Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Win7 - WUDFHost.exe und allgemeiner Check (https://www.trojaner-board.de/140273-win7-wudfhost-exe-allgemeiner-check.html)

Longer 22.08.2013 19:42
Win7 - WUDFHost.exe und allgemeiner Check
 
Moinsen

Bitte checkt mal meine Daten.

Mein System ist langsamer als üblich.

Hatte auch Browser-Werbung drauf - welche ich scheinbar erfolgreich entfernen konnte.


Was ist WUDFHost.exe?

Bitte einfach mal drüber schauen, ob irgendwas auffällig ist.


Danke


Ahoi Longer

schrauber 22.08.2013 20:45
Hi,

Logs bitte in codetags in den thread posten.

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Longer 22.08.2013 21:25
FRST


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2013 02
Ran by LONGER (administrator) on 22-08-2013 22:22:42
Running from C:\Users\LONGER\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(O&O Software GmbH) D:\Anwendungen D\O&O Defrag\oodag.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Rocket Division Software) D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Nullsoft, Inc.) D:\Anwendungen D\Winamp\winampa.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Elaborate Bytes AG) D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTXFISPI.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Mozilla Corporation) D:\Anwendungen D\Firefox\firefox.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Farbar) C:\Users\LONGER\Downloads\FRST64(1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VX1000] - C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [Launch LgDeviceAgent] - C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415752 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2093064 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4195848 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [OODefragTray] - D:\Anwendungen D\O&O Defrag\oodtray.exe [3993416 2011-09-18] (O&O Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-11-10] (Google Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-14] (Facebook Inc.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.)
MountPoints2: {30b4c98b-ed02-11df-b645-0021859e8162} - N:\Setup.EXE
MountPoints2: {e3485c40-1cc9-11e1-963b-806e6f6e6963} - G:\Setup.EXE
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LifeCam] - C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [ATICustomerCare] - C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [WinampAgent] - D:\Anwendungen D\Winamp\winampa.exe [74752 2010-12-07] (Nullsoft, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [PDFPrint] - D:\anwendungen\PDF24\pdf24.exe [220744 2011-10-11] (Geek Software GmbH)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [CTxfiHlp] - C:\Windows\\SysWOW64\CTXFIHLP.EXE [25600 2010-05-06] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

ProxyServer: 79.139.101.44:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: (No Name) - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} -  No File
URLSearchHook: (No Name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} -  No File
URLSearchHook: (No Name) - {e36df325-3f4b-476f-8f89-123bc5d51a30} -  No File
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2536373
SearchScopes: HKCU - DefaultScope {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2536373
SearchScopes: HKCU - {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: No Name - {872b5b88-9db5-4310-bdd0-ac189557e5f5} -  No File
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: ClipGrab Toolbar - {e36df325-3f4b-476f-8f89-123bc5d51a30} - C:\Program Files (x86)\ClipGrab\prxtbCli0.dll (Conduit Ltd.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - No Name - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} -  No File
Toolbar: HKLM-x32 - ClipGrab Toolbar - {e36df325-3f4b-476f-8f89-123bc5d51a30} - C:\Program Files (x86)\ClipGrab\prxtbCli0.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {F4E6547E-325B-403C-A3BB-AD29ED37A92F} -  No File
Toolbar: HKCU - No Name - {30F9B915-B755-4826-820B-08FBA6BD249D} -  No File
Toolbar: HKCU - No Name - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} -  No File
Toolbar: HKCU - No Name - {E36DF325-3F4B-476F-8F89-123BC5D51A30} -  No File
Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} -  No File
DPF: HKLM {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/AT/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: HKLM {AEA3991E-3109-4C98-989E-33994FEB1A91} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri64_4.4.26.0.cab
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default
FF user.js: detected! => C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\user.js
FF NewTab: www.google.de
FF Homepage: hxxp://battlelog.battlefield.com/bf3/de/
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @canon.com/EPPEX - D:\Anwendungen D\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin - D:\Canon Powershot SX20IS\Programme\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.102.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - D:\Anwendungen D\Veetle TV\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - D:\Anwendungen D\Veetle TV\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\LONGER\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\LONGER\AppData\Roaming\Mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\searchplugins\conduit.xml
FF Extension: Visualisateur 3D de 20-20 - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: Battlefield Play4Free - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\battlefieldplay4free@ea.com
FF Extension: Conduit Engine  - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\engine@conduit.com
FF Extension: DVDVideoSoftTB Community Toolbar - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
FF Extension: ClipGrab - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{e36df325-3f4b-476f-8f89-123bc5d51a30}
FF Extension: adapter - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\adapter@babylontc.com.xpi
FF Extension: ocr - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\ocr@babylon.com.xpi
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - D:\Anwendungen D\Firefox\firefox.exe

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [130976 2011-03-01] (Futuremark Corporation)
R2 OODefragAgent; D:\Anwendungen D\O&O Defrag\oodag.exe [3271496 2011-09-18] (O&O Software GmbH)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2011-08-12] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-02-15] ()
R2 StarWindServiceAE; D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-21] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-21] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-08-21] ()
S3 Dnetr7364; C:\Windows\System32\DRIVERS\Dnetr7364.sys [716800 2009-06-17] (Ralink Technology, Corp.)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 FTDIBUS; C:\Windows\System32\drivers\opcomusb.sys [68800 2008-03-13] (FTDI Ltd.)
R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [157696 2009-03-25] (Realtek Semiconductor Corporation                          )
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-02] (Duplex Secure Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
U3 uxldapob; \??\C:\Users\LONGER\AppData\Local\Temp\uxldapob.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:39 - 2013-08-22 20:23 - 00047475 _____ C:\Users\LONGER\Desktop\FRST.txt
2013-08-22 20:31 - 2013-08-22 20:31 - 00568302 _____ C:\Users\LONGER\Desktop\Gmer.txt
2013-08-22 20:24 - 2013-08-22 20:04 - 00024113 _____ C:\Users\LONGER\Desktop\Addition.txt
2013-08-22 20:22 - 2013-08-22 20:22 - 00000526 _____ C:\Users\LONGER\Downloads\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000652 _____ C:\Users\LONGER\Desktop\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:03 - 2013-08-22 20:04 - 00024113 _____ C:\Users\LONGER\Downloads\Addition.txt
2013-08-22 20:02 - 2013-08-22 20:02 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 19:52 - 2013-08-22 19:52 - 00100174 _____ C:\Users\LONGER\Downloads\OTL.Txt
2013-08-22 19:52 - 2013-08-22 19:52 - 00091986 _____ C:\Users\LONGER\Downloads\Extras.Txt
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:43 - 2013-08-22 17:45 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:35 - 2013-08-22 17:37 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 12:40 - 2013-08-22 12:58 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:11 - 2013-08-22 12:40 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 11:41 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 10:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:13 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 09:43 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:13 - 2013-08-22 09:42 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 08:43 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 07:44 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:14 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 06:45 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:16 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 05:46 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 04:47 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:17 - 2013-08-22 04:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 03:48 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 02:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:18 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 01:49 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:19 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 00:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-21 23:50 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:20 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 22:50 - 2013-08-21 23:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:21 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 21:51 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 20:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 19:50 - 2013-08-21 20:00 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 19:50 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-20 18:49 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-20 18:49 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-20 18:48 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-20 18:48 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-20 18:48 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-20 18:48 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-20 18:40 - 2013-08-20 18:43 - 00000000 ____D C:\Windows\system32\MRT
2013-08-17 11:40 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-17 11:40 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-17 11:40 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-17 11:40 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-17 11:40 - 2013-06-15 06:35 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-17 11:40 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-17 11:37 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp
2013-07-24 11:53 - 2013-07-24 11:54 - 00275352 _____ C:\Windows\Minidump\072413-18688-01.dmp

==================== One Month Modified Files and Folders =======

2013-08-22 22:21 - 2010-11-09 16:14 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-22 21:58 - 2012-06-17 18:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-22 21:32 - 2010-11-09 15:50 - 01875341 _____ C:\Windows\WindowsUpdate.log
2013-08-22 21:29 - 2012-03-24 14:49 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\TS3Client
2013-08-22 20:49 - 2012-05-06 01:12 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-08-22 20:49 - 2010-11-09 19:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-08-22 20:49 - 2010-11-09 16:39 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-08-22 20:48 - 2011-09-28 18:18 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-22 20:42 - 2012-02-29 21:24 - 00001142 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001UA.job
2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:31 - 2013-08-22 20:31 - 00568302 _____ C:\Users\LONGER\Desktop\Gmer.txt
2013-08-22 20:23 - 2013-08-22 20:39 - 00047475 _____ C:\Users\LONGER\Desktop\FRST.txt
2013-08-22 20:23 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-22 20:23 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-22 20:22 - 2013-08-22 20:22 - 00000526 _____ C:\Users\LONGER\Downloads\defogger_disable.log
2013-08-22 20:20 - 2010-11-09 16:03 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Skype
2013-08-22 20:16 - 2012-09-04 21:15 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-08-22 20:16 - 2012-09-02 11:54 - 00015656 _____ C:\Windows\setupact.log
2013-08-22 20:16 - 2012-07-25 19:01 - 00358275 _____ C:\Windows\system32\oodbs.lor
2013-08-22 20:16 - 2010-11-09 16:14 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-22 20:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-22 20:11 - 2013-08-22 20:11 - 00000652 _____ C:\Users\LONGER\Desktop\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:11 - 2010-11-09 15:58 - 00000000 ____D C:\Users\LONGER
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:04 - 2013-08-22 20:24 - 00024113 _____ C:\Users\LONGER\Desktop\Addition.txt
2013-08-22 20:04 - 2013-08-22 20:03 - 00024113 _____ C:\Users\LONGER\Downloads\Addition.txt
2013-08-22 20:02 - 2013-08-22 20:02 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 19:52 - 2013-08-22 19:52 - 00100174 _____ C:\Users\LONGER\Downloads\OTL.Txt
2013-08-22 19:52 - 2013-08-22 19:52 - 00091986 _____ C:\Users\LONGER\Downloads\Extras.Txt
2013-08-22 19:45 - 2012-04-02 19:57 - 00602112 _____ (OldTimer Tools) C:\Users\LONGER\Downloads\OTL.exe
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:45 - 2013-08-22 17:43 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:37 - 2013-08-22 17:35 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 14:42 - 2012-02-29 21:24 - 00001120 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001Core.job
2013-08-22 12:58 - 2013-08-22 12:40 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:40 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 12:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 11:11 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:43 - 2011-11-16 19:06 - 00000000 ____D C:\Users\LONGER\Desktop\Bewerbungen
2013-08-22 10:41 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 10:13 - 2013-08-22 09:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:42 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 09:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:43 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 08:13 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:44 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 07:14 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:45 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 06:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:46 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 05:16 - 2013-08-22 04:47 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:46 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 04:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 03:17 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:48 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 02:18 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 01:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:49 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-22 00:19 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:50 - 2013-08-21 23:20 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 23:19 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:50 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 22:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 21:21 - 2013-08-21 20:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 20:00 - 2013-08-21 19:50 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 20:00 - 2011-10-10 14:59 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-21 20:00 - 2011-01-19 00:29 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-21 19:58 - 2012-06-17 18:35 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-21 19:58 - 2012-04-07 14:21 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-21 19:58 - 2011-05-17 17:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-21 19:57 - 2010-11-09 16:14 - 00000000 ____D C:\Users\LONGER\AppData\Local\Google
2013-08-21 19:50 - 2011-01-19 00:28 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-21 03:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-21 03:16 - 2012-04-29 17:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Origin
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Local\Origin
2013-08-20 20:01 - 2013-04-05 20:19 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-08-20 18:48 - 2010-11-09 18:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-20 18:45 - 2009-07-14 19:58 - 00657660 _____ C:\Windows\system32\perfh007.dat
2013-08-20 18:45 - 2009-07-14 19:58 - 00131032 _____ C:\Windows\system32\perfc007.dat
2013-08-20 18:45 - 2009-07-14 07:13 - 01528462 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-20 18:43 - 2013-08-20 18:40 - 00000000 ____D C:\Windows\system32\MRT
2013-08-20 18:40 - 2011-02-16 12:13 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-08-17 11:32 - 2010-11-09 16:14 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-30 19:59 - 2012-11-10 18:27 - 00000000 ____D C:\Users\LONGER\.gimp-2.8
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-30 17:58 - 2010-11-09 18:31 - 00000000 ____D C:\Users\LONGER\AppData\Local\Adobe
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp
2013-07-29 20:57 - 2012-10-01 22:46 - 508412120 _____ C:\Windows\MEMORY.DMP
2013-07-29 20:57 - 2011-03-12 17:59 - 00000000 ____D C:\Windows\Minidump
2013-07-26 07:13 - 2013-08-20 18:48 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-26 07:12 - 2013-08-20 18:48 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-26 05:35 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-26 05:13 - 2013-08-20 18:48 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-26 05:13 - 2013-08-20 18:48 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-26 04:49 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-26 04:39 - 2013-08-20 18:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-26 03:59 - 2013-08-20 18:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-25 11:25 - 2013-08-17 11:40 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-25 10:57 - 2013-08-17 11:40 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-24 11:54 - 2013-07-24 11:53 - 00275352 _____ C:\Windows\Minidump\072413-18688-01.dmp

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-22 00:22

==================== End Of Log ============================
--- --- ---



addition

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-08-2013 02
Ran by LONGER at 2013-08-22 20:03:59
Running from C:\Users\LONGER\Downloads
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

 
 Update for Microsoft Office 2007 (KB2508958) (x32)
3DMark Vantage (x32 Version: 1.1.0)
7-Zip 9.16 beta (x32)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ACDSee 10 Photo Manager (x32 Version: 10.0.238)
Active@ ISO Burner (x32 Version: 2.5.1)
Adobe AIR (x32 Version: 2.7.1.19610)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Reader 9.4.7 - Deutsch (x32 Version: 9.4.7)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.1219.1521.27485)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
AMD VISION Engine Control Center (x32 Version: 2012.1219.1521.27485)
Ashampoo Burning Studio 10.0.7 (x32 Version: 10.0.7)
Ashampoo Photo Commander 10 v.10.1.2 (x32 Version: 10.1.2)
ATI Catalyst Registration (x32 Version: 3.00.0000)
Auslogics Disk Defrag (x32 Version: version 3.4)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
Battlefield 2(TM) (x32)
Battlefield 3™ (x32 Version: 1.0.0.0)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlefield Play4Free (x32)
Battlefield: Bad Company™ 2 (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
be Flash Player 10 ActiveX 64-bit (Version: 10.2.161.23)
BF3 Settings Editor (Version: 2.3)
Canon Easy-PhotoPrint EX (x32)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (x32 Version: 1.7.0.4)
Canon Internet Library for ZoomBrowser EX (x32 Version: 1.6.3.9)
Canon MOV Decoder (x32 Version: 1.3.2.15)
Canon MOV Encoder (x32 Version: 1.1.0.18)
Canon MovieEdit Task for ZoomBrowser EX (x32 Version: 3.2.0.34)
Canon MP Navigator EX 4.0 (x32)
Canon MP280 series Benutzerregistrierung (x32)
Canon MP280 series MP Drivers
Canon My Printer (x32)
Canon Solution Menu EX (x32)
Canon Utilities CameraWindow (x32 Version: 7.3.0.4)
Canon Utilities CameraWindow DC (x32 Version: 7.4.1.10)
Canon Utilities CameraWindow DC 8 (x32 Version: 8.0.0.19)
Canon Utilities MyCamera (x32 Version: 7.3.0.5)
Canon Utilities PhotoStitch (x32 Version: 3.1.22.46)
Canon Utilities ZoomBrowser EX (x32 Version: 6.4.0.7)
Canon ZoomBrowser EX Memory Card Utility (x32 Version: 1.2.2.11)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (x32 Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (x32 Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (x32 Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (x32 Version: 2012.1219.1520.27485)
CCC Help Czech (x32 Version: 2012.1219.1520.27485)
CCC Help Danish (x32 Version: 2012.1219.1520.27485)
CCC Help Dutch (x32 Version: 2012.1219.1520.27485)
CCC Help English (x32 Version: 2012.1219.1520.27485)
CCC Help Finnish (x32 Version: 2012.1219.1520.27485)
CCC Help French (x32 Version: 2012.1219.1520.27485)
CCC Help German (x32 Version: 2012.1219.1520.27485)
CCC Help Greek (x32 Version: 2012.1219.1520.27485)
CCC Help Hungarian (x32 Version: 2012.1219.1520.27485)
CCC Help Italian (x32 Version: 2012.1219.1520.27485)
CCC Help Japanese (x32 Version: 2012.1219.1520.27485)
CCC Help Korean (x32 Version: 2012.1219.1520.27485)
CCC Help Norwegian (x32 Version: 2012.1219.1520.27485)
CCC Help Polish (x32 Version: 2012.1219.1520.27485)
CCC Help Portuguese (x32 Version: 2012.1219.1520.27485)
CCC Help Russian (x32 Version: 2012.1219.1520.27485)
CCC Help Spanish (x32 Version: 2012.1219.1520.27485)
CCC Help Swedish (x32 Version: 2012.1219.1520.27485)
CCC Help Thai (x32 Version: 2012.1219.1520.27485)
CCC Help Turkish (x32 Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
CCleaner (Version: 3.21)
ClipGrab 3.0.7.2 (x32)
ClipGrab Toolbar (x32 Version: 6.3.3.3)
Creative ALchemy (x32 Version: 1.41)
Creative Audio-Systemsteuerung (x32 Version: 2.00)
Creative Konsole Starter (x32)
Creative MediaSource 5 (x32 Version: 5.26)
Creative Software AutoUpdate (x32 Version: 1.40)
Creative Sound Blaster Properties x64 Edition (x32)
Creative WaveStudio 7 (x32 Version: 7.14)
DAEMON Tools Lite (x32 Version: 4.45.1.0236)
DiRT 3 (x32)
DivX-Setup (x32 Version: 2.6.0.34)
DVDVideoSoftTB Toolbar (x32 Version: 6.3.2.17)
ElsterFormular (x32 Version: 13.4.1.10296)
eReg (x32 Version: 1.20.138.34)
ESN Sonar (x32 Version: 0.70.0)
ESN Sonar (x32 Version: 0.70.4)
EVEREST Ultimate Edition v5.50 (x32 Version: 5.50)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
FileZilla Client 3.5.3 (x32 Version: 3.5.3)
Flatcast Viewer Plugin 5.3.0.752 (x32)
FLV Player 2.0 (build 25) (x32 Version: 2.0 (build 25))
Foto-Mosaik-Edda Standard V6.7.12231.1 (x32)
Fraps (x32)
Free 3GP Video Converter version 3.7.26.602 (x32)
Free Audio CD Burner version 1.4.7 (x32)
Free M4a to MP3 Converter 6.2 (x32)
Free YouTube to MP3 Converter version 3.10.14.1206 (x32)
Futuremark SystemInfo (x32 Version: 4.0.0.0)
G15_TeamSpeak (NSIS) (x32)
GIMP 2.8.2 (Version: 2.8.2)
Google Earth (x32 Version: 7.1.1.1888)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4413.1752)
Google Update Helper (x32 Version: 1.3.21.153)
GPL Ghostscript (x32 Version: 9.04)
HTC BMP USB Driver (x32 Version: 1.0.5375)
HTC Driver Installer (x32 Version: 3.0.0.013)
IrfanView (remove only) (x32 Version: 4.27)
Java 7 Update 13 (64-bit) (Version: 7.0.130)
Java Auto Updater (x32 Version: 2.0.6.1)
Java(TM) 6 Update 29 (64-bit) (Version: 6.0.290)
Java(TM) 6 Update 30 (x32 Version: 6.0.300)
JDownloader 0.9 (x32 Version: 0.9)
Logitech GamePanel Software 3.03.133 (Version: 3.03.133)
Logitech SetPoint 6.32 (Version: 6.32.20)
Medal of Honor (TM) (x32 Version: 1.0.0.0)
MEDUSA4 PERSONAL V5.0.1 (x32 Version: V5.0.1)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Corporation (Version: 9.1.0.0)
Microsoft Corporation (x32 Version: 9.1.0.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft LifeCam (Version: 3.22.270.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
Mozilla Thunderbird 16.0.1 (x86 de) (x32 Version: 16.0.1)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
NVIDIA PhysX (x32 Version: 9.10.0513)
O&O Defrag Professional (Version: 15.0.73)
OpenAL (x32)
Origin (x32 Version: 8.5.0.4550)
PDF Split And Merge Basic (Version: 2.2.2)
PDF24 Creator 3.7.0 (x32)
PDFCreator (x32 Version: 1.5.1)
PunkBuster Services (x32 Version: 0.991)
Rapture3D 2.4.8 Game (x32)
SearchElf 1.2 Toolbar (x32 Version: 6.2.7.3)
Skype Click to Call (x32 Version: 5.10.9560)
Skype™ 6.3 (x32 Version: 6.3.107)
SoundFont-Bank-Manager (x32 Version: 3.21)
SpeedFan (remove only) (x32)
Steam (x32 Version: 1.0.0.0)
System Requirements Lab CYRI (64-bit) (Version: 4.4.26.0)
TeamSpeak 2 RC2 (x32 Version: 2.0.32.60)
TeamSpeak 3 Client (Version: 3.0.11.1)
TeamViewer 7 (x32 Version: 7.0.12541)
The Lord of the Rings FREE Trial  (x32 Version: 1.00.0000)
Uninstall 1.0.0.1 (x32)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
UseNeXT (x32)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Veetle TV (x32 Version: 0.9.19)
VirtualCloneDrive (x32)
VLC media player 1.1.11 (x32 Version: 1.1.11)
Win7codecs (x32 Version: 3.0.6)
Winamp (x32 Version: 5.601 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows 7 Codec Pack 3.3.0 (x32)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
Yahoo! Detect (x32)

==================== Restore Points  =========================

21-08-2013 19:33:27 Geplanter Prüfpunkt
22-08-2013 15:52:24 Gerätetreiber-Paketinstallation: Elaborate Bytes AG Speichercontroller

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {101128AF-E2C1-403A-8E12-953D85EA5513} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {1085E4CC-3E0B-4EAD-96B6-396BA272738A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-07-24] (Piriform Ltd)
Task: {28230508-187F-485B-B34F-8564C01769D0} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {32D9A54C-949F-4021-B3D9-402C8F24EEB7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated)
Task: {4AD59FE9-ACCF-47D9-A752-12486D97B599} - System32\Tasks\{1989D8DB-0C45-4A19-AE6B-37FC59796034} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-04-19] (Skype Technologies S.A.)
Task: {91E4113D-BF78-4F4F-AE93-88B98FD9271D} - System32\Tasks\Launch HTC Sync Loader => D:\HTC Desire\HTC Sync\htcUPCTLoader.exe No File
Task: {99E8ECE3-5094-465C-9B72-CD1F938DBDF8} - System32\Tasks\{47AC4CA8-FD83-47A4-A923-DCC5154A1DA2} => D:\HTC Desire\revolutionary-0.4pre4\revolutionary.exe [2011-08-17] ()
Task: {B3ABF6B9-2EDB-456C-BDE9-B5D3FE826AAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-11-09] (Google Inc.)
Task: {BB5C7B8D-10A4-4B0A-8501-B211D2FE26F7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001Core => C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-14] (Facebook Inc.)
Task: {EE8FDCE6-4B03-4F1E-902D-C3B978D0C892} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {EFB2ED75-817A-4DFB-9DB8-2088A57A7AB6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-11-09] (Google Inc.)
Task: {F46A080D-A856-4F23-9437-40668C9B11D4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001UA => C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-14] (Facebook Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001Core.job => C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001UA.job => C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/30/2013 06:49:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: apc.exe, Version: 1.0.0.0, Zeitstempel: 0x4ffecaac
Name des fehlerhaften Moduls: ash_inet2.dll, Version: 2.5.1.341, Zeitstempel: 0x4fd07b79
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000aa279
ID des fehlerhaften Prozesses: 0x19bc
Startzeit der fehlerhaften Anwendung: 0xapc.exe0
Pfad der fehlerhaften Anwendung: apc.exe1
Pfad des fehlerhaften Moduls: apc.exe2
Berichtskennung: apc.exe3

Error: (07/24/2013 11:55:10 AM) (Source: ESENT) (User: )
Description: taskhost (3716) Versuch, Datei "C:\Users\LONGER\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (07/19/2013 11:45:44 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_SysMain, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: sysmain.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c9db
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000040543
ID des fehlerhaften Prozesses: 0x908
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_SysMain0
Pfad der fehlerhaften Anwendung: svchost.exe_SysMain1
Pfad des fehlerhaften Moduls: svchost.exe_SysMain2
Berichtskennung: svchost.exe_SysMain3

Error: (07/19/2013 11:11:27 AM) (Source: Application Hang) (User: )
Description: Programm IEXPLORE.EXE, Version 10.0.9200.16635 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 934

Startzeit: 01ce845fc3fac8de

Endzeit: 110

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID:

Error: (06/22/2013 08:41:59 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_SysMain, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: sysmain.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c9db
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000017ef1
ID des fehlerhaften Prozesses: 0x8e4
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_SysMain0
Pfad der fehlerhaften Anwendung: svchost.exe_SysMain1
Pfad des fehlerhaften Moduls: svchost.exe_SysMain2
Berichtskennung: svchost.exe_SysMain3

Error: (06/13/2013 09:38:01 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CCC.exe, Version: 3.5.0.0, Zeitstempel: 0x4f8350e0
Name des fehlerhaften Moduls: clr.dll, Version: 4.0.30319.296, Zeitstempel: 0x50483916
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000001a0263
ID des fehlerhaften Prozesses: 0x17cc
Startzeit der fehlerhaften Anwendung: 0xCCC.exe0
Pfad der fehlerhaften Anwendung: CCC.exe1
Pfad des fehlerhaften Moduls: CCC.exe2
Berichtskennung: CCC.exe3

Error: (06/13/2013 09:38:00 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: CCC.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines internen Fehlers in der .NET-Laufzeit beendet. bei IP 000007FEEE780263 (000007FEEE5E0000) mit Exitcode 80131506.

Error: (06/11/2013 07:51:51 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_SysMain, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc3c1
Name des fehlerhaften Moduls: sysmain.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c9db
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000032df
ID des fehlerhaften Prozesses: 0xa74
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_SysMain0
Pfad der fehlerhaften Anwendung: svchost.exe_SysMain1
Pfad des fehlerhaften Moduls: svchost.exe_SysMain2
Berichtskennung: svchost.exe_SysMain3

Error: (06/09/2013 03:09:54 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: bf3.exe, Version: 1.6.0.0, Zeitstempel: 0x511c9356
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x429ddaf6
ID des fehlerhaften Prozesses: 0x4dfc
Startzeit der fehlerhaften Anwendung: 0xbf3.exe0
Pfad der fehlerhaften Anwendung: bf3.exe1
Pfad des fehlerhaften Moduls: bf3.exe2
Berichtskennung: bf3.exe3

Error: (05/27/2013 09:48:37 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16483, Zeitstempel: 0x515e219d
Name des fehlerhaften Moduls: jscript9.dll, Version: 9.0.8112.16483, Zeitstempel: 0x515e23fe
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000290f7
ID des fehlerhaften Prozesses: 0x84c
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3


System errors:
=============
Error: (08/22/2013 07:48:04 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{A2C5E944-DA96-4E4E-ACEF-90B83714FF8F}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.

Error: (08/22/2013 07:30:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (08/22/2013 07:04:48 PM) (Source: Service Control Manager) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/21/2013 09:34:05 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0x8000002a171\??\Volume{e4b02805-ec07-11df-b34d-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{CBB653C0-B2D1-422F-BCE2-A1F2E97A8621}

Error: (08/21/2013 07:54:39 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (08/21/2013 07:54:26 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "O&O Defrag" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (08/21/2013 07:54:26 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst O&O Defrag erreicht.

Error: (08/21/2013 07:53:55 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (08/21/2013 07:11:56 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (08/21/2013 03:17:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2


Microsoft Office Sessions:
=========================
Error: (07/09/2011 06:20:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1291 seconds with 180 seconds of active time.  This session ended with a crash.


==================== Memory info ===========================

Percentage of memory in use: 54%
Total physical RAM: 4095.18 MB
Available physical RAM: 1855.35 MB
Total Pagefile: 8188.54 MB
Available Pagefile: 5515.19 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:163.03 GB) (Free:80.19 GB) NTFS
Drive d: () (Fixed) (Total:151.27 GB) (Free:5.39 GB) NTFS
Drive e: (Videos) (Fixed) (Total:151.37 GB) (Free:54.42 GB) NTFS
Drive i: (TREKSTOR) (Fixed) (Total:149.01 GB) (Free:4.89 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D4AD1F86)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=151 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=163 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Size: 149 GB) (Disk ID: 5A0CAB3D)
Partition 1: (Not Active) - (Size=149 GB) - (Type=0C)

==================== End Of Log ============================

schrauber 23.08.2013 10:35
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

Longer 23.08.2013 16:07
MBAM

Code:
Malwarebytes Anti-Malware (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.08.23.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
LONGER :: ULTRA [Administrator]

Schutz: Aktiviert

23.08.2013 16:36:12
mbam-log-2013-08-23 (16-36-12).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 225843
Laufzeit: 5 Minute(n), 18 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0N2P2W1F0Z1S1U1H -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 7
C:\Users\LONGER\AppData\Local\Temp\is1070216317\3057081_Setup.EXE (PUP.Optional.LyricXeeker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\AppData\Local\Temp\is1070216317\DeltaTB.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\Downloads\DTLite4451-0236.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\Downloads\SoftonicDownloader_fuer_usenext.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\Downloads\veetle-0919.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\Downloads\winamp5601_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\LONGER\Downloads\windows.7.codec.pack.v3.3.0.setup.exe (PUP.Dealio.TB) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
ADW

Code:
# AdwCleaner v3.000 - Report created 23/08/2013 at 16:50:15
# Updated 20/08/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : LONGER - ULTRA
# Running from : C:\Users\LONGER\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\DVDVideoSoftTB
Folder Deleted : C:\Program Files (x86)\ICQ6Toolbar
Folder Deleted : C:\Program Files (x86)\ClipGrab
Folder Deleted : C:\Program Files (x86)\SearchElf_1.2
Folder Deleted : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Deleted : C:\Program Files (x86)\Common Files\Plasmoo
Folder Deleted : C:\Program Files\Babylon
Folder Deleted : C:\Users\LONGER\AppData\Local\Conduit
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\DVDVideoSoftTB
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\ClipGrab
Folder Deleted : C:\Users\LONGER\AppData\LocalLow\SearchElf_1.2
Folder Deleted : C:\Users\LONGER\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\LONGER\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\ConduitCommon
Folder Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\CT2269050
Folder Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\engine@conduit.com
Folder Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
File Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\adapter@babylontc.com.xpi
File Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\ocr@babylon.com.xpi
File Deleted : C:\Windows\SysWOW64\conduitEngine.tmp
File Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\searchplugins\Conduit.xml
File Deleted : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBAutoUpdaterHelper_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBAutoUpdaterHelper_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_htc-sync_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_htc-sync_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_icq_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_icq_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_usenext_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_usenext_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\
Key Deleted : HKLM\SOFTWARE\Classes\AppID\
Key Deleted : HKLM\SOFTWARE\Classes\AppID\
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E36DF325-3F4B-476F-8F89-123BC5D51A30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ECAB6DEE-602E-44E1-AAD5-CF33740374B9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{767AC163-40DD-4A64-9D64-C33000F774F7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2051042-0728-453B-872C-6E8C0AACDC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\
Key Deleted : HKLM\SOFTWARE\Classes\Interface\
Key Deleted : HKLM\SOFTWARE\Classes\Interface\
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0C58B7D1-D415-492B-A149-E976156BD3B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E36DF325-3F4B-476F-8F89-123BC5D51A30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E36DF325-3F4B-476F-8F89-123BC5D51A30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E36DF325-3F4B-476F-8F89-123BC5D51A30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ECAB6DEE-602E-44E1-AAD5-CF33740374B9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{767AC163-40DD-4A64-9D64-C33000F774F7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E2051042-0728-453B-872C-6E8C0AACDC5C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E806B5A8-5171-4A21-A888-A5863D5599EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A6F4AA2-B830-413A-B542-628311FAD0EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9FA889A-BE4D-43D3-B03F-18B2CC03B93A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E21EBFAC-73F9-4ED8-9E38-9B3497956AB8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59BC65F9-1F57-450D-A652-E2470F2A8F84}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C7442A9-2820-488B-BDDA-F7AFC3EF55D2}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{E36DF325-3F4B-476F-8F89-123BC5D51A30}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{F4E6547E-325B-403C-A3BB-AD29ED37A92F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E36DF325-3F4B-476F-8F89-123BC5D51A30}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{F4E6547E-325B-403C-A3BB-AD29ED37A92F}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E36DF325-3F4B-476F-8F89-123BC5D51A30}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks []
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F4E6547E-325B-403C-A3BB-AD29ED37A92F}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E36DF325-3F4B-476F-8F89-123BC5D51A30}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks []
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{F4E6547E-325B-403C-A3BB-AD29ED37A92F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\ClipGrab
Key Deleted : HKCU\Software\AppDataLow\Software\SearchElf_1.2
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\Software\ICQ\ICQToolbar
Key Deleted : HKLM\Software\ClipGrab
Key Deleted : HKLM\Software\SearchElf_1.2
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ClipGrab Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchElf_1.2 Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v23.0.1 (de)

[ File : C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\prefs.js ]

Line Deleted : user_pref("CT2269050..clientLogIsEnabled", false);
Line Deleted : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2269050.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2269050.AppTrackingLastCheckTime", "Tue Jun 12 2012 12:28:41 GMT+0200");
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1000515", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129575150554007677", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129705015340022508", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129853623028165512", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129881141106886992", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_129977890572899945", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_130100683276316706", true);
Line Deleted : user_pref("CT2269050.BrowserCompStateIsOpen_1359634297000", true);
Line Deleted : user_pref("CT2269050.CT2269050", "CT2269050");
Line Deleted : user_pref("CT2269050.CurrentServerDate", "22-8-2013");
Line Deleted : user_pref("CT2269050.DSChangedManually", true);
Line Deleted : user_pref("CT2269050.DSInstall", true);
Line Deleted : user_pref("CT2269050.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2269050.DialogsGetterLastCheckTime", "Tue Aug 20 2013 20:02:19 GMT+0200");
Line Deleted : user_pref("CT2269050.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2269050.EMailNotifierPollDate", "Thu Sep 29 2011 20:13:54 GMT+0200");
Line Deleted : user_pref("CT2269050.FirstServerDate", "29-9-2011");
Line Deleted : user_pref("CT2269050.FirstTime", true);
Line Deleted : user_pref("CT2269050.FirstTimeFF3", true);
Line Deleted : user_pref("CT2269050.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2269050.HPChangedManually", false);
Line Deleted : user_pref("CT2269050.HPInstall", true);
Line Deleted : user_pref("CT2269050.HPProtectChoice", false);
Line Deleted : user_pref("CT2269050.HPProtectCount", 2);
Line Deleted : user_pref("CT2269050.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2269050.HomePageProtectorEnabled", false);
Line Deleted : user_pref("CT2269050.HomepageBeforeUnload", "hxxp://battlelog.battlefield.com/bf3/de/");
Line Deleted : user_pref("CT2269050.Initialize", true);
Line Deleted : user_pref("CT2269050.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2269050.InstallationType", "Unknown");
Line Deleted : user_pref("CT2269050.InstalledDate", "Thu Sep 29 2011 20:13:55 GMT+0200");
Line Deleted : user_pref("CT2269050.InvalidateCache", false);
Line Deleted : user_pref("CT2269050.IsAlertDBUpdated", true);
Line Deleted : user_pref("CT2269050.IsGrouping", false);
Line Deleted : user_pref("CT2269050.IsInitSetupIni", true);
Line Deleted : user_pref("CT2269050.IsMulticommunity", false);
Line Deleted : user_pref("CT2269050.IsOpenThankYouPage", true);
Line Deleted : user_pref("CT2269050.IsOpenUninstallPage", true);
Line Deleted : user_pref("CT2269050.IsProtectorsInit", true);
Line Deleted : user_pref("CT2269050.LanguagePackLastCheckTime", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2269050.LastLogin_3.10.0.1", "Mon Apr 23 2012 21:41:08 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.0.7", "Wed Apr 25 2012 21:04:31 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.12.2.3", "Wed Jun 06 2012 22:23:21 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.13.0.6", "Fri Jul 06 2012 22:48:24 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.14.1.0", "Thu Aug 23 2012 21:59:53 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.15.1.0", "Fri Jan 04 2013 16:41:23 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.16.0.100", "Fri Feb 08 2013 19:56:05 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.18.0.7", "Thu Jul 25 2013 12:03:44 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.19.0.3", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.LastLogin_3.7.0.6", "Mon Nov 07 2011 14:34:06 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.8.0.8", "Mon Dec 05 2011 21:26:41 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.8.1.0", "Mon Jan 09 2012 23:59:32 GMT+0100");
Line Deleted : user_pref("CT2269050.LastLogin_3.9.0.3", "Tue Feb 14 2012 20:32:55 GMT+0100");
Line Deleted : user_pref("CT2269050.LatestVersion", "3.19.0.3");
Line Deleted : user_pref("CT2269050.Locale", "en");
Line Deleted : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2269050.MCDetectTooltipShow", false);
Line Deleted : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2269050.MyStuffEnabledAtInstallation", true);
Line Deleted : user_pref("CT2269050.OriginalFirstVersion", "3.7.0.6");
Line Deleted : user_pref("CT2269050.RadioIsPodcast", false);
Line Deleted : user_pref("CT2269050.RadioLastCheckTime", "Thu Sep 29 2011 20:13:55 GMT+0200");
Line Deleted : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Line Deleted : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Line Deleted : user_pref("CT2269050.RadioMediaID", "12473383");
Line Deleted : user_pref("CT2269050.RadioMediaType", "Media Player");
Line Deleted : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Line Deleted : user_pref("CT2269050.RadioShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Line Deleted : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Line Deleted : user_pref("CT2269050.SHRINK_TOOLBAR", 1);
Line Deleted : user_pref("CT2269050.SavedHomepage", "hxxp://www.gmx.de/");
Line Deleted : user_pref("CT2269050.SearchCaption", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("CT2269050.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Line Deleted : user_pref("CT2269050.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");
Line Deleted : user_pref("CT2269050.SearchProtectorEnabled", false);
Line Deleted : user_pref("CT2269050.SearchProtectorToolbarDisabled", false);
Line Deleted : user_pref("CT2269050.SendProtectorDataViaLogin", true);
Line Deleted : user_pref("CT2269050.ServiceMapLastCheckTime", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.SettingsLastCheckTime", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.SettingsLastUpdate", "1377186483");
Line Deleted : user_pref("CT2269050.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Thu Jul 05 2012 22:11:38 GMT+0200");
Line Deleted : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1331805997");
Line Deleted : user_pref("CT2269050.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Line Deleted : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2269050.UserID", "UN91798003318076843");
Line Deleted : user_pref("CT2269050.ValidationData_Search", 2);
Line Deleted : user_pref("CT2269050.ValidationData_Toolbar", 2);
Line Deleted : user_pref("CT2269050.WeatherNetwork", "");
Line Deleted : user_pref("CT2269050.WeatherPollDate", "Thu Sep 29 2011 20:13:55 GMT+0200");
Line Deleted : user_pref("CT2269050.WeatherUnit", "C");
Line Deleted : user_pref("CT2269050.alertChannelId", "666138");
Line Deleted : user_pref("CT2269050.approveUntrustedApps", false);
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e+x305", "247E27413334363379453A3D2A722C797A7E7A3128333B4D474549484C5952594B335E5356432C45333438334A414C546660576364676F6A5E4B766B6E5B445D4B4C504A6259646C787A2[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e,x305", "247E28412F3F3E3779453A3D2A722C797B787D3128333C4748402C574C4F3C253E2C2E2B2F433A454E59505B57676A66426D62455E69543D56444643465B525D66716C216E6B587D73675[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e-x305", "247E2936303C363679453A3D2A722C797A207B3128333D462B554A4D4B4749594D33535D4F432C45333439344A414C565B5E6C656E706C7164736D4D786D705D465F4D4E534D645B66705[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e.:2z527", "247E70756B74757945473D3E3C3D3F3B224D4245327A3426282721263A313C2E30313233344E565A53553C675C5F4C354E4041413B44544B56484A4B4C7A68727D6D54207477644D665[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e.x305", "247E2A4137374434337A463B3E2B732D7A7D7C213229343F564654524C474A595A4851505E51523964595C49324B393C3B3E5047525D6C6A6B6F786D68506A6F7171742256227679664F6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e/x305", "247E2B413536327844393C29712B787C7B773027323E4C4343534E2D585B3C253E2C302E34433A45515862695E675A416C6164513A5341454348584F5A666D7B7C7174726E702174745B2[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e06cg5el8:", "6E6D6F6E6A74746F7073");
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A74737574707A7A757679242F4B49474F42357D5D5C3D");
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e0x305", "247E2C403A407743383B28702A777C757D2F26313E41295547484D515A4E5A59325D5255422B443237303749404B585E685E706E6E6674626E696B4D786D705D465F4D524B51645B66732[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e1x305", "247E2D41313D403279453A3D2A722C7A77797E31283341473E454745482F5A4F523F2841302D2F33463D48566265685C6B675F6D70604873686B58415A4946484B5F56616F7C217D74747[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e2x305", "247E2E3542313D3D393A7B473C3F2C742E79207D3229344356554E472E594E51325E4F412A4335373231483F4A59655F5F626C5B717369756975744D786D70517E6B60496252505451675[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cj77=;i\"a?ilkg)til", "247E61393F236B256E7277792A212C6E414F444D327A3443434947552E4D4B5558575335605558453C472A675C575F5A5D575039522023554C573A777A685C455E50[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cj7@3=i\"mbe", "247E61393F236B25707876792A212C6E414F444D327A34434C3F49552E594E513E3540236055505853565049324B787B4E455033707361553E5749435A515C3F6B6C75614A6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cj7fk;kg#ncep@mc+vkn", "247E61393F236B25737471712A212C6E414F444D327A344352574757532F5A4F515C4C594F3762575A473E492C58545E6A4F38513C534A553864656E5A435C4B5E5[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cj;9cfea#ncf", "247E61393F236B25717778742A212C6E414F444D327A3447454F52514D2F5A4F523F364124615651595457514A334C797C4F465134717462563F584A465B525D6A6E75614A6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cj?jjhbkk<>@qmjvju-ww", "247E61393F236B25717177762A212C6E414F444D327A344B5656544E5757484A4C5D5956625661396363483F4A2D6A5F5A625D605A533C553434584F5A3D7A7D6B[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cjc<=fbj#mm", "247E61393F236B257576737A2A212C6E414F444D327A344F4849524E562F59593E3540236055505853565049324B2A2A4E4550335F5B6571563F584A5A515C3F6B6C75614A63[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cjc<=fbj#ncf", "247E61393F236B25757677712A212C6E414F444D327A344F4849524E562F5A4F523F364124504C56624730493B4B424D305C5D66523B5443564D586A696D79697C6C6049296[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e31;cji>k3?a#mm", "247E61393F236B257377287E2A6C3F4D424B3078325348553D494B2D57573C333E215E534E5651544E47304928284C434E315D5E67533C5544574E59666A715D466560437120[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e3x305", "247E2F413F3B36333F47463F7D493E412E76307E222421352C37474B59574B4A4858584E5E3762573A535E49324B3A3D3F3B504752626C625D75786D766A7C517C7174614A63525557526[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e4x305", "247E302C407642373A276F29777B74762E2530413E4F494A522B55553A233C2B2F282941384354515E5D56615F56685C426D6265523B544346494A59505B6C697A7E21702370765925797[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e5x305", "247E3136422B7743383B28702A79757A772F2631434B3D49564A50592E594E314A55402942322E332F473E495B5D595A6A5E58707262674974696C59425B4B474B51605762747C2473737[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e6x305", "247E322C3E32323238453E7C483D402D752F7E7B2424342B364953545259585A5A50524E36615659462F4838353D3C4D444F626C6D6B72716A77614D786D705D465F4F4C5451645B66797[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e7x305", "247E333D2C3F3E3F79453A3D2A722C7B7A797A312833474745445159575B504B504B4D5E545553533A655A5D4A334C3C3B3A3951485367756363677575676B65527D7275624B645453515[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e8x305", "247E343D3F3B35373B3F367C47472C742E7E782332293449565540472E594E513E274030323533453C475C5558636A656E625E6C616B7068734B766B6E5B445D4D4F524F6259647927252[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e9x305", "247E35332C3F327844393C29712B7B757979302732484C4F4F44504C4754585C5048345F5457442D46373135344B424D636B5D5F5F73696B4A756A6D5A435C4D474B4961586379226F742[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e:x305", "247E36333B38327844393C29712B7B76797A30273249485545442C574C4F3C253E2F2A2D2D433A455C67555B5E3F6A5F624F3851423D403F564D586F7A68786C717154207477644D66575[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e;x305", "247E373F333F3738422F7B473C3F2C742E7E7A7A22332A354D462C574C4F3C253E2F2B2B31433A455D6356575C5C5A416C6164513A5344404045584F5A7273717A786D2256227679664F6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e<x305", "247E38343030442F463644377D493E412E7630217D2426352C37502E4F4747315C5154412A4334313738483F4A635F5A6A645E625A4772676A5740594A474D4D5E55607971246E7778257[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e=x305", "247E3933363F41413739357C483D402D752F207E2022342B36505459574C554F515B345F5457442D46373637384B424D676B706E606F61666B63664D786D705D465F504F5050645B66212[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e>x305", "247E3A41363F323238387B473C3F2C742E7E20217C332A35504F5346482F5A4F523F28413233342F463D48635C5D66626A436E6366533C55464748425A515C77707773202371215925797[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e?x305", "247E3B2D2F2F334134403A3A7D494C2D752F2023207E342B3652504C5249555256525C35605558452E47383B38364C434E6A706F5F65635D736F677578684C65706B54207477644D66575[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7e@x305", "247E3C40422B7743383B28702A7B767E782F26314E52543D2A554A2D46513C253E302B332C433A45626756516259655F5F436E63465F6A553E5749444C445C535E7B21747C7821745A267[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7eax305", "247E3D3D37387743383B28702A7B7A757E2F26314F4F544A52404548564F58315C5154412A4335342F37483F4A68646B645D5E626462616D6971726B6C786A517C7174614A6355544F566[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D334B57");
Line Deleted : user_pref("CT2269050.backendstorage./9b+7ebx305", "247E3E393141303D33454036327E4A3F422F77317B7D23352C37565949484E4F51525C4E4C55535B54605A5A3E695E614E37503B3D41544B567575656D7367796D6D7C55217578654E675[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7ecx305", "247E3F3D303043312E7A463B3E2B732D7B207E3128335351565551575A4F584C5E335E5356432C4534383649404B6B59566C686B46716669563F58474B485C535E7E6C6956227679664F6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7edx305", "247E4035422A363879453A3D2A722C7D202F26315247543C484A2C574C2F48533E27403233433A45665B68505C5E406B6E4F38514343544B56776C79616D6F517C71547873634C6557566[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b+7etx305", "247E6E2F2E3B323342357B44392B732D7A7B7B7C322934215642542D584D503D263F2D2E2E2E443B4635645E6669595C6062686F5C7363716F696467764F7A6F725F48614F50504F665D6[...]
Line Deleted : user_pref("CT2269050.backendstorage./9b-0?3g>d", "666E6F6F6C3E74407A7176757720784C497A254D4F22252A2721262B552D272D5B5B5E32");
Line Deleted : user_pref("CT2269050.backendstorage./9b-0?3g@6:5;", "");
Line Deleted : user_pref("CT2269050.backendstorage./9b-0?3gfa7ef", "2B2E2C3D");
Line Deleted : user_pref("CT2269050.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332A354448584C3A232C2F30313237425C6453685A64536C56685C5C676264523B6F756B65745D");
Line Deleted : user_pref("CT2269050.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6A696B7273747576");
Line Deleted : user_pref("CT2269050.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484777213F3E484F4E4D4648502B564B4E2E5959595F4C564F3764535750");
Line Deleted : user_pref("CT2269050.backendstorage./9b5ba==9cjag", "666D3C3D727275447A7845474646494A494B7B2221");
Line Deleted : user_pref("CT2269050.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6F6E6A74746F7771727878");
Line Deleted : user_pref("CT2269050.backendstorage./9b9643g3/9e", "6A");
Line Deleted : user_pref("CT2269050.backendstorage./9b<:222h64<", "393F352F3E");
Line Deleted : user_pref("CT2269050.backendstorage./9b=+03eh8h8j?:", "4443");
Line Deleted : user_pref("CT2269050.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52");
Line Deleted : user_pref("CT2269050.backendstorage./9b?b0d:8aj62<h", "6D");
Line Deleted : user_pref("CT2269050.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B");
Line Deleted : user_pref("CT2269050.backendstorage.autocompletepro_enable", "31");
Line Deleted : user_pref("CT2269050.backendstorage.autocompletepro_enable_auto", "31");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050ads1", "25374225323261647325323225334125354225374225323261696425323225334125323234333731362532322532432532327469746C652532322533412532322575323731332532304[...]
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050current_term", "");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050isadsdisabled", "74727565");
Line Deleted : user_pref("CT2269050.backendstorage.ct2269050sdate", "36");
Line Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.exipres", "5475652044656320323720323031312031393A30313A343320474D542B30313030");
Line Deleted : user_pref("CT2269050.backendstorage.shoppingapp.gk.geolocation", "6765726D616E79");
Line Deleted : user_pref("CT2269050.components.1000034", false);
Line Deleted : user_pref("CT2269050.components.1000082", false);
Line Deleted : user_pref("CT2269050.components.1000234", false);
Line Deleted : user_pref("CT2269050.components.1000515", false);
Line Deleted : user_pref("CT2269050.components.129023235807856892", false);
Line Deleted : user_pref("CT2269050.components.129121052374999726", false);
Line Deleted : user_pref("CT2269050.components.129351672002618989", false);
Line Deleted : user_pref("CT2269050.components.129351776130744254", false);
Line Deleted : user_pref("CT2269050.components.129466585396013141", false);
Line Deleted : user_pref("CT2269050.components.129681780741097243", false);
Line Deleted : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Thu Jul 05 2012 22:11:39 GMT+0200");
Line Deleted : user_pref("CT2269050.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.initDone", true);
Line Deleted : user_pref("CT2269050.isAppTrackingManagerOn", true);
Line Deleted : user_pref("CT2269050.isFirstRadioInstallation", false);
Line Deleted : user_pref("CT2269050.myStuffEnabled", true);
Line Deleted : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,111,129853623028165512,129466585399606892,129391330693125668,129466585396013141,129121052374999726,129023235807856892,1000082,[...]
Line Deleted : user_pref("CT2269050.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2269050.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2269050.testingCtid", "");
Line Deleted : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Thu Aug 22 2013 19:05:44 GMT+0200");
Line Deleted : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Mon Jun 25 2012 20:04:47 GMT+0200");
Line Deleted : user_pref("CT2269050.usagesFlag", 2);
Line Deleted : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Line Deleted : user_pref("CommunityToolbar.ConduitSearchList", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050", "\"8056d20a31f0173b39c213792f453bdd3\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/DE", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", "\"1365594729\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en", "wNaokyQn90mMItP1sym06A==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en", "mfQ70fvlD2zuBxSBj8rQqA==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en", "bM8wQLfFAEKgVLVF/G5zig==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en", "9zRvKErdMb8hJOq85ft5Vg==");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.10.0.1", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.0.7", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"2a1a0d7b586ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"2a1a0d7b586ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"6a637346d78ccc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.0.8", "\"80ee9485875dcc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"6a637346d78ccc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.0.3", "\"801a319dd78ccc1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050", "\"9971ee9815a5fc569766cf6ddcaaca8e\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2269050&octid=CT2269050", "\"1322501035\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/equalizer_dead.gif", "\"0a8c48d3330c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/minimize.gif", "\"0e2106f3030c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/play.gif", "\"0f475394430c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/stop.gif", "\"08d9ef44430c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/vol.gif", "\"066e8863030c81:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"e0eedc309c70fc838125c4187115975c\"");
Line Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\LONGER\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\385b3hus.default\\conduitCommon\\modules\\3.14.1.0");
Line Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.14.1.0");
Line Deleted : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://pgcff.pricegong.com/agreement/agree.html#pg_ext_msg_key_5a9ded95", "356x332");
Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "aebd4bc4-712d-418a-b88b-a0d37bb548cc");
Line Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Line Deleted : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Jul 05 2012 22:11:41 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.alertEnabled", true);
Line Deleted : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Line Deleted : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Jul 06 2012 22:48:33 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line Deleted : user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
Line Deleted : user_pref("CommunityToolbar.notifications.locale", "en");
Line Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Line Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Jul 06 2012 22:48:25 GMT+0200");
Line Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Line Deleted : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Line Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line Deleted : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Line Deleted : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Line Deleted : user_pref("CommunityToolbar.notifications.userId", "7b069289-18cd-4d67-a130-9c3e9631aed3");
Line Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.gmx.de/");
Line Deleted : user_pref("CommunityToolbar.originalSearchEngine", "chrome://browser-region/locale/region.properties");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "DVDVideoSoftTB Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}");
Line Deleted : user_pref("extensions.enabledAddons", "adapter%40babylontc.com:1.0.0.1,ocr%40babylon.com:1.1,%7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145,%7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9,202[...]
Line Deleted : user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\DivX\\\\DivX Plus Web Playe[...]
Line Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");

*************************

AdwCleaner[R0].txt - [45895 octets] - [23/08/2013 16:49:25]
AdwCleaner[S0].txt - [43719 octets] - [23/08/2013 16:50:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [43780 octets] ##########

JRT

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.4 (08.22.2013:1)
OS: Windows 7 Ultimate x64
Ran by LONGER on 23.08.2013 at 16:57:19,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\lyrixeeker
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\apnstub_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2269050
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2536373
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2769726



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.08.2013 at 17:02:05,30
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


FRST


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2013 02
Ran by LONGER (administrator) on 23-08-2013 17:04:19
Running from C:\Users\LONGER\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(O&O Software GmbH) D:\Anwendungen D\O&O Defrag\oodtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(O&O Software GmbH) D:\Anwendungen D\O&O Defrag\oodag.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Nullsoft, Inc.) D:\Anwendungen D\Winamp\winampa.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Rocket Division Software) D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe
(Geek Software GmbH) D:\anwendungen\PDF24\pdf24.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Elaborate Bytes AG) D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTXFISPI.EXE
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Farbar) C:\Users\LONGER\Downloads\FRST64(1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VX1000] - C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [Launch LgDeviceAgent] - C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415752 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2093064 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4195848 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [OODefragTray] - D:\Anwendungen D\O&O Defrag\oodtray.exe [3993416 2011-09-18] (O&O Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-11-10] (Google Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-14] (Facebook Inc.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.)
MountPoints2: {30b4c98b-ed02-11df-b645-0021859e8162} - N:\Setup.EXE
MountPoints2: {e3485c40-1cc9-11e1-963b-806e6f6e6963} - G:\Setup.EXE
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LifeCam] - C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [ATICustomerCare] - C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [WinampAgent] - D:\Anwendungen D\Winamp\winampa.exe [74752 2010-12-07] (Nullsoft, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [PDFPrint] - D:\anwendungen\PDF24\pdf24.exe [220744 2011-10-11] (Geek Software GmbH)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [CTxfiHlp] - C:\Windows\\SysWOW64\CTXFIHLP.EXE [25600 2010-05-06] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

ProxyServer: 79.139.101.44:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
SearchScopes: HKCU - {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} -  No File
DPF: HKLM {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/AT/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: HKLM {AEA3991E-3109-4C98-989E-33994FEB1A91} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri64_4.4.26.0.cab
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default
FF NewTab: www.google.de
FF Homepage: hxxp://battlelog.battlefield.com/bf3/de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @canon.com/EPPEX - D:\Anwendungen D\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin - D:\Canon Powershot SX20IS\Programme\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.102.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - D:\Anwendungen D\Veetle TV\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - D:\Anwendungen D\Veetle TV\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\LONGER\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\LONGER\AppData\Roaming\Mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Extension: Visualisateur 3D de 20-20 - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: Battlefield Play4Free - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\battlefieldplay4free@ea.com
FF Extension: ClipGrab - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{e36df325-3f4b-476f-8f89-123bc5d51a30}
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - D:\Anwendungen D\Firefox\firefox.exe

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [130976 2011-03-01] (Futuremark Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 OODefragAgent; D:\Anwendungen D\O&O Defrag\oodag.exe [3271496 2011-09-18] (O&O Software GmbH)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2011-08-12] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-02-15] ()
R2 StarWindServiceAE; D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-21] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-21] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-08-21] ()
S3 Dnetr7364; C:\Windows\System32\DRIVERS\Dnetr7364.sys [716800 2009-06-17] (Ralink Technology, Corp.)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 FTDIBUS; C:\Windows\System32\drivers\opcomusb.sys [68800 2008-03-13] (FTDI Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [157696 2009-03-25] (Realtek Semiconductor Corporation                          )
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-02] (Duplex Secure Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-23 16:57 - 2013-08-23 16:57 - 00000000 ____D C:\Windows\ERUNT
2013-08-23 16:52 - 2013-08-23 16:52 - 00043905 _____ C:\Users\LONGER\Desktop\AdwCleaner[S0].txt
2013-08-23 16:48 - 2013-08-23 16:50 - 00000000 ____D C:\AdwCleaner
2013-08-23 16:35 - 2013-08-23 16:35 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-23 16:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-08-23 16:33 - 2013-08-23 16:33 - 00975858 _____ C:\Users\LONGER\Downloads\adwcleaner.exe
2013-08-23 16:32 - 2013-08-23 16:33 - 01021434 _____ (Thisisu) C:\Users\LONGER\Downloads\JRT.exe
2013-08-23 16:32 - 2013-08-23 16:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\LONGER\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-22 22:51 - 2013-08-22 22:51 - 00481496 _____ C:\Windows\Minidump\082213-18610-01.dmp
2013-08-22 22:23 - 2013-08-22 22:23 - 00048400 _____ C:\Users\LONGER\Downloads\FRST-alt.txt
2013-08-22 22:22 - 2013-08-22 22:22 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64(1).exe
2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:39 - 2013-08-22 22:23 - 00048400 _____ C:\Users\LONGER\Desktop\FRST-alt.txt
2013-08-22 20:31 - 2013-08-22 20:31 - 00568302 _____ C:\Users\LONGER\Desktop\Gmer.txt
2013-08-22 20:24 - 2013-08-22 20:04 - 00024113 _____ C:\Users\LONGER\Desktop\Addition.txt
2013-08-22 20:22 - 2013-08-22 20:22 - 00000526 _____ C:\Users\LONGER\Downloads\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000652 _____ C:\Users\LONGER\Desktop\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:03 - 2013-08-22 20:04 - 00024113 _____ C:\Users\LONGER\Downloads\Addition.txt
2013-08-22 20:02 - 2013-08-22 20:02 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 19:52 - 2013-08-22 19:52 - 00100174 _____ C:\Users\LONGER\Downloads\OTL.Txt
2013-08-22 19:52 - 2013-08-22 19:52 - 00091986 _____ C:\Users\LONGER\Downloads\Extras.Txt
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:43 - 2013-08-22 17:45 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:35 - 2013-08-22 17:37 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 12:40 - 2013-08-22 12:58 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:11 - 2013-08-22 12:40 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 11:41 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 10:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:13 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 09:43 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:13 - 2013-08-22 09:42 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 08:43 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 07:44 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:14 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 06:45 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:16 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 05:46 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 04:47 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:17 - 2013-08-22 04:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 03:48 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 02:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:18 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 01:49 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:19 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 00:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-21 23:50 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:20 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 22:50 - 2013-08-21 23:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:21 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 21:51 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 20:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 19:50 - 2013-08-21 20:00 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 19:50 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-20 18:49 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-20 18:49 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-20 18:48 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-20 18:48 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-20 18:48 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-20 18:48 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-20 18:40 - 2013-08-20 18:43 - 00000000 ____D C:\Windows\system32\MRT
2013-08-17 11:40 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-17 11:40 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-17 11:40 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-17 11:40 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-17 11:40 - 2013-06-15 06:35 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-17 11:40 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-17 11:37 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp
2013-07-24 11:53 - 2013-07-24 11:54 - 00275352 _____ C:\Windows\Minidump\072413-18688-01.dmp

==================== One Month Modified Files and Folders =======

2013-08-23 17:02 - 2013-08-23 17:02 - 00001198 _____ C:\Users\LONGER\Desktop\JRT.txt
2013-08-23 16:59 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-23 16:59 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-23 16:58 - 2012-06-17 18:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-23 16:57 - 2013-08-23 16:57 - 00000000 ____D C:\Windows\ERUNT
2013-08-23 16:55 - 2010-11-09 15:50 - 01998695 _____ C:\Windows\WindowsUpdate.log
2013-08-23 16:54 - 2012-09-04 21:15 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-08-23 16:54 - 2010-11-09 16:03 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Skype
2013-08-23 16:52 - 2013-08-23 16:52 - 00043905 _____ C:\Users\LONGER\Desktop\AdwCleaner[S0].txt
2013-08-23 16:52 - 2010-11-09 16:14 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-23 16:51 - 2012-09-02 11:54 - 00015880 _____ C:\Windows\setupact.log
2013-08-23 16:51 - 2012-07-25 19:01 - 00363375 _____ C:\Windows\system32\oodbs.lor
2013-08-23 16:51 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-23 16:50 - 2013-08-23 16:48 - 00000000 ____D C:\AdwCleaner
2013-08-23 16:44 - 2012-09-06 20:21 - 00023962 _____ C:\Windows\PFRO.log
2013-08-23 16:35 - 2013-08-23 16:35 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-23 16:33 - 2013-08-23 16:33 - 00975858 _____ C:\Users\LONGER\Downloads\adwcleaner.exe
2013-08-23 16:33 - 2013-08-23 16:32 - 01021434 _____ (Thisisu) C:\Users\LONGER\Downloads\JRT.exe
2013-08-23 16:32 - 2013-08-23 16:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\LONGER\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-22 22:51 - 2013-08-22 22:51 - 00481496 _____ C:\Windows\Minidump\082213-18610-01.dmp
2013-08-22 22:51 - 2012-10-01 22:46 - 507605936 _____ C:\Windows\MEMORY.DMP
2013-08-22 22:51 - 2011-03-12 17:59 - 00000000 ____D C:\Windows\Minidump
2013-08-22 22:23 - 2013-08-22 22:23 - 00048400 _____ C:\Users\LONGER\Downloads\FRST-alt.txt
2013-08-22 22:23 - 2013-08-22 20:39 - 00048400 _____ C:\Users\LONGER\Desktop\FRST-alt.txt
2013-08-22 22:22 - 2013-08-22 22:22 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64(1).exe
2013-08-22 22:21 - 2010-11-09 16:14 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-22 21:29 - 2012-03-24 14:49 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\TS3Client
2013-08-22 20:49 - 2012-05-06 01:12 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-08-22 20:49 - 2010-11-09 19:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-08-22 20:49 - 2010-11-09 16:39 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-08-22 20:48 - 2011-09-28 18:18 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-22 20:42 - 2012-02-29 21:24 - 00001142 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001UA.job
2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:31 - 2013-08-22 20:31 - 00568302 _____ C:\Users\LONGER\Desktop\Gmer.txt
2013-08-22 20:22 - 2013-08-22 20:22 - 00000526 _____ C:\Users\LONGER\Downloads\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000652 _____ C:\Users\LONGER\Desktop\defogger_disable.log
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:11 - 2010-11-09 15:58 - 00000000 ____D C:\Users\LONGER
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:04 - 2013-08-22 20:24 - 00024113 _____ C:\Users\LONGER\Desktop\Addition.txt
2013-08-22 20:04 - 2013-08-22 20:03 - 00024113 _____ C:\Users\LONGER\Downloads\Addition.txt
2013-08-22 20:02 - 2013-08-22 20:02 - 01576476 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 19:52 - 2013-08-22 19:52 - 00100174 _____ C:\Users\LONGER\Downloads\OTL.Txt
2013-08-22 19:52 - 2013-08-22 19:52 - 00091986 _____ C:\Users\LONGER\Downloads\Extras.Txt
2013-08-22 19:45 - 2012-04-02 19:57 - 00602112 _____ (OldTimer Tools) C:\Users\LONGER\Downloads\OTL.exe
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:45 - 2013-08-22 17:43 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:37 - 2013-08-22 17:35 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 14:42 - 2012-02-29 21:24 - 00001120 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001Core.job
2013-08-22 12:58 - 2013-08-22 12:40 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:40 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 12:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 11:11 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:43 - 2011-11-16 19:06 - 00000000 ____D C:\Users\LONGER\Desktop\Bewerbungen
2013-08-22 10:41 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 10:13 - 2013-08-22 09:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:42 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 09:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:43 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 08:13 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:44 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 07:14 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:45 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 06:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:46 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 05:16 - 2013-08-22 04:47 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:46 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 04:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 03:17 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:48 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 02:18 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 01:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:49 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-22 00:19 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:50 - 2013-08-21 23:20 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 23:19 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:50 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 22:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 21:21 - 2013-08-21 20:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 20:00 - 2013-08-21 19:50 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 20:00 - 2011-10-10 14:59 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-21 20:00 - 2011-01-19 00:29 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-21 19:58 - 2012-06-17 18:35 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-21 19:58 - 2012-04-07 14:21 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-21 19:58 - 2011-05-17 17:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-21 19:57 - 2010-11-09 16:14 - 00000000 ____D C:\Users\LONGER\AppData\Local\Google
2013-08-21 19:50 - 2011-01-19 00:28 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-21 03:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-21 03:16 - 2012-04-29 17:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Origin
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Local\Origin
2013-08-20 20:01 - 2013-04-05 20:19 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-08-20 18:48 - 2010-11-09 18:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-20 18:45 - 2009-07-14 19:58 - 00657660 _____ C:\Windows\system32\perfh007.dat
2013-08-20 18:45 - 2009-07-14 19:58 - 00131032 _____ C:\Windows\system32\perfc007.dat
2013-08-20 18:45 - 2009-07-14 07:13 - 01528462 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-20 18:43 - 2013-08-20 18:40 - 00000000 ____D C:\Windows\system32\MRT
2013-08-20 18:40 - 2011-02-16 12:13 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-08-17 11:32 - 2010-11-09 16:14 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-30 19:59 - 2012-11-10 18:27 - 00000000 ____D C:\Users\LONGER\.gimp-2.8
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-30 17:58 - 2010-11-09 18:31 - 00000000 ____D C:\Users\LONGER\AppData\Local\Adobe
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp
2013-07-26 07:13 - 2013-08-20 18:48 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-26 07:12 - 2013-08-20 18:48 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-26 05:35 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-26 05:13 - 2013-08-20 18:48 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-26 05:13 - 2013-08-20 18:48 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-26 04:49 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-26 04:39 - 2013-08-20 18:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-26 03:59 - 2013-08-20 18:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-25 11:25 - 2013-08-17 11:40 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-25 10:57 - 2013-08-17 11:40 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-24 11:54 - 2013-07-24 11:53 - 00275352 _____ C:\Windows\Minidump\072413-18688-01.dmp

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-22 00:22

==================== End Of Log ============================
--- --- ---

schrauber 24.08.2013 09:02

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Longer 24.08.2013 15:20
ESET

Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=f33607a70f525c438205738506a05a46
# engine=14887
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-08-24 02:07:55
# local_time=2013-08-24 04:07:55 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 54863 128983125 0 0
# scanned=278032
# found=6
# cleaned=0
# scan_time=8336
sh=BE6B61DF66FBF3C7E72796B25B521B6149900CD1 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\LONGER\AppData\Local\Temp\jar_cache2418910284104092176.tmp"
sh=CAFAD9AE35074AC60AA91C5ACF83084B26045627 ft=1 fh=8c9cc92d4cacf47c vn="a variant of Win32/Kryptik.BION trojan" ac=I fn="C:\Users\LONGER\AppData\Local\Temp\~tmf8802442661987950308.tmp"
sh=E0ACDA9763B36111BD58BB6421FCA2424EBB4175 ft=0 fh=0000000000000000 vn="Java/Exploit.Agent.OWK trojan" ac=I fn="C:\Users\LONGER\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\434a3191-173f3c4b"
sh=1CEC9677AE3EF2F431A4C402B13A95E491A571FC ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2013-2465.A trojan" ac=I fn="C:\Users\LONGER\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\5b442456-1a70ab08"
sh=D10A393D81C7F92F04CD1F4E36C818F83DD57B10 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.PJI trojan" ac=I fn="C:\Users\LONGER\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\755845b4-5516954d"
sh=820CDD5A704E126EBFD3615B14673F4888F767C2 ft=1 fh=40cd6db141edf5e4 vn="a variant of Win32/TrojanDropper.Delf.NVT trojan" ac=I fn="D:\Anwendungen D\patch.exe"

SEC-CHECK

Code:
Results of screen317's Security Check version 0.99.72 
 Windows 7 Service Pack 1 x64 (UAC is disabled!) 
 Internet Explorer 10 
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus 
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java(TM) 6 Update 30 
 Java version out of Date!
 Adobe Flash Player 11.8.800.94 
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (23.0.1)
 Mozilla Thunderbird 16.0.1 Thunderbird out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 Alwil Software Avast5 AvastSvc.exe 
 Alwil Software Avast5 AvastUI.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 
````````````````````End of Log``````````````````````

FRST


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2013 01
Ran by LONGER (administrator) on 24-08-2013 16:19:05
Running from C:\Users\LONGER\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(O&O Software GmbH) D:\Anwendungen D\O&O Defrag\oodtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Nullsoft, Inc.) D:\Anwendungen D\Winamp\winampa.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Geek Software GmbH) D:\anwendungen\PDF24\pdf24.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Elaborate Bytes AG) D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(O&O Software GmbH) D:\Anwendungen D\O&O Defrag\oodag.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Rocket Division Software) D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTXFISPI.EXE
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NANotify.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VX1000] - C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [Launch LgDeviceAgent] - C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415752 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2093064 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4195848 2009-08-13] (Logitech Inc.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [OODefragTray] - D:\Anwendungen D\O&O Defrag\oodtray.exe [3993416 2011-09-18] (O&O Software GmbH)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-11-10] (Google Inc.)
HKCU\...\Run: [Facebook Update] - C:\Users\LONGER\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-14] (Facebook Inc.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.)
MountPoints2: {30b4c98b-ed02-11df-b645-0021859e8162} - N:\Setup.EXE
MountPoints2: {e3485c40-1cc9-11e1-963b-806e6f6e6963} - G:\Setup.EXE
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LifeCam] - C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [ATICustomerCare] - C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [WinampAgent] - D:\Anwendungen D\Winamp\winampa.exe [74752 2010-12-07] (Nullsoft, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [avast] - C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [PDFPrint] - D:\anwendungen\PDF24\pdf24.exe [220744 2011-10-11] (Geek Software GmbH)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [CTxfiHlp] - C:\Windows\\SysWOW64\CTXFIHLP.EXE [25600 2010-05-06] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - D:\Anwendungen D\Neuer Ordner\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

ProxyServer: 79.139.101.44:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
SearchScopes: HKCU - {ECB56F2E-8927-443D-8439-96E6D0ADE999} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7GGLL_deDE405
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} -  No File
DPF: HKLM {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/AT/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: HKLM {AEA3991E-3109-4C98-989E-33994FEB1A91} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri64_4.4.26.0.cab
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default
FF NewTab: www.google.de
FF Homepage: hxxp://battlelog.battlefield.com/bf3/de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @canon.com/EPPEX - D:\Anwendungen D\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin - D:\Canon Powershot SX20IS\Programme\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.102.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - D:\Anwendungen D\Veetle TV\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - D:\Anwendungen D\Veetle TV\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\LONGER\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\LONGER\AppData\Roaming\Mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Extension: Visualisateur 3D de 20-20 - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: Battlefield Play4Free - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\battlefieldplay4free@ea.com
FF Extension: ClipGrab - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{e36df325-3f4b-476f-8f89-123bc5d51a30}
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\LONGER\AppData\Roaming\Mozilla\Firefox\Profiles\385b3hus.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - D:\Anwendungen D\Firefox\firefox.exe

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [130976 2011-03-01] (Futuremark Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 OODefragAgent; D:\Anwendungen D\O&O Defrag\oodag.exe [3271496 2011-09-18] (O&O Software GmbH)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2011-08-12] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-02-15] ()
R2 StarWindServiceAE; D:\Anwendungen D\Alcohl 120\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-21] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-21] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-08-21] ()
S3 Dnetr7364; C:\Windows\System32\DRIVERS\Dnetr7364.sys [716800 2009-06-17] (Ralink Technology, Corp.)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 FTDIBUS; C:\Windows\System32\drivers\opcomusb.sys [68800 2008-03-13] (FTDI Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [157696 2009-03-25] (Realtek Semiconductor Corporation                          )
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-12-02] (Duplex Secure Ltd.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-24 16:13 - 2013-08-24 13:45 - 00891115 _____ C:\Users\LONGER\Desktop\SecurityCheck.exe
2013-08-24 13:45 - 2013-08-24 13:45 - 00891115 _____ C:\Users\LONGER\Downloads\SecurityCheck.exe
2013-08-24 13:44 - 2013-08-24 13:44 - 02347384 _____ (ESET) C:\Users\LONGER\Downloads\esetsmartinstaller_enu.exe
2013-08-24 13:41 - 2013-08-24 13:41 - 00000000 _____ C:\Users\LONGER\AppData\Roaming\.NANotifyHere
2013-08-24 01:05 - 2013-08-24 01:05 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Nero
2013-08-24 00:58 - 2013-08-24 01:04 - 00000000 ____D C:\ProgramData\Nero
2013-08-24 00:58 - 2013-08-24 01:03 - 00000000 ____D C:\Program Files (x86)\Nero
2013-08-24 00:44 - 2013-08-24 00:47 - 326112440 _____ (Nero AG) C:\Users\LONGER\Downloads\Nero-12.5.01900_trial.exe
2013-08-23 16:57 - 2013-08-23 16:57 - 00000000 ____D C:\Windows\ERUNT
2013-08-23 16:48 - 2013-08-23 16:50 - 00000000 ____D C:\AdwCleaner
2013-08-23 16:35 - 2013-08-23 16:35 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-23 16:34 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-08-23 16:33 - 2013-08-23 16:33 - 00975858 _____ C:\Users\LONGER\Downloads\adwcleaner.exe
2013-08-23 16:32 - 2013-08-23 16:33 - 01021434 _____ (Thisisu) C:\Users\LONGER\Downloads\JRT.exe
2013-08-23 16:32 - 2013-08-23 16:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\LONGER\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-22 22:51 - 2013-08-22 22:51 - 00481496 _____ C:\Windows\Minidump\082213-18610-01.dmp
2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:43 - 2013-08-22 17:45 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:35 - 2013-08-22 17:37 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 12:40 - 2013-08-22 12:58 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:11 - 2013-08-22 12:40 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 11:41 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 10:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:13 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 09:43 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:13 - 2013-08-22 09:42 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 08:43 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 07:44 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:14 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 06:45 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:16 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 05:46 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 04:47 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:17 - 2013-08-22 04:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 03:48 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 02:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:18 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 01:49 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:19 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 00:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-21 23:50 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:20 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 22:50 - 2013-08-21 23:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:21 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 21:51 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 20:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 19:50 - 2013-08-21 20:00 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 19:50 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-20 18:49 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-20 18:49 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-20 18:48 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-20 18:48 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-20 18:48 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-20 18:48 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-20 18:48 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-20 18:48 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-20 18:48 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-20 18:48 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-20 18:40 - 2013-08-20 18:43 - 00000000 ____D C:\Windows\system32\MRT
2013-08-17 11:40 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-17 11:40 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-17 11:40 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-17 11:40 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-17 11:40 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-17 11:40 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-17 11:40 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-17 11:40 - 2013-06-15 06:35 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-17 11:40 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-17 11:37 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp

==================== One Month Modified Files and Folders =======

2013-08-24 16:18 - 2013-08-24 16:18 - 01576734 _____ (Farbar) C:\Users\LONGER\Downloads\FRST64.exe
2013-08-24 16:02 - 2010-11-09 16:03 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Skype
2013-08-24 15:58 - 2012-06-17 18:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-24 15:21 - 2010-11-09 16:14 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-24 14:42 - 2012-02-29 21:24 - 00001142 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001UA.job
2013-08-24 14:42 - 2012-02-29 21:24 - 00001120 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1920472150-1226803370-744507330-1001Core.job
2013-08-24 13:45 - 2013-08-24 16:13 - 00891115 _____ C:\Users\LONGER\Desktop\SecurityCheck.exe
2013-08-24 13:45 - 2013-08-24 13:45 - 00891115 _____ C:\Users\LONGER\Downloads\SecurityCheck.exe
2013-08-24 13:45 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-24 13:45 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-24 13:44 - 2013-08-24 13:44 - 02347384 _____ (ESET) C:\Users\LONGER\Downloads\esetsmartinstaller_enu.exe
2013-08-24 13:41 - 2013-08-24 13:41 - 00000000 _____ C:\Users\LONGER\AppData\Roaming\.NANotifyHere
2013-08-24 13:40 - 2010-11-09 15:50 - 02095920 _____ C:\Windows\WindowsUpdate.log
2013-08-24 13:38 - 2010-11-09 16:14 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-24 13:37 - 2012-09-02 11:54 - 00015992 _____ C:\Windows\setupact.log
2013-08-24 13:37 - 2012-07-25 19:01 - 00365925 _____ C:\Windows\system32\oodbs.lor
2013-08-24 13:37 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-24 01:05 - 2013-08-24 01:05 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Nero
2013-08-24 01:04 - 2013-08-24 00:58 - 00000000 ____D C:\ProgramData\Nero
2013-08-24 01:03 - 2013-08-24 00:58 - 00000000 ____D C:\Program Files (x86)\Nero
2013-08-24 01:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Cursors
2013-08-24 00:47 - 2013-08-24 00:44 - 326112440 _____ (Nero AG) C:\Users\LONGER\Downloads\Nero-12.5.01900_trial.exe
2013-08-23 16:57 - 2013-08-23 16:57 - 00000000 ____D C:\Windows\ERUNT
2013-08-23 16:54 - 2012-09-04 21:15 - 00004184 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-08-23 16:50 - 2013-08-23 16:48 - 00000000 ____D C:\AdwCleaner
2013-08-23 16:50 - 2010-11-11 23:40 - 00000000 ____D C:\ProgramData\ICQ
2013-08-23 16:44 - 2012-09-06 20:21 - 00023962 _____ C:\Windows\PFRO.log
2013-08-23 16:35 - 2013-08-23 16:35 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-08-23 16:34 - 2013-08-23 16:34 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-23 16:33 - 2013-08-23 16:33 - 00975858 _____ C:\Users\LONGER\Downloads\adwcleaner.exe
2013-08-23 16:33 - 2013-08-23 16:32 - 01021434 _____ (Thisisu) C:\Users\LONGER\Downloads\JRT.exe
2013-08-23 16:32 - 2013-08-23 16:32 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\LONGER\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-22 22:51 - 2013-08-22 22:51 - 00481496 _____ C:\Windows\Minidump\082213-18610-01.dmp
2013-08-22 22:51 - 2012-10-01 22:46 - 507605936 _____ C:\Windows\MEMORY.DMP
2013-08-22 22:51 - 2011-03-12 17:59 - 00000000 ____D C:\Windows\Minidump
2013-08-22 21:29 - 2012-03-24 14:49 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\TS3Client
2013-08-22 20:49 - 2012-05-06 01:12 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-08-22 20:49 - 2010-11-09 19:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-08-22 20:49 - 2010-11-09 16:39 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-08-22 20:48 - 2011-09-28 18:18 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-22 20:40 - 2013-08-22 20:40 - 00048153 _____ C:\Users\LONGER\Desktop\Logfiles.zip
2013-08-22 20:11 - 2013-08-22 20:11 - 00000186 _____ C:\Users\LONGER\defogger_reenable
2013-08-22 20:11 - 2010-11-09 15:58 - 00000000 ____D C:\Users\LONGER
2013-08-22 20:10 - 2013-08-22 20:10 - 00050477 _____ C:\Users\LONGER\Downloads\Defogger.exe
2013-08-22 20:06 - 2013-08-22 20:06 - 00377856 _____ C:\Users\LONGER\Downloads\gmer_2.1.19163.exe
2013-08-22 20:02 - 2013-08-22 20:02 - 00000000 ____D C:\FRST
2013-08-22 19:45 - 2012-04-02 19:57 - 00602112 _____ (OldTimer Tools) C:\Users\LONGER\Downloads\OTL.exe
2013-08-22 17:51 - 2013-08-22 17:51 - 01588760 _____ C:\Users\LONGER\Downloads\SetupVirtualCloneDrive5460.exe
2013-08-22 17:45 - 2013-08-22 17:43 - 00000000 ____D C:\Users\LONGER\Downloads\Travelguide
2013-08-22 17:37 - 2013-08-22 17:35 - 00000000 ____D C:\Users\LONGER\Downloads\DVD90 RAR Safe
2013-08-22 12:58 - 2013-08-22 12:40 - 63790138 _____ C:\Users\LONGER\Downloads\Travelguide.part33.rar
2013-08-22 12:40 - 2013-08-22 12:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part32.rar
2013-08-22 12:11 - 2013-08-22 11:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part31.rar
2013-08-22 11:41 - 2013-08-22 11:11 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part30.rar
2013-08-22 11:11 - 2013-08-22 10:41 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part29.rar
2013-08-22 10:43 - 2011-11-16 19:06 - 00000000 ____D C:\Users\LONGER\Desktop\Bewerbungen
2013-08-22 10:41 - 2013-08-22 10:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part28.rar
2013-08-22 10:13 - 2013-08-22 09:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part27.rar
2013-08-22 09:42 - 2013-08-22 09:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part26.rar
2013-08-22 09:13 - 2013-08-22 08:43 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part25.rar
2013-08-22 08:43 - 2013-08-22 08:13 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part24.rar
2013-08-22 08:13 - 2013-08-22 07:44 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part23.rar
2013-08-22 07:44 - 2013-08-22 07:14 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part22.rar
2013-08-22 07:14 - 2013-08-22 06:45 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part21.rar
2013-08-22 06:45 - 2013-08-22 06:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part20.rar
2013-08-22 06:16 - 2013-08-22 05:46 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part19.rar
2013-08-22 05:46 - 2013-08-22 05:16 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part18.rar
2013-08-22 05:16 - 2013-08-22 04:47 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part17.rar
2013-08-22 04:46 - 2013-08-22 04:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part16.rar
2013-08-22 04:17 - 2013-08-22 03:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part15.rar
2013-08-22 03:48 - 2013-08-22 03:17 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part14.rar
2013-08-22 03:17 - 2013-08-22 02:48 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part13.rar
2013-08-22 02:48 - 2013-08-22 02:18 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part12.rar
2013-08-22 02:18 - 2013-08-22 01:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part11.rar
2013-08-22 01:49 - 2013-08-22 01:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part10.rar
2013-08-22 01:19 - 2013-08-22 00:49 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part09.rar
2013-08-22 00:49 - 2013-08-22 00:19 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part08.rar
2013-08-22 00:19 - 2013-08-21 23:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part07.rar
2013-08-21 23:50 - 2013-08-21 23:20 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part06.rar
2013-08-21 23:19 - 2013-08-21 22:50 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part05.rar
2013-08-21 22:50 - 2013-08-21 22:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part04.rar
2013-08-21 22:21 - 2013-08-21 21:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part03.rar
2013-08-21 21:51 - 2013-08-21 21:21 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part02.rar
2013-08-21 21:21 - 2013-08-21 20:51 - 106430464 _____ C:\Users\LONGER\Downloads\Travelguide.part01.rar
2013-08-21 20:49 - 2013-08-21 20:49 - 00011312 _____ C:\Users\LONGER\Downloads\87bcbfe1c77e2985aff7b098cf8dbc95.dlc
2013-08-21 20:44 - 2013-08-21 20:44 - 00077236 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\LONGER\Downloads\jDownloaderWebInstaller09581.exe
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-08-21 20:00 - 2013-08-21 20:00 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-08-21 20:00 - 2013-08-21 19:50 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-21 20:00 - 2011-10-10 14:59 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-21 20:00 - 2011-01-19 00:29 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-21 19:58 - 2012-06-17 18:35 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-21 19:58 - 2012-04-07 14:21 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-21 19:58 - 2011-05-17 17:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-21 19:57 - 2010-11-09 16:14 - 00000000 ____D C:\Users\LONGER\AppData\Local\Google
2013-08-21 19:50 - 2011-01-19 00:28 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-08-21 19:31 - 2013-08-21 19:31 - 21266689 _____ C:\Users\LONGER\Downloads\CD70DVD90-10102007.7Z
2013-08-21 03:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-21 03:16 - 2012-04-29 17:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Roaming\Origin
2013-08-20 20:07 - 2011-09-28 18:18 - 00000000 ____D C:\Users\LONGER\AppData\Local\Origin
2013-08-20 20:01 - 2013-04-05 20:19 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-08-20 18:48 - 2010-11-09 18:24 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-20 18:45 - 2009-07-14 19:58 - 00657660 _____ C:\Windows\system32\perfh007.dat
2013-08-20 18:45 - 2009-07-14 19:58 - 00131032 _____ C:\Windows\system32\perfc007.dat
2013-08-20 18:45 - 2009-07-14 07:13 - 01528462 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-20 18:43 - 2013-08-20 18:40 - 00000000 ____D C:\Windows\system32\MRT
2013-08-20 18:40 - 2011-02-16 12:13 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-17 11:33 - 2013-08-17 11:33 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-08-17 11:32 - 2010-11-09 16:14 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-30 19:59 - 2012-11-10 18:27 - 00000000 ____D C:\Users\LONGER\.gimp-2.8
2013-07-30 18:47 - 2013-07-30 18:47 - 00002096 _____ C:\Users\LONGER\AppData\Local\recently-used.xbel
2013-07-30 17:58 - 2010-11-09 18:31 - 00000000 ____D C:\Users\LONGER\AppData\Local\Adobe
2013-07-29 20:57 - 2013-07-29 20:57 - 00275352 _____ C:\Windows\Minidump\072913-20467-01.dmp
2013-07-26 07:13 - 2013-08-20 18:48 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-26 07:13 - 2013-08-20 18:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-26 07:12 - 2013-08-20 18:48 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-26 07:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-26 05:35 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-26 05:13 - 2013-08-20 18:48 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-26 05:13 - 2013-08-20 18:48 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-26 05:12 - 2013-08-20 18:48 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-26 05:11 - 2013-08-20 18:48 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-26 04:49 - 2013-08-20 18:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-26 04:39 - 2013-08-20 18:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-26 03:59 - 2013-08-20 18:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-25 11:25 - 2013-08-17 11:40 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-25 10:57 - 2013-08-17 11:40 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL

Files to move or delete:
====================
C:\Users\LONGER\AppData\Local\Temp\Quarantine.exe
C:\Users\LONGER\AppData\Local\Temp\SkypeSetup.exe
C:\Users\LONGER\AppData\Local\Temp\sonarinst.exe
C:\Users\LONGER\AppData\Local\Temp\tmp6EAA.exe
C:\Users\LONGER\AppData\Local\Temp\tmpB6C0.exe
C:\Users\LONGER\AppData\Local\Temp\ydetect.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_Desktop.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_Resource_de.dll
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_Resource_en.dll
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_Service.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\TeamViewer_StaticRes.dll
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\tv_w32.dll
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\tv_w32.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\tv_x64.dll
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\tv_x64.exe
C:\Users\LONGER\AppData\Local\Temp\TeamViewer\Version7\uninstall.exe
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\error_report.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\package_inst.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\QtCore4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\QtGui4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\QtNetwork4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\QtSql4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\ts3client_win32.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\update.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\sqldrivers\qsqlite4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\soundbackends\directsound_win32.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\soundbackends\windowsaudiosession_win32.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\appscanner_plugin.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\clientquery_plugin.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\lua_plugin.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\test_plugin.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3g15.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay_win32.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\fetchsymbols.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\ICCompressorChoose_win32.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\InstallHook.exe._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\ts3overlay_hook_win32.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\ts3overlay_hook_win64.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\debug\win64\dbghelp.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\debug\win32\dbghelp.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\plugins\ts3overlay\debug\win32\symsrv.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\imageformats\qgif4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\imageformats\qjpeg4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\teamspeak_temp_0\accessible\qtaccessiblewidgets4.dll._z_
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\setup.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\systemRequirementValidator\NeroOSValidator.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\systemRequirementValidator\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\rebootValidator\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\msi4.5ForWindowsxpX86\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\msi4.5ForWindowsxpX86\WindowsXP-KB942288-v3-x86.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\msi4.5ForWindows6.0X86\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\msi4.5ForWindows6.0X64\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\microsoftXml4.0\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\vcredist_x86.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\microsoftVcRedist2010Sp1X64\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\microsoftVcRedist2010Sp1X64\vcredist_x64.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\lightscribeSystemSoftware\LSDriveDetect.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\lightscribeSystemSoftware\LS_LAUNCHER.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\lightscribeSystemSoftware\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DSETUP.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\dsetup32.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DXSETUP.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DSETUP.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\dsetup32.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DXSETUP.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DSETUP.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\dsetup32.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DXSETUP.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DSETUP.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\dsetup32.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DXSETUP.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DSETUP.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\dsetup32.dll
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DXSETUP.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\avgSecurityToolbar\AVGSaveguardInstaller.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\avgSecurityToolbar\AVGToolbarInstaller.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\avgSecurityToolbar\NeroBar.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\avgSecurityToolbar\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\adobeflash\install_flash_player_11_active_x_32bit.exe
C:\Users\LONGER\AppData\Local\Temp\NeroInstallFiles\NERO20130522154941146\ISSetupPrerequisites\adobeflash\PRQStarter-1.exe
C:\Users\LONGER\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
C:\Users\LONGER\AppData\Local\Temp\jrt\erunt\ERUNT.EXE.manifest
C:\Users\LONGER\AppData\Local\Temp\is1070216317\3057081_Setup.EXE.part
C:\Users\LONGER\AppData\Local\Temp\is1070216317\JDownloaderSetup_IC.exe
C:\Users\LONGER\AppData\Local\Temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-22 00:22

==================== End Of Log ============================
--- --- ---

schrauber 24.08.2013 18:13
Java, Adobe und THunderbird updaten.

Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop.
Schließe nun alle offenen Programme und trenne Dich von dem Internet.
Doppelklick auf die TFC.exe und drücke auf Start.
Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
D:\Anwendungen D\patch.exe

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


Noch Probleme?

Longer 24.08.2013 18:50
Fixlog

Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-08-2013 01
Ran by LONGER at 2013-08-24 19:48:30 Run:1
Running from C:\Users\LONGER\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
D:\Anwendungen D\patch.exe
*****************

D:\Anwendungen D\patch.exe => Moved successfully.

==== End of Fixlog ====

schrauber 24.08.2013 19:23
Fertig :)

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.


Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Longer 02.09.2013 20:18
Code:
# DelFix v10.4 - Datei am 02/09/2013 um 21:13:26 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Benutzer : xxxxxxx
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)

~ Aktiviere die Benutzerkontensteuerung ... OK

~ Entferne die Bereinigungsprogramme ...


~ Erstelle ein Backup der Registrierungsdatenbank ... OK

~ Lösche die Wiederherstellungspunkte ...


Ein neuer Wiederherstellungspunkt wurde erstellt !

~ Stelle die Systemeinstellungen wieder her ... OK

########## - EOF - ##########
Danke erstmal - wenn nochmal was ist, erstelle ich ein neuen Thread - danke soweit mal.

schrauber 03.09.2013 07:35
Gern Geschehen :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 18:58 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27