 - 2015-01-17 19:45 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\.minecraft
2014-12-20 19:42 - 2014-12-20 19:42 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\java

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 18:48 - 2014-10-15 16:33 - 00000000 ____D () C:\Users\Nils
2015-01-19 18:41 - 2014-10-15 16:20 - 01896963 _____ () C:\Windows\WindowsUpdate.log
2015-01-19 18:36 - 2014-10-17 18:32 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Spotify
2015-01-19 18:36 - 2009-07-14 05:45 - 00022240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-19 18:36 - 2009-07-14 05:45 - 00022240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-19 18:33 - 2014-10-16 15:05 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Adobe
2015-01-19 18:33 - 2014-10-16 15:04 - 00000000 ____D () C:\Users\Nils\AppData\Local\Adobe
2015-01-19 18:13 - 2014-10-17 22:03 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-19 17:13 - 2014-10-17 22:03 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-19 13:33 - 2014-10-17 16:46 - 00003922 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C3805B21-4A53-440E-9497-24EDC29C2813}
2015-01-19 13:32 - 2014-10-17 18:33 - 00000000 ____D () C:\Users\Nils\AppData\Local\Spotify
2015-01-19 13:32 - 2014-10-17 18:23 - 00000000 ___RD () C:\Users\Nils\Dropbox
2015-01-19 13:32 - 2014-10-17 18:17 - 00000000 ____D () C:\Users\Nils\AppData\Roaming\Dropbox
2015-01-19 13:31 - 2014-10-16 14:54 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-19 13:24 - 2014-10-16 14:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 13:24 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-19 13:24 - 2009-07-14 05:51 - 00066092 _____ () C:\Windows\setupact.log
2015-01-17 23:17 - 2014-10-17 13:41 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-01-17 21:24 - 2014-10-17 13:41 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-01-17 20:03 - 2014-10-17 11:22 - 00000000 ____D () C:\ProgramData\Origin
2015-01-17 20:03 - 2014-10-17 11:22 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-01-14 23:21 - 2014-10-16 13:38 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 23:16 - 2014-10-16 13:38 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-06 13:56 - 2014-10-17 11:35 - 00000000 ____D () C:\Users\Nils\Documents\Schule
2015-01-05 21:16 - 2014-10-17 13:41 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-01-05 21:15 - 2014-10-16 15:14 - 00132025 _____ () C:\Windows\DirectX.log
2015-01-05 20:17 - 2014-10-17 13:42 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-12-30 23:33 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-26 11:27 - 2009-09-21 13:50 - 00699092 _____ () C:\Windows\system32\perfh007.dat
2014-12-26 11:27 - 2009-09-21 13:50 - 00149232 _____ () C:\Windows\system32\perfc007.dat
2014-12-26 11:27 - 2009-07-14 06:13 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-24 21:19 - 2014-10-16 13:51 - 00165062 _____ () C:\Windows\PFRO.log
2014-12-23 22:28 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-23 21:52 - 2014-10-17 11:36 - 00000000 ____D () C:\Users\Nils\Documents\Battlefield 4
2014-12-23 21:49 - 2014-10-17 11:22 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-12-23 21:22 - 2014-10-17 11:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-12-20 20:30 - 2014-10-17 11:40 - 00000000 ____D () C:\Users\Nils\Documents\Minecraft

==================== Files in the root of some directories =======
2014-10-16 14:31 - 2014-10-16 14:31 - 0000017 _____ () C:\Users\Nils\AppData\Local\resmon.resmoncfg

Some content of TEMP:
====================
C:\Users\Nils\AppData\Local\Temp\avgnt.exe
C:\Users\Nils\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpw4yoby.dll
C:\Users\Nils\AppData\Local\Temp\sonarinst.exe
C:\Users\Nils\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Nils\AppData\Local\Temp\_isDB6.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 21:03

==================== End Of Log ============================
Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2015
Ran by Nils at 2015-01-19 18:51:36
Running from C:\Users\Nils\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Avira (HKLM-x32\...\{e7c7c227-b742-4878-9425-f09bbf9951db}) (Version: 1.1.27.25527 - Avira Operations & Co. KG)
Avira (x32 Version: 1.1.27.25527 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23831 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-1006047746-618158759-4133308658-1001\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free Studio version 6.4.0.1111 (HKLM-x32\...\Free Studio_is1) (Version: 6.4.0.1111 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version:  - Hammerpoint Interactive)
Logitech Gaming Software 8.56 (HKLM\...\Logitech Gaming Software) (Version: 8.56.109 - Logitech Inc.)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 35.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 35.0 (x86 de)) (Version: 35.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.2.0 - Mozilla)
Mozilla Thunderbird 31.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.2.0 (x86 de)) (Version: 31.2.0 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.1 - Notepad++ Team)
Open Office Packages (HKU\S-1-5-21-1006047746-618158759-4133308658-1001\...\Open Office Packages) (Version:  - ) <==== ATTENTION
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1006047746-618158759-4133308658-1001\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.1 - SteelSeries ApS)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Term Tutor (HKLM-x32\...\TermTutor) (Version: 1.9.0.8 - Term Tutor)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CE92F061-BFBC-11E3-8FF3-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1006047746-618158759-4133308658-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Nils\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

05-01-2015 20:14:56 DirectX wurde installiert
05-01-2015 20:26:16 DirectX wurde installiert
05-01-2015 21:14:19 DirectX wurde installiert
12-01-2015 21:16:47 Geplanter Prüfpunkt
14-01-2015 23:16:14 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {4A536EC2-E8AA-4739-BBE0-723C39C63D76} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17] (Google Inc.)
Task: {573D493B-B583-475E-A3E2-08DA3298FF90} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-17] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-12-23 21:52 - 2015-01-05 21:34 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-09-16 22:02 - 2014-09-16 22:02 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-09-16 22:02 - 2014-09-16 22:02 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-16 22:02 - 2014-09-16 22:02 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-09-16 22:02 - 2014-09-16 22:02 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-11-13 22:19 - 2014-11-13 22:19 - 17542656 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
2014-10-14 15:10 - 2014-10-14 15:10 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\x2api.dll
2014-10-17 18:33 - 2014-12-10 16:53 - 00374840 _____ () C:\Users\Nils\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2014-10-16 14:56 - 2014-11-11 19:48 - 01171456 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-10-16 14:56 - 2014-11-11 19:48 - 00442368 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-10-16 14:56 - 2014-11-11 19:48 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-10-16 14:56 - 2014-11-11 19:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-10-16 14:56 - 2014-11-18 21:23 - 02227904 _____ () C:\Program Files (x86)\Steam\video.dll
2014-10-16 14:56 - 2014-11-11 19:48 - 00403968 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-10-16 14:56 - 2014-11-11 19:48 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-10-16 14:56 - 2014-11-18 21:23 - 00690880 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-10-17 18:33 - 2014-12-10 16:53 - 36966968 _____ () C:\Users\Nils\AppData\Roaming\Spotify\Data\libcef.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\Nils\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-01-19 13:31 - 2015-01-19 13:31 - 00043008 _____ () c:\users\nils\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpw4yoby.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\Nils\AppData\Roaming\Dropbox\bin\libEGL.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\Nils\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\Nils\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-10-16 14:56 - 2014-11-11 19:48 - 34589888 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-10-17 18:33 - 2014-12-10 16:53 - 00867896 _____ () C:\Users\Nils\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-10-17 18:33 - 2014-12-10 16:53 - 00886840 _____ () C:\Users\Nils\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-10-17 18:33 - 2014-12-10 16:53 - 00108600 _____ () C:\Users\Nils\AppData\Roaming\Spotify\Data\libegl.dll
2015-01-17 21:09 - 2015-01-17 21:09 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2015-01-17 18:13 - 2015-01-09 01:35 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\libglesv2.dll
2015-01-17 18:13 - 2015-01-09 01:35 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\libegl.dll
2015-01-17 18:13 - 2015-01-09 01:35 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\pdf.dll
2015-01-17 18:13 - 2015-01-09 01:35 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\ffmpegsumo.dll
2015-01-17 18:13 - 2015-01-09 01:35 - 14913352 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-1006047746-618158759-4133308658-500 - Administrator - Disabled)
Gast (S-1-5-21-1006047746-618158759-4133308658-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1006047746-618158759-4133308658-1002 - Limited - Enabled)
Nils (S-1-5-21-1006047746-618158759-4133308658-1001 - Administrator - Enabled) => C:\Users\Nils

==================== Faulty Device Manager Devices =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/17/2015 08:23:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: amdmantle64.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5417637b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fee50adee0
ID des fehlerhaften Prozesses: 0x197c
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/17/2015 08:04:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ActivationUI.exe, Version: 4.6.4.1, Zeitstempel: 0x54750ebf
Name des fehlerhaften Moduls: ActivationUI.exe, Version: 4.6.4.1, Zeitstempel: 0x54750ebf
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00056306
ID des fehlerhaften Prozesses: 0x16e0
Startzeit der fehlerhaften Anwendung: 0xActivationUI.exe0
Pfad der fehlerhaften Anwendung: ActivationUI.exe1
Pfad des fehlerhaften Moduls: ActivationUI.exe2
Berichtskennung: ActivationUI.exe3

Error: (01/06/2015 00:50:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: amdmantle64.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5417637b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fee099dee0
ID des fehlerhaften Prozesses: 0x1b54
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 09:30:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: amdmantle64.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5417637b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fedfb5dee0
ID des fehlerhaften Prozesses: 0x1964
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 09:06:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.569, Zeitstempel: 0x5417611b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000295b1d
ID des fehlerhaften Prozesses: 0x1ab4
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 08:56:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: amdmantle64.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5417637b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fee01bdee0
ID des fehlerhaften Prozesses: 0x172c
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 08:52:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.569, Zeitstempel: 0x5417611b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000295b1d
ID des fehlerhaften Prozesses: 0x1930
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 08:49:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.569, Zeitstempel: 0x5417611b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000295b1d
ID des fehlerhaften Prozesses: 0xfd4
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 08:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: amdmantle64.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5417637b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fee0c3dee0
ID des fehlerhaften Prozesses: 0x1934
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3

Error: (01/05/2015 08:43:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bf4.exe, Version: 1.4.2.23831, Zeitstempel: 0x547fa9b4
Name des fehlerhaften Moduls: atidxx64.dll, Version: 8.17.10.569, Zeitstempel: 0x5417611b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000295b1d
ID des fehlerhaften Prozesses: 0x1f0c
Startzeit der fehlerhaften Anwendung: 0xbf4.exe0
Pfad der fehlerhaften Anwendung: bf4.exe1
Pfad des fehlerhaften Moduls: bf4.exe2
Berichtskennung: bf4.exe3


System errors:
=============
Error: (01/14/2015 07:26:09 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:26:01 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:52 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:42 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:34 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:25 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:17 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:25:06 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:24:56 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.

Error: (01/14/2015 07:24:46 PM) (Source: cdrom) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\CdRom0.


Microsoft Office Sessions:
=========================
Error: (01/17/2015 08:23:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4amdmantle64.dll_unloaded0.0.0.05417637bc0000005000007fee50adee0197c01d03288bff83d63C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeamdmantle64.dll5d17effa-9e7e-11e4-8af9-f46d0479683e

Error: (01/17/2015 08:04:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: ActivationUI.exe4.6.4.154750ebfActivationUI.exe4.6.4.154750ebfc00000050005630616e001d03288604c2d64C:\PROGRA~2\ORIGIN~1\BATTLE~1\Core\ActivationUI.exeC:\PROGRA~2\ORIGIN~1\BATTLE~1\Core\ActivationUI.exe9e5b5bbe-9e7b-11e4-8af9-f46d0479683e

Error: (01/06/2015 00:50:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4amdmantle64.dll_unloaded0.0.0.05417637bc0000005000007fee099dee01b5401d0293c853b8958C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeamdmantle64.dlla2a500df-9535-11e4-a388-f46d0479683e

Error: (01/05/2015 09:30:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4amdmantle64.dll_unloaded0.0.0.05417637bc0000005000007fedfb5dee0196401d029255d61594eC:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeamdmantle64.dllb41cefd0-9519-11e4-a388-f46d0479683e

Error: (01/05/2015 09:06:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4atidxx64.dll8.17.10.5695417611bc00000050000000000295b1d1ab401d02922bd80d970C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeC:\Windows\system32\atidxx64.dll57af132a-9516-11e4-a388-f46d0479683e

Error: (01/05/2015 08:56:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4amdmantle64.dll_unloaded0.0.0.05417637bc0000005000007fee01bdee0172c01d0292155333a15C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeamdmantle64.dlleb1031f0-9514-11e4-9e71-f46d0479683e

Error: (01/05/2015 08:52:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4atidxx64.dll8.17.10.5695417611bc00000050000000000295b1d193001d029211b3911c2C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeC:\Windows\system32\atidxx64.dll71fbdab4-9514-11e4-9e71-f46d0479683e

Error: (01/05/2015 08:49:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4atidxx64.dll8.17.10.5695417611bc00000050000000000295b1dfd401d02920884063a8C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeC:\Windows\system32\atidxx64.dllee9351c0-9513-11e4-9e71-f46d0479683e

Error: (01/05/2015 08:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4amdmantle64.dll_unloaded0.0.0.05417637bc0000005000007fee0c3dee0193401d0291feebde07bC:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeamdmantle64.dllacafe646-9513-11e4-9e71-f46d0479683e

Error: (01/05/2015 08:43:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: bf4.exe1.4.2.23831547fa9b4atidxx64.dll8.17.10.5695417611bc00000050000000000295b1d1f0c01d0291fb301b642C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exeC:\Windows\system32\atidxx64.dll111e5182-9513-11e4-9e71-f46d0479683e


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentage of memory in use: 40%
Total physical RAM: 8173.21 MB
Available physical RAM: 4871.02 MB
Total Pagefile: 16344.6 MB
Available Pagefile: 12064.5 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1397.26 GB) (Free:1186.69 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 66871F3F)
Partition 1: (Active) - (Size=1397.3 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Gmer
Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-19 19:00:39
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD15EARS-00MVWB0 rev.51.0AB51 1397,27GB
Running: c7e8os12.exe; Driver: C:\Users\Nils\AppData\Local\Temp\kxldqpoc.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 448                                                                                                                                                                                      fffff80002fa4000 46 bytes [79, 5B, 00, FF, 79, 5B, 00, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 495                                                                                                                                                                                      fffff80002fa402f 40 bytes [FF, 79, 5B, 00, FF, 79, 5B, ...]

---- User code sections - GMER 2.1 ----

.text     C:\Windows\system32\PnkBstrA.exe[1708] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                                                          0000000075d81465 2 bytes [D8, 75]
.text     C:\Windows\system32\PnkBstrA.exe[1708] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                                                         0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\TermTutor\Service\ttsvc.exe[1912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                                        0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\TermTutor\Service\ttsvc.exe[1912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                                       0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\Steam\Steam.exe[3080] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                                                                                                                                    0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\Steam\Steam.exe[3080] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                                                                                                                                                   0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe[3264] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 69                                                                                                                                     0000000075d81465 2 bytes [D8, 75]
.text     C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe[3264] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 155                                                                                                                                    0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe[3392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                            0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe[3392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                           0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[4344] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                                       0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[4344] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                                      0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\Common Files\Steam\SteamService.exe[4520] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                                                                                                                0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\Common Files\Steam\SteamService.exe[4520] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                                                                                                                               0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[6832] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                                     0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[6832] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                                    0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
.text     C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[2420] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                                     0000000075d81465 2 bytes [D8, 75]
.text     C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[2420] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                                    0000000075d814bb 2 bytes [D8, 75]
.text     ...                                                                                                                                                                                                                                                     * 2
---- Processes - GMER 2.1 ----

Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Widgets.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:46)        000000006fd20000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Gui.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:38)            000000006fa20000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\libGLESv2.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264](2014-10-22 00:22:50)                                                                                        000000006f960000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Core.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:38)           0000000068650000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\icuin52.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (ICU I18N DLL/The ICU Project)(2014-10-22 00:22:50)                                                           000000004a900000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\icuuc52.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (ICU Common DLL/The ICU Project)(2014-10-22 00:22:50)                                                         0000000004500000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\icudt52.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (ICU Data DLL/The ICU Project)(2014-10-22 00:22:50)                                                           000000004ad00000
Library   c:\users\nils\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpw4yoby.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264](2015-01-19 12:31:46)                                       0000000003ea0000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Network.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:38)        0000000062500000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5WebKit.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:40)         0000000060310000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Quick.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:40)          00000000600f0000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Qml.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:40)            000000005fcb0000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5Sql.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:40)            0000000069480000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\libEGL.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264](2014-10-22 00:22:50)                                                                                           00000000696a0000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5WebKitWidgets.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:46)  0000000069450000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5OpenGL.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:38)         00000000692e0000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\Qt5PrintSupport.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-10-22 00:22:38)   000000005fa00000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264](2014-10-22 00:22:48)                                                                       000000005f920000
Library   C:\Users\Nils\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll (*** suspicious ***) @ C:\Users\Nils\AppData\Roaming\Dropbox\bin\Dropbox.exe [3264](2014-10-22 00:22:46)                                                                       000000005f870000

---- EOF - GMER 2.1 ----
Ich merke grade das ich zu viele Zeichen für das Forum habe, deswegen muss ich die Logfiles von Avira als Rar anhängen

 

Themen zu Windows 7: Ständig Pop-Ups/Werbung im Browser
adware, antivirus, avira, browser, chrome, cpu, desktop, dvdvideosoft ltd., efix pro, festplatte, firefox, flash player, helper, hängen, iexplore.exe, internet, internet explorer, mozilla, pop-ups, problem, scan, security, server, software, svchost.exe, system, usb, werbung, windows


« Sysad.exe Virus | Browser mit ADs verseucht + immer neue Fenster »


Ähnliche Themen: Windows 7: Ständig Pop-Ups/Werbung im Browser


  1. Windows 10 Chrome Browser Werbung
    Plagegeister aller Art und deren Bekämpfung - 16.08.2015 (14)
  2. Ständig nervige Werbung im Chrome Browser
    Log-Analyse und Auswertung - 01.03.2015 (13)
  3. Windows 7 (64 Bit), Werbung im Browser
    Log-Analyse und Auswertung - 21.02.2015 (16)
  4. Windows 7: Browser voller Werbung/ Links werden zu Werbung weitergeleitet
    Log-Analyse und Auswertung - 17.12.2014 (31)
  5. Rechner vollig langsam ,Browser Firefox öffnet ständig Werbung
    Plagegeister aller Art und deren Bekämpfung - 30.10.2014 (11)
  6. Windows 7: In Browsern taucht ständig Werbung auf
    Log-Analyse und Auswertung - 28.10.2014 (15)
  7. Browser öffnet ständig Werbung/Integriert links in Texte
    Plagegeister aller Art und deren Bekämpfung - 27.10.2014 (9)
  8. Windows 7: InetStat, Werbung im Browser
    Log-Analyse und Auswertung - 21.10.2014 (4)
  9. Windows Installer und ständig Werbund und Pop Ups, neue Fenster im Browser
    Plagegeister aller Art und deren Bekämpfung - 27.07.2014 (13)
  10. Windows 7: Firefox leitet ständig auf Werbung und Fake-Updates um
    Log-Analyse und Auswertung - 19.07.2014 (7)
  11. Win Vista : Ständig ominöse Werbung im Browser ..V.V
    Plagegeister aller Art und deren Bekämpfung - 11.04.2014 (5)
  12. Windows XP: Browser verursacht Werbung
    Log-Analyse und Auswertung - 05.04.2014 (77)
  13. Windows 7. Browser mit Werbung überfüllt.
    Plagegeister aller Art und deren Bekämpfung - 02.03.2014 (13)
  14. Windows XP: ständig Werbung wenn ich online bin
    Log-Analyse und Auswertung - 22.10.2013 (16)
  15. Browser öffnet ständig Werbung / Internet langsam
    Log-Analyse und Auswertung - 03.06.2010 (3)
  16. Browser öffnet sich mit werbung ständig!
    Log-Analyse und Auswertung - 20.02.2008 (5)
  17. ständig browser-werbung
    Plagegeister aller Art und deren Bekämpfung - 15.11.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Ständig Pop-Ups/Werbung im Browser - Guten Abend, Ich habe vor ca. 3 Monaten meinen Pc neu aufgesetzt (vorher wichtige Programme/Datien auf einer externen Festplatte gesichert) und alles neu eingerichtet. Nach einiger Zeit ist mir aufgefallen - Windows 7: Ständig Pop-Ups/Werbung im Browser...

Alle Zeitangaben in WEZ +1. Es ist jetzt 08:59 Uhr.

Kontakt - Trojaner-Board - Archiv - Datenschutzerklärung - Nach oben

Copyright ©2000-2025, Trojaner-Board
Archiv
Du betrachtest: Windows 7: Ständig Pop-Ups/Werbung im Browser auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131