Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Trojan:Win32/Sirefef.AB und Trojan:Win64/Sirefef.P entfernen! (https://www.trojaner-board.de/145408-trojan-win32-sirefef-ab-trojan-win64-sirefef-p-entfernen.html)

maxpay 01.12.2013 11:00
Trojan:Win32/Sirefef.AB und Trojan:Win64/Sirefef.P entfernen!
 
Hallo zusammen,
mein Microsoft Securety Essentials hat heute die oben genannten Trojaner auf meinem Windowas 7 gefunden. Löscht man sie über Essentials tauchen sie jedoch nach wenigen Sekunden wieder.


[CODE]Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.01.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Stinkerseitz :: STINKERSEITZ-PC [Administrator]

01.12.2013 10:50:47
mbam-log-2013-12-01 (10-50-47).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 263848
Laufzeit: 5 Minute(n), 21 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
[CODE]

schrauber 01.12.2013 12:33
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

maxpay 01.12.2013 14:33
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2013
Ran by Stinkerseitz at 2013-12-01 09:53:57
Running from C:\Users\Stinkerseitz\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Activision(R) (x32 Version: 1.00.0000)
Adobe AIR (x32 Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)
Advertising Center (x32 Version: 0.0.0.2)
Age of Empires III (x32 Version: 1.00.0000)
Age of Mythology (x32)
Any Video Converter 3.5.2 (x32)
AnyDVD (x32 Version: 7.3.7.0)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Batman: Arkham City™ (x32 Version: 1.0.0000.131)
Batman: Arkham City™ (x32 Version: 1.0.0003.131)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.3.1)
Blur(TM) (x32 Version: 1.00.0000)
Bonjour (Version: 3.0.0.10)
Call of Duty(R) 2 (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Call of Duty: Black Ops - Multiplayer (x32)
Call of Duty: Black Ops (x32)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Black Ops II - Zombies (x32)
Call of Duty: Black Ops II (x32)
Canon MP150
CDDRV_Installer (Version: 4.60)
Command & Conquer 3 (x32 Version: 1.00.0000)
Command & Conquer™ Alarmstufe Rot 3 (x32 Version: 1.0.1.0)
DC++ 0.781 (x32 Version: 0.781)
Definition update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Diablo III (x32 Version: 1.0.8.16603)
DiRT 3 (x32 Version: 1.0.0001.130)
DiRT 3 (x32)
DivX-Setup (x32 Version: 2.1.2.2)
DolbyFiles (x32 Version: 2.0)
DTM Experience Demo (x32)
DVD Decrypter (Remove Only) (x32)
DVD Shrink 3.2 deutsch (DeCSS-frei) (x32)
EPSON-Drucker-Software
erLT (x32 Version: 1.20.0137)
ESET Online Scanner v3 (x32)
ESN Sonar (x32 Version: 0.70.4)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)
FEAR (x32 Version: 1.00.0000)
Fraps (x32)
Free YouTube Download version 3.2.16.1030 (x32 Version: 3.2.16.1030)
Futuremark SystemInfo (x32 Version: 3.21.2.1)
G15_TeamSpeak (NSIS) (x32)
GameSpy Arcade (x32)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
iCloud (Version: 3.0.2.163)
ImagXpress (x32 Version: 7.0.74.0)
Intel A/V Codecs V2.0 (x32)
Internet-TV für Windows Media Center (x32 Version: 4.2.2.0)
iTunes (Version: 11.1.2.32)
Java 7 Update 13 (x32 Version: 7.0.130)
Java Auto Updater (x32 Version: 2.1.9.0)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JDownloader (x32)
Junk Mail filter update (x32 Version: 14.0.8117.416)
KhalInstallWrapper (Version: 2.00.0000)
Logitech Gaming Software 8.12 (Version: 8.12.030)
Logitech SetPoint (x32 Version: 4.80)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Menu Templates - Starter Kit (x32 Version: 9.4.6.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XML Parser (x32 Version: 8.70.1104.04)
Movie Templates - Starter Kit (x32 Version: 9.4.6.0)
Mozilla Firefox (3.6.16) (x32 Version: 3.6.16 (de))
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0)
Mozilla Maintenance Service (x32 Version: 26.0)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML4 Parser (x32 Version: 1.0.0)
Müller Foto (x32)
Nero 8 (x32 Version: 8.2.87)
Nero 9 Trial (x32)
Nero BurnRights (x32 Version: 3.4.13.100)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero CoverDesigner (x32 Version: 4.4.12.100)
Nero Disc Copy Gadget (x32 Version: 2.4.34.0)
Nero DiscSpeed (x32 Version: 5.4.13.100)
Nero DriveSpeed (x32 Version: 4.4.12.100)
Nero InfoTool (x32 Version: 6.4.12.100)
Nero Installer (x32 Version: 4.4.9.0)
Nero PhotoSnap (x32 Version: 2.4.28.0)
Nero Recode (x32 Version: 4.4.38.1)
Nero Rescue Agent (x32 Version: 2.4.14.100)
Nero ShowTime (x32 Version: 5.4.21.100)
Nero StartSmart (x32 Version: 9.4.19.100)
Nero Vision (x32 Version: 6.4.16.100)
Nero WaveEditor (x32 Version: 5.4.37.1)
NeroBurningROM (x32 Version: 9.4.26.100)
NeroExpress (x32 Version: 9.4.26.100)
neroxml (x32 Version: 1.0.0)
NVIDIA 3D Vision Controller Driver (x32 Version: 280.19)
NVIDIA 3D Vision Controller-Treiber 331.65 (Version: 331.65)
NVIDIA 3D Vision Treiber 331.65 (Version: 331.65)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1)
NVIDIA Grafiktreiber 331.65 (Version: 331.65)
NVIDIA Install Application (Version: 2.1002.140.952)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3165)
NVIDIA Systemsteuerung 331.65 (Version: 331.65)
NVIDIA Update 9.3.21 (Version: 9.3.21)
NVIDIA Update Components (Version: 9.3.21)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
O&O Defrag Professional (Version: 14.1.305)
OCCT Perestroika 3.1.0 (x32)
OpenAL (x32)
Origin (x32 Version: 8.5.0.4550)
OutlookAddInNet3Setup (x32 Version: 1.0.0)
PunkBuster Services (x32 Version: 0.991)
PVSonyDll (Version: 1.00.0001)
QuickTime (x32 Version: 7.74.80.86)
Rapture3D 2.4.8 Game (x32)
Samsung Kies (x32 Version: 2.6.1.13105_6)
Samsung Mobile phone USB driver Drive Software
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0)
Serious Sam HD: Gold Edition (x32 Version: 1.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
SHIELD Streaming (Version: 1.6.53)
SoundTrax (x32 Version: 4.4.37.1)
Steam (x32 Version: 1.0.0.0)
Supreme Commander - Forged Alliance (x32 Version: 1.00.0000)
Team Fortress 2 (x32 Version: 1.0.5.2)
Thrustmaster FFB Driver (x32 Version: 1.FFD.2009)
Trojan Remover 6.8.8 (x32 Version: 6.8.8)
Unreal Tournament 2004 (x32 Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2010 (KB2202188) (x32)
Update for Microsoft Office 2010 (KB2413186) (x32)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2523113) (x32)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553092) (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft OneNote 2010 (KB2493983) (x32)
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector (KB2583935) (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Usenet.nl (x32)
VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0)
VCRedistSetup (x32 Version: 1.0.0)
VIS (x32)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01)
VLC media player 2.1.1 (x32 Version: 2.1.1)
Winamp (x32 Version: 5.572 )
Winamp Anwendungserkennung (HKCU Version: 1.0.0.1)
Windows Live Call (x32 Version: 14.0.8117.0416)
Windows Live Communications Platform (x32 Version: 14.0.8117.416)
Windows Live Essentials (x32 Version: 14.0.8117.0416)
Windows Live Essentials (x32 Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (x32 Version: 14.0.8117.0416)
Windows Live Messenger (x32 Version: 14.0.8117.0416)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinRAR
YoutubeAdblocker (x32 Version: 3.1.0.1741)

==================== Restore Points  =========================

01-12-2013 08:44:52 Ende der Bereinigung

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-11-30 20:46 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1      localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {364DA788-D194-48DB-A625-B02CA358AFBD} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {53A6E670-5079-4C4C-9EDC-9D5263F16378} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {6D419B60-4A4B-41A2-93A7-1F2C8C70A3F1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {7FDEEB40-BDC7-4694-A204-A2D099273AE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11] (Google Inc.)
Task: {8C3D43C3-F95D-4378-ABCD-650D140E563B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11] (Google Inc.)
Task: {99CE0899-5923-4123-BCD8-7676B2DAA7EE} - System32\Tasks\{F08A9E07-3E3B-4908-8026-40DE8FAE81F3} => C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe [2013-02-14] (EA Digital Illusions CE AB)
Task: {B442C461-D007-4BAF-9F24-F29524EF6AF3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {DF492215-3E0D-414F-BC76-65D6B5EE359C} - \DealPly No Task File
Task: {E44D05E9-E2D3-44BF-A509-1856E639C5B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-27] (Adobe Systems Incorporated)
Task: {E925A122-5263-4918-9256-F33C5D83F57B} - \DealPlyUpdate No Task File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-02-08 16:52 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00118784 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevMgr-8.12.077\DevMgr.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00705536 _____ () C:\Program Files\Logitech Gaming Software\plugins\MainUI-8.12.179\MainUI.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00123904 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevBusBulk-8.12.076\DevBusBulk.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00125952 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevBusHid-8.12.078\DevBusHid.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00098304 _____ () C:\Program Files\Logitech Gaming Software\plugins\SimInput-8.12.068\SimInput.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00272384 _____ () C:\Program Files\Logitech Gaming Software\plugins\G13Device-8.12.155\G13Device.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00297984 _____ () C:\Program Files\Logitech Gaming Software\plugins\G19Device-8.12.147\G19Device.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00034304 _____ () C:\Program Files\Logitech Gaming Software\plugins\PnpGamePanelDevices-8.12.049\PnpGamePanelDevices.dll
2010-02-15 20:57 - 2009-07-20 12:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-29 19:41 - 2013-11-29 19:41 - 03550832 _____ () C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\mozjs.dll
2011-03-15 06:13 - 2011-03-15 06:13 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-11-27 11:42 - 2013-11-27 11:42 - 16237448 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows\system32\Drivers\aoybskii.sys:changelist
AlternateDataStreams: C:\Windows\system32\Drivers\mjkxnsgt.sys:changelist
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/01/2013 08:58:20 AM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2013 02:29:36 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/01/2013 02:27:30 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 10:59:50 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:10:03 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:08:02 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:07:56 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:06:03 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:29:40 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:15:58 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


System errors:
=============
Error: (12/01/2013 08:58:20 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
sfsync04
sptd

Error: (12/01/2013 08:57:42 AM) (Source: Application Popup) (User: )
Description: Treiber sfsync04.sys konnte nicht geladen werden.

Error: (11/30/2013 09:06:03 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
sfsync04
sptd

Error: (11/30/2013 09:05:53 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win64/Sirefef.P60 ein schwerwiegender Fehler festgestellt.

Weitere Informationen finden Sie hier:
%Trojan:Win64/Sirefef.P603

        Name: Trojan:Win64/Sirefef.P

        ID: 2147654466

        Schweregrad: %Trojan:Win64/Sirefef.P600

        Kategorie: %Trojan:Win64/Sirefef.P602

        Pfad: 4.4.0304.02

        Ursprung der Erkennung: 4.4.0304.04

        Typ der Erkennung: 4.4.0304.08

        Quelle der Erkennung: %Trojan:Win64/Sirefef.P608

        Benutzer: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}9

        Prozessname: %Trojan:Win64/Sirefef.P609

        Aktion: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}1

        Aktionsstatus:  {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}8

        Fehlercode: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}3

        Fehlerbeschreibung: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}4

        Signaturversion: 2013-11-30T19:30:26.684Z1

        Modulversion: 2013-11-30T19:30:26.684Z2

Error: (11/30/2013 09:05:53 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Sirefef.AB60 ein schwerwiegender Fehler festgestellt.

Weitere Informationen finden Sie hier:
%Trojan:Win32/Sirefef.AB603

        Name: Trojan:Win32/Sirefef.AB

        ID: 2147654467

        Schweregrad: %Trojan:Win32/Sirefef.AB600

        Kategorie: %Trojan:Win32/Sirefef.AB602

        Pfad: 4.4.0304.02

        Ursprung der Erkennung: 4.4.0304.04

        Typ der Erkennung: 4.4.0304.08

        Quelle der Erkennung: %Trojan:Win32/Sirefef.AB608

        Benutzer: {AC828314-0504-441A-865A-04D5B9A3DCC2}9

        Prozessname: %Trojan:Win32/Sirefef.AB609

        Aktion: {AC828314-0504-441A-865A-04D5B9A3DCC2}1

        Aktionsstatus:  {AC828314-0504-441A-865A-04D5B9A3DCC2}8

        Fehlercode: {AC828314-0504-441A-865A-04D5B9A3DCC2}3

        Fehlerbeschreibung: {AC828314-0504-441A-865A-04D5B9A3DCC2}4

        Signaturversion: 2013-11-30T19:30:36.965Z1

        Modulversion: 2013-11-30T19:30:36.965Z2

Error: (11/30/2013 09:05:28 PM) (Source: Application Popup) (User: )
Description: Treiber sfsync04.sys konnte nicht geladen werden.

Error: (11/30/2013 08:47:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (11/30/2013 08:45:47 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\ComboFix\catchme.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/30/2013 08:43:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (11/30/2013 08:38:46 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows-Verwaltungsinstrumentation" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056


Microsoft Office Sessions:
=========================
Error: (12/01/2013 08:58:20 AM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2013 02:29:36 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (12/01/2013 02:27:30 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Progs\Nero\Nero8\Nero Toolkit\DiscSpeed.exe

Error: (11/30/2013 10:59:50 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:10:03 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (11/30/2013 09:08:02 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:07:56 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:06:03 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:29:40 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:15:58 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


CodeIntegrity Errors:
===================================
  Date: 2013-11-30 20:45:47.941
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-30 20:45:47.832
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-02-05 15:40:39.716
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.681
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.647
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.613
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.577
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.540
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.502
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.457
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info ===========================

Percentage of memory in use: 24%
Total physical RAM: 4095.04 MB
Available physical RAM: 3082.75 MB
Total Pagefile: 8188.27 MB
Available Pagefile: 6323.41 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:389.15 GB) NTFS
Drive d: (Daten) (Fixed) (Total:149.05 GB) (Free:55 GB) NTFS
Drive f: (BLUR_DVD) (CDROM) (Total:5.18 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: B433A72E)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 96BD75FE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 09:48 on 01/12/2013 (Stinkerseitz)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Already disabled


-=E.O.F=-
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-12-2013
Ran by Stinkerseitz (administrator) on STINKERSEITZ-PC on 01-12-2013 09:52:47
Running from C:\Users\Stinkerseitz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(O&O Software GmbH) C:\Program Files\Progs\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Samsung) C:\Progs\Kies\Kies.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(Samsung Electronics Co., Ltd.) C:\Progs\Kies\KiesTrayAgent.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDPop3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x86\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDCountdown.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.Exe [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [110360 2011-09-29] (Logitech Inc.)
HKLM\...\Run: [MSC] - "c:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey <===== ATTENTION (File name is altered)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [KiesPreload] - C:\Progs\Kies\Kies.exe [1564528 2013-11-06] (Samsung)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TrojanScanner] - C:\Program Files (x86)\Progs\Trojan Remover\Trjscan.exe [1658640 2013-11-11] (Simply Super Software)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Progs\Kies\KiesTrayAgent.exe [311152 2013-11-06] (Samsung Electronics Co., Ltd.)
HKU\UpdatusUser\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\UpdatusUser\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKU\UpdatusUser\...\Run: [Facebook Update] - C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3442527CCB94CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {6BE5CDE8-1670-47EC-87A1-C667E8B544A8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=16E30E53-11F9-4D84-9C4B-E4A0AD79C33D&apn_sauid=94EB187C-BC6E-4FA7-A928-5B226D0B208B
SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: YoutubeAdblocker - {5B2D16F2-C56C-3DDB-0AD0-279E6CCF922E} - C:\Program Files (x86)\YoutubeAdblocker\nCH.dll No File
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\Progs\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Progs\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Stinkerseitz\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: testpilot - C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901\Extensions\testpilot@labs.mozilla.com.xpi
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF HKCU\...\Firefox\Extensions: [{9A207F60-3F1C-4ED0-972D-0A4CDFBFF803}] - C:\Users\Stinkerseitz\AppData\Roaming\15001.001
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: () - C:\Users\STINKE~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab\background.html

==================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe [869672 2007-12-03] (Nero AG)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\Progs\OO Software\Defrag\oodag.exe [3152200 2010-11-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-04] ()
S4 RemoteAccess; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2012-06-26] (Realtek Semiconductor.)
S2 sfrem01; C:\Windows\system32\sfrem01.exe [601208 2006-07-05] (Protection Technology (StarForce))

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-09-09] (Devguru Co., Ltd)
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-11-22] (Lavasoft AB)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 phaudlwr; C:\Windows\System32\DRIVERS\phaudlwr.sys [114608 2009-10-21] (Philips Applied Technologies)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-05-10] (Protection Technology (StarForce))
S0 sfsync04; C:\Windows\System32\drivers\sfsync04.sys [78208 2006-08-11] (Protection Technology (StarForce))
S3 SPC530; C:\Windows\System32\drivers\SPC530.sys [583168 2008-05-21] (                                                            )
S3 SPC530m; C:\Windows\System32\drivers\SPC530m.sys [8192 2008-05-21] (                                                            )
S4 sptd; No ImagePath
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz130; \??\C:\Users\STINKE~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S1 nyvlvnpy; \??\C:\Windows\system32\drivers\nyvlvnpy.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-01 09:52 - 2013-12-01 09:53 - 00016453 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:49 - 2013-12-01 09:49 - 01959184 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-01 09:49 - 2013-12-01 09:49 - 01092187 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST.exe
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:43 - 2013-12-01 09:46 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:43 - 2013-12-01 09:43 - 00000000 ____D C:\Windows\ERUNT
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 03:05 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-30 21:08 - 2013-11-30 21:08 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:33 - 2013-11-30 20:47 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:46 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-11-29 19:40 - 2013-11-29 19:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-29 19:24 - 2013-12-01 03:05 - 00023090 _____ C:\Windows\IE11_main.log
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 21:28 - 2013-11-24 21:41 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-24 17:37 - 2013-11-24 17:41 - 340465664 _____ C:\Users\Stinkerseitz\Downloads\kav_rescue_10-0513.iso
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:42 - 2013-11-21 21:44 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 08:49 - 2013-11-21 09:13 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-14 14:03 - 2013-11-14 14:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 20:42 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:58 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 00:04 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 00:04 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 00:04 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 00:04 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 00:04 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 00:04 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 00:04 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 00:04 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 00:04 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 00:04 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 00:04 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 00:04 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 00:04 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-08 21:10 - 2013-11-08 15:27 - 00027064 ____N C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low.smi
2013-11-07 18:01 - 2013-11-07 18:04 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer

==================== One Month Modified Files and Folders =======

2013-12-01 09:53 - 2013-12-01 09:52 - 00016453 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:49 - 2013-12-01 09:49 - 01959184 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-01 09:49 - 2013-12-01 09:49 - 01092187 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST.exe
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:47 - 2010-02-15 15:16 - 00000000 ____D C:\Users\Stinkerseitz
2013-12-01 09:46 - 2013-12-01 09:43 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:43 - 2013-12-01 09:43 - 00000000 ____D C:\Windows\ERUNT
2013-12-01 09:34 - 2012-03-11 19:47 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-01 09:33 - 2013-02-03 12:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-01 09:26 - 2010-02-15 15:11 - 01759929 _____ C:\Windows\WindowsUpdate.log
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 09:04 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-01 09:04 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-01 08:59 - 2012-03-11 19:47 - 00001118 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-01 08:59 - 2011-05-18 11:33 - 00001421 _____ C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-01 08:58 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-01 08:58 - 2009-07-14 05:51 - 00153687 _____ C:\Windows\setupact.log
2013-12-01 08:57 - 2011-05-31 13:14 - 00648208 _____ C:\Windows\system32\oodbs.lor
2013-12-01 08:57 - 2010-02-15 15:40 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-01 03:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-01 03:05 - 2013-11-29 19:24 - 00023090 _____ C:\Windows\IE11_main.log
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-01 01:49 - 2012-04-14 09:39 - 00001166 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job
2013-11-30 23:01 - 2010-10-10 09:45 - 00000000 ____D C:\Users\Stinkerseitz\Documents\My Games
2013-11-30 21:08 - 2013-11-30 21:08 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-30 21:05 - 2010-02-15 15:45 - 00071212 _____ C:\Windows\PFRO.log
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:49 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-11-30 20:47 - 2013-11-30 20:33 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:47 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-30 20:39 - 2009-07-14 18:58 - 00696848 _____ C:\Windows\system32\perfh007.dat
2013-11-30 20:39 - 2009-07-14 18:58 - 00148144 _____ C:\Windows\system32\perfc007.dat
2013-11-30 20:39 - 2009-07-14 06:13 - 01613222 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-30 20:33 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 20:01 - 2013-09-23 11:17 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2013-11-30 20:01 - 2010-02-15 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-30 19:56 - 2010-12-15 20:17 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-30 19:49 - 2012-04-14 09:39 - 00001144 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job
2013-11-30 19:30 - 2011-02-28 14:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-30 19:30 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Google
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-30 17:36 - 2012-12-09 11:34 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Usenet.nl
2013-11-30 10:12 - 2010-02-18 21:14 - 00000000 ____D C:\Program Files (x86)\Progs
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:49 - 2010-02-15 17:33 - 00000000 ____D C:\Progs
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:48 - 2011-01-06 14:03 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Samsung
2013-11-30 09:48 - 2010-10-24 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Samsung
2013-11-30 09:46 - 2010-02-15 15:33 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-30 09:45 - 2011-02-07 13:14 - 00000000 ____D C:\ProgramData\Samsung
2013-11-30 09:43 - 2011-01-06 14:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Downloaded Installations
2013-11-30 09:28 - 2012-03-27 17:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-29 19:41 - 2013-11-29 19:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-29 19:41 - 2013-01-09 19:12 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Outlook-Dateien
2013-11-27 20:12 - 2010-07-28 22:10 - 00000000 ____D C:\Program Files (x86)\Spiele
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-27 11:42 - 2013-02-03 12:09 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-27 11:42 - 2011-05-22 10:19 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-27 11:42 - 2010-02-24 18:43 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Adobe
2013-11-27 11:37 - 2013-09-29 13:35 - 00000000 ____D C:\Users\UpdatusUser.Stinkerseitz-PC
2013-11-27 11:02 - 2010-04-25 09:35 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\vlc
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-27 11:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-11-26 20:11 - 2010-02-15 17:59 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-11-24 23:26 - 2010-02-18 20:05 - 00383017 _____ C:\Windows\DirectX.log
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 23:19 - 2010-08-20 10:54 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-24 21:41 - 2013-11-24 21:28 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:45 - 2010-02-15 15:16 - 00000000 ___RD C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-24 17:41 - 2013-11-24 17:37 - 340465664 _____ C:\Users\Stinkerseitz\Downloads\kav_rescue_10-0513.iso
2013-11-24 15:40 - 2011-11-08 23:14 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-22 19:21 - 2012-01-05 13:22 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Lan- Spiele
2013-11-22 10:52 - 2011-06-16 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\SKIDROW
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:44 - 2013-11-21 21:42 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 19:18 - 2010-12-27 17:03 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Spiele
2013-11-21 09:13 - 2013-11-21 08:49 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-20 09:09 - 2013-04-28 18:18 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Handy Daten
2013-11-20 09:07 - 2010-12-28 14:50 - 00000831 _____ C:\Users\Stinkerseitz\Desktop\Cracks,Patche,Treiber u Programme - Verknüpfung.lnk
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-19 07:21 - 2013-09-02 17:24 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-19 03:33 - 2010-02-15 15:29 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-19 03:01 - 2011-01-25 20:45 - 00001912 _____ C:\Windows\epplauncher.mif
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-18 15:15 - 2010-05-15 21:38 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 19:46 - 2012-04-06 19:31 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\BF3_files
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-15 10:45 - 2010-02-15 17:43 - 00000806 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2013-11-14 20:42 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 14:09 - 2010-10-01 21:47 - 00000000 ____D C:\ProgramData\Codemasters
2013-11-14 14:05 - 2013-11-14 14:03 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:59 - 2013-11-14 13:58 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 11:44 - 2010-04-25 09:48 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\dvdcss
2013-11-13 03:12 - 2013-07-12 22:18 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 03:07 - 2010-02-15 15:49 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-10 17:03 - 2010-06-03 23:36 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-10 17:03 - 2010-04-11 10:24 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-10 17:01 - 2010-04-11 10:24 - 00103736 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:47 - 2013-10-31 16:53 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-31 16:53 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-08 21:15 - 2012-05-03 19:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\TuneUp Software
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:14 - 2012-05-03 19:00 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-08 21:13 - 2012-05-03 18:55 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\DVDVideoSoft
2013-11-08 15:27 - 2013-11-08 21:10 - 00027064 ____N C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low.smi
2013-11-07 18:04 - 2013-11-07 18:01 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer
2013-11-04 19:50 - 2010-04-11 10:24 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-03 17:37 - 2012-12-09 11:34 - 00002007 _____ C:\Users\Stinkerseitz\Desktop\Usenet.nl.lnk
ZeroAccess:
C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 00:04

==================== End Of Log ============================
--- --- ---

--- --- ---
GMER Logfile:
Code:
GMER 2.1.19163 - GMER - Rootkit Detector and Remover
Rootkit scan 2013-12-01 10:36:03
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-4 SAMSUNG_HD103UJ rev.1AA01113 931,51GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\STINKE~1\AppData\Local\Temp\awtdrpod.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                  fffff8000460a000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575                                                  fffff8000460a02f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]

---- User code sections - GMER 2.1 ----

.text    C:\Progs\Kies\KiesTrayAgent.exe[3712] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                      00000000769c1465 2 bytes [9C, 76]
.text    C:\Progs\Kies\KiesTrayAgent.exe[3712] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                      00000000769c14bb 2 bytes [9C, 76]
.text    ...                                                                                                                * 2

---- Threads - GMER 2.1 ----

Thread    C:\Windows\system32\svchost.exe [400:2240]                                                                          000007fef4b984d8
Thread    C:\Windows\system32\svchost.exe [400:2292]                                                                          000007fef4b523a8
Thread    C:\Windows\system32\svchost.exe [400:2312]                                                                          000007fef4bd0d00
Thread    C:\Windows\system32\svchost.exe [400:2328]                                                                          000007fef48d9498
Thread    C:\Windows\system32\svchost.exe [400:3468]                                                                          000007feebbf506c
Thread    C:\Windows\system32\svchost.exe [400:3464]                                                                          000007fef7d01c20
Thread    C:\Windows\system32\svchost.exe [400:1220]                                                                          000007fef7d01c20
Thread    C:\Windows\system32\svchost.exe [400:4716]                                                                          000007fef7c25124
Thread    C:\Windows\system32\svchost.exe [400:4612]                                                                          000007fef9274164
Thread    C:\Windows\system32\svchost.exe [400:4676]                                                                          000007fefa261ab0
Thread    C:\Windows\system32\svchost.exe [400:244]                                                                          000007fee79dcb70
Thread    C:\Windows\system32\svchost.exe [400:3596]                                                                          000007fef3d95170
Thread    C:\Windows\system32\svchost.exe [400:4840]                                                                          000007fef3d95170
Thread    C:\Windows\system32\svchost.exe [400:1168]                                                                          000007fef4ee17f8
Thread    C:\Windows\system32\svchost.exe [400:4432]                                                                          000007fef4ee17f8
Thread    C:\Windows\system32\svchost.exe [2520:5032]                                                                        000007fefec6a808

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)               
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                    C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                    0
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)     
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                        0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                    0x94 0x91 0x95 0x65 ...
Reg      HKLM\SYSTEM\ControlSet002\services\ (not active ControlSet)                                                       
Reg      HKLM\SYSTEM\ControlSet002\services\@Parameters\0\x202e\x2764                                                        828
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                0
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                              0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                         
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                        0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                    0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                     
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1                     
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                0x94 0x91 0x95 0x65 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)               
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                    C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                    0
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)     
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                        0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                    0x94 0x91 0x95 0x65 ...

---- EOF - GMER 2.1 ----
--- --- ---
ist das so in Ordnung ich kenn mich noch nicht so aus.

Gruß
Frank

maxpay 01.12.2013 19:13
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2013
Ran by Stinkerseitz at 2013-12-01 09:53:57
Running from C:\Users\Stinkerseitz\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Activision(R) (x32 Version: 1.00.0000)
Adobe AIR (x32 Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)
Advertising Center (x32 Version: 0.0.0.2)
Age of Empires III (x32 Version: 1.00.0000)
Age of Mythology (x32)
Any Video Converter 3.5.2 (x32)
AnyDVD (x32 Version: 7.3.7.0)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Batman: Arkham City™ (x32 Version: 1.0.0000.131)
Batman: Arkham City™ (x32 Version: 1.0.0003.131)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.3.1)
Blur(TM) (x32 Version: 1.00.0000)
Bonjour (Version: 3.0.0.10)
Call of Duty(R) 2 (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Call of Duty: Black Ops - Multiplayer (x32)
Call of Duty: Black Ops (x32)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Black Ops II - Zombies (x32)
Call of Duty: Black Ops II (x32)
Canon MP150
CDDRV_Installer (Version: 4.60)
Command & Conquer 3 (x32 Version: 1.00.0000)
Command & Conquer™ Alarmstufe Rot 3 (x32 Version: 1.0.1.0)
DC++ 0.781 (x32 Version: 0.781)
Definition update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Diablo III (x32 Version: 1.0.8.16603)
DiRT 3 (x32 Version: 1.0.0001.130)
DiRT 3 (x32)
DivX-Setup (x32 Version: 2.1.2.2)
DolbyFiles (x32 Version: 2.0)
DTM Experience Demo (x32)
DVD Decrypter (Remove Only) (x32)
DVD Shrink 3.2 deutsch (DeCSS-frei) (x32)
EPSON-Drucker-Software
erLT (x32 Version: 1.20.0137)
ESET Online Scanner v3 (x32)
ESN Sonar (x32 Version: 0.70.4)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)
FEAR (x32 Version: 1.00.0000)
Fraps (x32)
Free YouTube Download version 3.2.16.1030 (x32 Version: 3.2.16.1030)
Futuremark SystemInfo (x32 Version: 3.21.2.1)
G15_TeamSpeak (NSIS) (x32)
GameSpy Arcade (x32)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
iCloud (Version: 3.0.2.163)
ImagXpress (x32 Version: 7.0.74.0)
Intel A/V Codecs V2.0 (x32)
Internet-TV für Windows Media Center (x32 Version: 4.2.2.0)
iTunes (Version: 11.1.2.32)
Java 7 Update 13 (x32 Version: 7.0.130)
Java Auto Updater (x32 Version: 2.1.9.0)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JDownloader (x32)
Junk Mail filter update (x32 Version: 14.0.8117.416)
KhalInstallWrapper (Version: 2.00.0000)
Logitech Gaming Software 8.12 (Version: 8.12.030)
Logitech SetPoint (x32 Version: 4.80)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Menu Templates - Starter Kit (x32 Version: 9.4.6.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XML Parser (x32 Version: 8.70.1104.04)
Movie Templates - Starter Kit (x32 Version: 9.4.6.0)
Mozilla Firefox (3.6.16) (x32 Version: 3.6.16 (de))
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0)
Mozilla Maintenance Service (x32 Version: 26.0)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML4 Parser (x32 Version: 1.0.0)
Müller Foto (x32)
Nero 8 (x32 Version: 8.2.87)
Nero 9 Trial (x32)
Nero BurnRights (x32 Version: 3.4.13.100)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero CoverDesigner (x32 Version: 4.4.12.100)
Nero Disc Copy Gadget (x32 Version: 2.4.34.0)
Nero DiscSpeed (x32 Version: 5.4.13.100)
Nero DriveSpeed (x32 Version: 4.4.12.100)
Nero InfoTool (x32 Version: 6.4.12.100)
Nero Installer (x32 Version: 4.4.9.0)
Nero PhotoSnap (x32 Version: 2.4.28.0)
Nero Recode (x32 Version: 4.4.38.1)
Nero Rescue Agent (x32 Version: 2.4.14.100)
Nero ShowTime (x32 Version: 5.4.21.100)
Nero StartSmart (x32 Version: 9.4.19.100)
Nero Vision (x32 Version: 6.4.16.100)
Nero WaveEditor (x32 Version: 5.4.37.1)
NeroBurningROM (x32 Version: 9.4.26.100)
NeroExpress (x32 Version: 9.4.26.100)
neroxml (x32 Version: 1.0.0)
NVIDIA 3D Vision Controller Driver (x32 Version: 280.19)
NVIDIA 3D Vision Controller-Treiber 331.65 (Version: 331.65)
NVIDIA 3D Vision Treiber 331.65 (Version: 331.65)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1)
NVIDIA Grafiktreiber 331.65 (Version: 331.65)
NVIDIA Install Application (Version: 2.1002.140.952)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3165)
NVIDIA Systemsteuerung 331.65 (Version: 331.65)
NVIDIA Update 9.3.21 (Version: 9.3.21)
NVIDIA Update Components (Version: 9.3.21)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
O&O Defrag Professional (Version: 14.1.305)
OCCT Perestroika 3.1.0 (x32)
OpenAL (x32)
Origin (x32 Version: 8.5.0.4550)
OutlookAddInNet3Setup (x32 Version: 1.0.0)
PunkBuster Services (x32 Version: 0.991)
PVSonyDll (Version: 1.00.0001)
QuickTime (x32 Version: 7.74.80.86)
Rapture3D 2.4.8 Game (x32)
Samsung Kies (x32 Version: 2.6.1.13105_6)
Samsung Mobile phone USB driver Drive Software
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0)
Serious Sam HD: Gold Edition (x32 Version: 1.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
SHIELD Streaming (Version: 1.6.53)
SoundTrax (x32 Version: 4.4.37.1)
Steam (x32 Version: 1.0.0.0)
Supreme Commander - Forged Alliance (x32 Version: 1.00.0000)
Team Fortress 2 (x32 Version: 1.0.5.2)
Thrustmaster FFB Driver (x32 Version: 1.FFD.2009)
Trojan Remover 6.8.8 (x32 Version: 6.8.8)
Unreal Tournament 2004 (x32 Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2010 (KB2202188) (x32)
Update for Microsoft Office 2010 (KB2413186) (x32)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2523113) (x32)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553092) (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft OneNote 2010 (KB2493983) (x32)
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector (KB2583935) (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Usenet.nl (x32)
VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0)
VCRedistSetup (x32 Version: 1.0.0)
VIS (x32)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01)
VLC media player 2.1.1 (x32 Version: 2.1.1)
Winamp (x32 Version: 5.572 )
Winamp Anwendungserkennung (HKCU Version: 1.0.0.1)
Windows Live Call (x32 Version: 14.0.8117.0416)
Windows Live Communications Platform (x32 Version: 14.0.8117.416)
Windows Live Essentials (x32 Version: 14.0.8117.0416)
Windows Live Essentials (x32 Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (x32 Version: 14.0.8117.0416)
Windows Live Messenger (x32 Version: 14.0.8117.0416)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinRAR
YoutubeAdblocker (x32 Version: 3.1.0.1741)

==================== Restore Points  =========================

01-12-2013 08:44:52 Ende der Bereinigung

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-11-30 20:46 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1      localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {364DA788-D194-48DB-A625-B02CA358AFBD} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {53A6E670-5079-4C4C-9EDC-9D5263F16378} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {6D419B60-4A4B-41A2-93A7-1F2C8C70A3F1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {7FDEEB40-BDC7-4694-A204-A2D099273AE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11] (Google Inc.)
Task: {8C3D43C3-F95D-4378-ABCD-650D140E563B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11] (Google Inc.)
Task: {99CE0899-5923-4123-BCD8-7676B2DAA7EE} - System32\Tasks\{F08A9E07-3E3B-4908-8026-40DE8FAE81F3} => C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe [2013-02-14] (EA Digital Illusions CE AB)
Task: {B442C461-D007-4BAF-9F24-F29524EF6AF3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {DF492215-3E0D-414F-BC76-65D6B5EE359C} - \DealPly No Task File
Task: {E44D05E9-E2D3-44BF-A509-1856E639C5B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-27] (Adobe Systems Incorporated)
Task: {E925A122-5263-4918-9256-F33C5D83F57B} - \DealPlyUpdate No Task File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job => C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-02-08 16:52 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00118784 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevMgr-8.12.077\DevMgr.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00705536 _____ () C:\Program Files\Logitech Gaming Software\plugins\MainUI-8.12.179\MainUI.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00123904 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevBusBulk-8.12.076\DevBusBulk.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00125952 _____ () C:\Program Files\Logitech Gaming Software\plugins\DevBusHid-8.12.078\DevBusHid.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00098304 _____ () C:\Program Files\Logitech Gaming Software\plugins\SimInput-8.12.068\SimInput.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00272384 _____ () C:\Program Files\Logitech Gaming Software\plugins\G13Device-8.12.155\G13Device.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00297984 _____ () C:\Program Files\Logitech Gaming Software\plugins\G19Device-8.12.147\G19Device.dll
2011-11-17 19:44 - 2011-11-17 19:44 - 00034304 _____ () C:\Program Files\Logitech Gaming Software\plugins\PnpGamePanelDevices-8.12.049\PnpGamePanelDevices.dll
2010-02-15 20:57 - 2009-07-20 12:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-29 19:41 - 2013-11-29 19:41 - 03550832 _____ () C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\mozjs.dll
2011-03-15 06:13 - 2011-03-15 06:13 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-11-27 11:42 - 2013-11-27 11:42 - 16237448 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows\system32\Drivers\aoybskii.sys:changelist
AlternateDataStreams: C:\Windows\system32\Drivers\mjkxnsgt.sys:changelist
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Lexmark X422
Description: Lexmark X422
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Lexmark
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/01/2013 08:58:20 AM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2013 02:29:36 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/01/2013 02:27:30 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 10:59:50 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:10:03 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:08:02 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:07:56 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/30/2013 09:06:03 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:29:40 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:15:58 PM) (Source: SetupARService) (User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


System errors:
=============
Error: (12/01/2013 08:58:20 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
sfsync04
sptd

Error: (12/01/2013 08:57:42 AM) (Source: Application Popup) (User: )
Description: Treiber sfsync04.sys konnte nicht geladen werden.

Error: (11/30/2013 09:06:03 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
sfsync04
sptd

Error: (11/30/2013 09:05:53 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win64/Sirefef.P60 ein schwerwiegender Fehler festgestellt.

Weitere Informationen finden Sie hier:
%Trojan:Win64/Sirefef.P603

        Name: Trojan:Win64/Sirefef.P

        ID: 2147654466

        Schweregrad: %Trojan:Win64/Sirefef.P600

        Kategorie: %Trojan:Win64/Sirefef.P602

        Pfad: 4.4.0304.02

        Ursprung der Erkennung: 4.4.0304.04

        Typ der Erkennung: 4.4.0304.08

        Quelle der Erkennung: %Trojan:Win64/Sirefef.P608

        Benutzer: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}9

        Prozessname: %Trojan:Win64/Sirefef.P609

        Aktion: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}1

        Aktionsstatus:  {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}8

        Fehlercode: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}3

        Fehlerbeschreibung: {1566EE53-3B1E-4EFE-86D0-B0EA4370948E}4

        Signaturversion: 2013-11-30T19:30:26.684Z1

        Modulversion: 2013-11-30T19:30:26.684Z2

Error: (11/30/2013 09:05:53 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Anwenden von Aktionen auf Schadsoftware und potenziell unerwünschte Software wurde von %Trojan:Win32/Sirefef.AB60 ein schwerwiegender Fehler festgestellt.

Weitere Informationen finden Sie hier:
%Trojan:Win32/Sirefef.AB603

        Name: Trojan:Win32/Sirefef.AB

        ID: 2147654467

        Schweregrad: %Trojan:Win32/Sirefef.AB600

        Kategorie: %Trojan:Win32/Sirefef.AB602

        Pfad: 4.4.0304.02

        Ursprung der Erkennung: 4.4.0304.04

        Typ der Erkennung: 4.4.0304.08

        Quelle der Erkennung: %Trojan:Win32/Sirefef.AB608

        Benutzer: {AC828314-0504-441A-865A-04D5B9A3DCC2}9

        Prozessname: %Trojan:Win32/Sirefef.AB609

        Aktion: {AC828314-0504-441A-865A-04D5B9A3DCC2}1

        Aktionsstatus:  {AC828314-0504-441A-865A-04D5B9A3DCC2}8

        Fehlercode: {AC828314-0504-441A-865A-04D5B9A3DCC2}3

        Fehlerbeschreibung: {AC828314-0504-441A-865A-04D5B9A3DCC2}4

        Signaturversion: 2013-11-30T19:30:36.965Z1

        Modulversion: 2013-11-30T19:30:36.965Z2

Error: (11/30/2013 09:05:28 PM) (Source: Application Popup) (User: )
Description: Treiber sfsync04.sys konnte nicht geladen werden.

Error: (11/30/2013 08:47:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (11/30/2013 08:45:47 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\ComboFix\catchme.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/30/2013 08:43:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (11/30/2013 08:38:46 PM) (Source: Service Control Manager) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows-Verwaltungsinstrumentation" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056


Microsoft Office Sessions:
=========================
Error: (12/01/2013 08:58:20 AM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2013 02:29:36 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (12/01/2013 02:27:30 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Progs\Nero\Nero8\Nero Toolkit\DiscSpeed.exe

Error: (11/30/2013 10:59:50 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:10:03 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (11/30/2013 09:08:02 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:07:56 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe

Error: (11/30/2013 09:06:03 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:29:40 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (11/30/2013 08:15:58 PM) (Source: SetupARService)(User: )
Description: Der Dienst kann nicht gestartet werden. System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei SetupAfterRebootService.SetupARService.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


CodeIntegrity Errors:
===================================
  Date: 2013-11-30 20:45:47.941
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-30 20:45:47.832
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-02-05 15:40:39.716
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.681
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.647
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.613
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.577
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.540
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.502
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\GameHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-02-05 15:40:39.457
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Logitech\SetPoint\lgscroll.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info ===========================

Percentage of memory in use: 24%
Total physical RAM: 4095.04 MB
Available physical RAM: 3082.75 MB
Total Pagefile: 8188.27 MB
Available Pagefile: 6323.41 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:389.15 GB) NTFS
Drive d: (Daten) (Fixed) (Total:149.05 GB) (Free:55 GB) NTFS
Drive f: (BLUR_DVD) (CDROM) (Total:5.18 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: B433A72E)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 96BD75FE)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 09:48 on 01/12/2013 (Stinkerseitz)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Already disabled


-=E.O.F=-

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-12-2013
Ran by Stinkerseitz (administrator) on STINKERSEITZ-PC on 01-12-2013 09:52:47
Running from C:\Users\Stinkerseitz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(O&O Software GmbH) C:\Program Files\Progs\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Samsung) C:\Progs\Kies\Kies.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(Samsung Electronics Co., Ltd.) C:\Progs\Kies\KiesTrayAgent.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDPop3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x86\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDCountdown.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.Exe [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [110360 2011-09-29] (Logitech Inc.)
HKLM\...\Run: [MSC] - "c:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey <===== ATTENTION (File name is altered)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [KiesPreload] - C:\Progs\Kies\Kies.exe [1564528 2013-11-06] (Samsung)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TrojanScanner] - C:\Program Files (x86)\Progs\Trojan Remover\Trjscan.exe [1658640 2013-11-11] (Simply Super Software)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Progs\Kies\KiesTrayAgent.exe [311152 2013-11-06] (Samsung Electronics Co., Ltd.)
HKU\UpdatusUser\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\UpdatusUser\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKU\UpdatusUser\...\Run: [Facebook Update] - C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3442527CCB94CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {6BE5CDE8-1670-47EC-87A1-C667E8B544A8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=16E30E53-11F9-4D84-9C4B-E4A0AD79C33D&apn_sauid=94EB187C-BC6E-4FA7-A928-5B226D0B208B
SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: YoutubeAdblocker - {5B2D16F2-C56C-3DDB-0AD0-279E6CCF922E} - C:\Program Files (x86)\YoutubeAdblocker\nCH.dll No File
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\Progs\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Progs\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Stinkerseitz\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: testpilot - C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901\Extensions\testpilot@labs.mozilla.com.xpi
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF HKCU\...\Firefox\Extensions: [{9A207F60-3F1C-4ED0-972D-0A4CDFBFF803}] - C:\Users\Stinkerseitz\AppData\Roaming\15001.001
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: () - C:\Users\STINKE~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab\background.html

==================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe [869672 2007-12-03] (Nero AG)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\Progs\OO Software\Defrag\oodag.exe [3152200 2010-11-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-04] ()
S4 RemoteAccess; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2012-06-26] (Realtek Semiconductor.)
S2 sfrem01; C:\Windows\system32\sfrem01.exe [601208 2006-07-05] (Protection Technology (StarForce))

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-09-09] (Devguru Co., Ltd)
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-11-22] (Lavasoft AB)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 phaudlwr; C:\Windows\System32\DRIVERS\phaudlwr.sys [114608 2009-10-21] (Philips Applied Technologies)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-05-10] (Protection Technology (StarForce))
S0 sfsync04; C:\Windows\System32\drivers\sfsync04.sys [78208 2006-08-11] (Protection Technology (StarForce))
S3 SPC530; C:\Windows\System32\drivers\SPC530.sys [583168 2008-05-21] (                                                            )
S3 SPC530m; C:\Windows\System32\drivers\SPC530m.sys [8192 2008-05-21] (                                                            )
S4 sptd; No ImagePath
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz130; \??\C:\Users\STINKE~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S1 nyvlvnpy; \??\C:\Windows\system32\drivers\nyvlvnpy.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-01 09:52 - 2013-12-01 09:53 - 00016453 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:49 - 2013-12-01 09:49 - 01959184 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-01 09:49 - 2013-12-01 09:49 - 01092187 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST.exe
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:43 - 2013-12-01 09:46 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:43 - 2013-12-01 09:43 - 00000000 ____D C:\Windows\ERUNT
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 03:05 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-30 21:08 - 2013-11-30 21:08 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:33 - 2013-11-30 20:47 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:46 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-11-29 19:40 - 2013-11-29 19:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-29 19:24 - 2013-12-01 03:05 - 00023090 _____ C:\Windows\IE11_main.log
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 21:28 - 2013-11-24 21:41 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-24 17:37 - 2013-11-24 17:41 - 340465664 _____ C:\Users\Stinkerseitz\Downloads\kav_rescue_10-0513.iso
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:42 - 2013-11-21 21:44 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 08:49 - 2013-11-21 09:13 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-14 14:03 - 2013-11-14 14:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 20:42 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:58 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 00:04 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 00:04 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 00:04 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 00:04 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 00:04 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 00:04 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 00:04 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 00:04 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 00:04 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 00:04 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 00:04 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 00:04 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 00:04 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-08 21:10 - 2013-11-08 15:27 - 00027064 ____N C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low.smi
2013-11-07 18:01 - 2013-11-07 18:04 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer

==================== One Month Modified Files and Folders =======

2013-12-01 09:53 - 2013-12-01 09:52 - 00016453 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:49 - 2013-12-01 09:49 - 01959184 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-01 09:49 - 2013-12-01 09:49 - 01092187 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST.exe
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:47 - 2010-02-15 15:16 - 00000000 ____D C:\Users\Stinkerseitz
2013-12-01 09:46 - 2013-12-01 09:43 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:43 - 2013-12-01 09:43 - 00000000 ____D C:\Windows\ERUNT
2013-12-01 09:34 - 2012-03-11 19:47 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-01 09:33 - 2013-02-03 12:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-01 09:26 - 2010-02-15 15:11 - 01759929 _____ C:\Windows\WindowsUpdate.log
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 09:04 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-01 09:04 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-01 08:59 - 2012-03-11 19:47 - 00001118 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-01 08:59 - 2011-05-18 11:33 - 00001421 _____ C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-01 08:58 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-01 08:58 - 2009-07-14 05:51 - 00153687 _____ C:\Windows\setupact.log
2013-12-01 08:57 - 2011-05-31 13:14 - 00648208 _____ C:\Windows\system32\oodbs.lor
2013-12-01 08:57 - 2010-02-15 15:40 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-01 03:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-01 03:05 - 2013-11-29 19:24 - 00023090 _____ C:\Windows\IE11_main.log
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-01 01:49 - 2012-04-14 09:39 - 00001166 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job
2013-11-30 23:01 - 2010-10-10 09:45 - 00000000 ____D C:\Users\Stinkerseitz\Documents\My Games
2013-11-30 21:08 - 2013-11-30 21:08 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-30 21:05 - 2010-02-15 15:45 - 00071212 _____ C:\Windows\PFRO.log
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:49 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-11-30 20:47 - 2013-11-30 20:33 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:47 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-30 20:39 - 2009-07-14 18:58 - 00696848 _____ C:\Windows\system32\perfh007.dat
2013-11-30 20:39 - 2009-07-14 18:58 - 00148144 _____ C:\Windows\system32\perfc007.dat
2013-11-30 20:39 - 2009-07-14 06:13 - 01613222 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-30 20:33 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 20:01 - 2013-09-23 11:17 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2013-11-30 20:01 - 2010-02-15 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-30 19:56 - 2010-12-15 20:17 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-30 19:49 - 2012-04-14 09:39 - 00001144 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job
2013-11-30 19:30 - 2011-02-28 14:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-30 19:30 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Google
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-30 17:36 - 2012-12-09 11:34 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Usenet.nl
2013-11-30 10:12 - 2010-02-18 21:14 - 00000000 ____D C:\Program Files (x86)\Progs
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:49 - 2010-02-15 17:33 - 00000000 ____D C:\Progs
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:48 - 2011-01-06 14:03 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Samsung
2013-11-30 09:48 - 2010-10-24 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Samsung
2013-11-30 09:46 - 2010-02-15 15:33 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-30 09:45 - 2011-02-07 13:14 - 00000000 ____D C:\ProgramData\Samsung
2013-11-30 09:43 - 2011-01-06 14:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Downloaded Installations
2013-11-30 09:28 - 2012-03-27 17:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-29 19:41 - 2013-11-29 19:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-29 19:41 - 2013-01-09 19:12 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Outlook-Dateien
2013-11-27 20:12 - 2010-07-28 22:10 - 00000000 ____D C:\Program Files (x86)\Spiele
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-27 11:42 - 2013-02-03 12:09 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-27 11:42 - 2011-05-22 10:19 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-27 11:42 - 2010-02-24 18:43 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Adobe
2013-11-27 11:37 - 2013-09-29 13:35 - 00000000 ____D C:\Users\UpdatusUser.Stinkerseitz-PC
2013-11-27 11:02 - 2010-04-25 09:35 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\vlc
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-27 11:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-11-26 20:11 - 2010-02-15 17:59 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-11-24 23:26 - 2010-02-18 20:05 - 00383017 _____ C:\Windows\DirectX.log
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 23:19 - 2010-08-20 10:54 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-24 21:41 - 2013-11-24 21:28 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:45 - 2010-02-15 15:16 - 00000000 ___RD C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-24 17:41 - 2013-11-24 17:37 - 340465664 _____ C:\Users\Stinkerseitz\Downloads\kav_rescue_10-0513.iso
2013-11-24 15:40 - 2011-11-08 23:14 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-22 19:21 - 2012-01-05 13:22 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Lan- Spiele
2013-11-22 10:52 - 2011-06-16 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\SKIDROW
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:44 - 2013-11-21 21:42 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 19:18 - 2010-12-27 17:03 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Spiele
2013-11-21 09:13 - 2013-11-21 08:49 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-20 09:09 - 2013-04-28 18:18 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Handy Daten
2013-11-20 09:07 - 2010-12-28 14:50 - 00000831 _____ C:\Users\Stinkerseitz\Desktop\Cracks,Patche,Treiber u Programme - Verknüpfung.lnk
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-19 07:21 - 2013-09-02 17:24 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-19 03:33 - 2010-02-15 15:29 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-19 03:01 - 2011-01-25 20:45 - 00001912 _____ C:\Windows\epplauncher.mif
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-18 15:15 - 2010-05-15 21:38 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 19:46 - 2012-04-06 19:31 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\BF3_files
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-15 10:45 - 2010-02-15 17:43 - 00000806 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2013-11-14 20:42 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 14:09 - 2010-10-01 21:47 - 00000000 ____D C:\ProgramData\Codemasters
2013-11-14 14:05 - 2013-11-14 14:03 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:59 - 2013-11-14 13:58 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 11:44 - 2010-04-25 09:48 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\dvdcss
2013-11-13 03:12 - 2013-07-12 22:18 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 03:07 - 2010-02-15 15:49 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-10 17:03 - 2010-06-03 23:36 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-10 17:03 - 2010-04-11 10:24 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-10 17:01 - 2010-04-11 10:24 - 00103736 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:47 - 2013-10-31 16:53 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-31 16:53 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-08 21:15 - 2012-05-03 19:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\TuneUp Software
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:14 - 2012-05-03 19:00 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-08 21:13 - 2012-05-03 18:55 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\DVDVideoSoft
2013-11-08 15:27 - 2013-11-08 21:10 - 00027064 ____N C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low.smi
2013-11-07 18:04 - 2013-11-07 18:01 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer
2013-11-04 19:50 - 2010-04-11 10:24 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-03 17:37 - 2012-12-09 11:34 - 00002007 _____ C:\Users\Stinkerseitz\Desktop\Usenet.nl.lnk
ZeroAccess:
C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 00:04

==================== End Of Log ============================
--- --- ---



Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-12-01 10:36:03
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-4 SAMSUNG_HD103UJ rev.1AA01113 931,51GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\STINKE~1\AppData\Local\Temp\awtdrpod.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                  fffff8000460a000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575                                                  fffff8000460a02f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]

---- User code sections - GMER 2.1 ----

.text    C:\Progs\Kies\KiesTrayAgent.exe[3712] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                      00000000769c1465 2 bytes [9C, 76]
.text    C:\Progs\Kies\KiesTrayAgent.exe[3712] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                      00000000769c14bb 2 bytes [9C, 76]
.text    ...                                                                                                                * 2

---- Threads - GMER 2.1 ----

Thread    C:\Windows\system32\svchost.exe [400:2240]                                                                          000007fef4b984d8
Thread    C:\Windows\system32\svchost.exe [400:2292]                                                                          000007fef4b523a8
Thread    C:\Windows\system32\svchost.exe [400:2312]                                                                          000007fef4bd0d00
Thread    C:\Windows\system32\svchost.exe [400:2328]                                                                          000007fef48d9498
Thread    C:\Windows\system32\svchost.exe [400:3468]                                                                          000007feebbf506c
Thread    C:\Windows\system32\svchost.exe [400:3464]                                                                          000007fef7d01c20
Thread    C:\Windows\system32\svchost.exe [400:1220]                                                                          000007fef7d01c20
Thread    C:\Windows\system32\svchost.exe [400:4716]                                                                          000007fef7c25124
Thread    C:\Windows\system32\svchost.exe [400:4612]                                                                          000007fef9274164
Thread    C:\Windows\system32\svchost.exe [400:4676]                                                                          000007fefa261ab0
Thread    C:\Windows\system32\svchost.exe [400:244]                                                                          000007fee79dcb70
Thread    C:\Windows\system32\svchost.exe [400:3596]                                                                          000007fef3d95170
Thread    C:\Windows\system32\svchost.exe [400:4840]                                                                          000007fef3d95170
Thread    C:\Windows\system32\svchost.exe [400:1168]                                                                          000007fef4ee17f8
Thread    C:\Windows\system32\svchost.exe [400:4432]                                                                          000007fef4ee17f8
Thread    C:\Windows\system32\svchost.exe [2520:5032]                                                                        000007fefec6a808

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)               
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                    C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                    0
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)     
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                        0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                    0x94 0x91 0x95 0x65 ...
Reg      HKLM\SYSTEM\ControlSet002\services\ (not active ControlSet)                                                       
Reg      HKLM\SYSTEM\ControlSet002\services\@Parameters\0\x202e\x2764                                                        828
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                0
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                              0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                         
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                        0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                    0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                     
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1                     
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                0x94 0x91 0x95 0x65 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)               
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                    C:\Program Files (x86)\Progs\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                    0
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0xE7 0x8E 0x24 0x65 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)     
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0x20 0x01 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                        0x51 0xE9 0xCA 0xB3 ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xBC 0xDF 0x71 0x8E ...
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet) 
Reg      HKLM\SYSTEM\ControlSet004\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                    0x94 0x91 0x95 0x65 ...

---- EOF - GMER 2.1 ----
Ist das so besser?

schrauber 02.12.2013 11:35
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

maxpay 02.12.2013 19:27
Code:
ComboFix 13-12-01.01 - Stinkerseitz 02.12.2013  17:09:50.1.4 - x64
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.49.1031.18.4095.2751 [GMT 1:00]
ausgeführt von:: c:\users\Stinkerseitz\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\tmp93B8.tmp
c:\windows\SysWow64\tmp93B9.tmp
c:\windows\SysWow64\tmpC600.tmp
c:\windows\SysWow64\tmpC601.tmp
.
.
(((((((((((((((((((((((  Dateien erstellt von 2013-11-02 bis 2013-12-02  ))))))))))))))))))))))))))))))
.
.
2013-12-02 16:20 . 2013-12-02 16:20        --------        d-----w-        c:\users\UpdatusUser\AppData\Local\temp
2013-12-02 16:20 . 2013-12-02 16:20        --------        d-----w-        c:\users\UpdatusUser.Stinkerseitz-PC\AppData\Local\temp
2013-12-02 16:20 . 2013-12-02 16:20        --------        d-----w-        c:\users\Default\AppData\Local\temp
2013-12-02 16:05 . 2012-07-05 20:06        687544        ----a-w-        c:\windows\SysWow64\deployJava1.dll
2013-12-02 16:05 . 2012-07-05 20:06        772544        ----a-w-        c:\windows\SysWow64\npDeployJava1.dll
2013-12-01 18:30 . 2013-12-01 18:29        312744        ----a-w-        c:\windows\system32\javaws.exe
2013-12-01 18:30 . 2013-12-01 18:29        108968        ----a-w-        c:\windows\system32\WindowsAccessBridge-64.dll
2013-12-01 18:30 . 2013-12-01 18:29        189352        ----a-w-        c:\windows\system32\javaw.exe
2013-12-01 18:30 . 2013-12-01 18:29        189352        ----a-w-        c:\windows\system32\java.exe
2013-12-01 18:29 . 2013-12-01 18:29        --------        d-----w-        c:\program files\Java
2013-12-01 18:24 . 2013-12-01 18:24        --------        d-----w-        c:\program files (x86)\Common Files\Java
2013-12-01 18:23 . 2013-12-01 18:23        96168        ----a-w-        c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-01 18:15 . 2013-12-01 18:30        --------        d-----w-        c:\programdata\Oracle
2013-12-01 09:13 . 2013-11-08 03:12        10285968        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E4B0B98B-68C4-43C0-A4D2-C5AB102186E5}\mpengine.dll
2013-12-01 08:52 . 2013-12-01 08:52        --------        d-----w-        C:\FRST
2013-12-01 08:43 . 2013-12-01 08:43        --------        d-----w-        c:\windows\ERUNT
2013-12-01 08:26 . 2013-11-18 00:28        10285968        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{44A8015D-53AC-4D62-B6B3-220C90368F4F}\mpengine.dll
2013-12-01 02:05 . 2013-10-14 17:00        28368        ----a-w-        c:\windows\system32\IEUDINIT.EXE
2013-11-30 20:08 . 2013-11-30 20:08        --------        d-----w-        c:\program files (x86)\ESET
2013-11-30 19:53 . 2013-11-30 19:53        --------        d-----w-        c:\program files (x86)\Malwarebytes' Anti-Malware
2013-11-30 19:06 . 2013-11-30 19:06        56616        ----a-w-        c:\windows\system32\drivers\mjkxnsgt.sys
2013-11-30 19:05 . 2013-11-30 19:05        56616        ----a-w-        c:\windows\system32\drivers\aoybskii.sys
2013-11-30 18:29 . 2013-11-08 03:12        10285968        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-11-30 09:05 . 2013-11-30 09:05        --------        d-----w-        c:\users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 08:46 . 2013-10-30 11:06        821824        ----a-w-        c:\windows\SysWow64\dgderapi.dll
2013-11-29 18:40 . 2013-11-29 18:41        --------        d-----w-        c:\program files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-27 13:47 . 2013-11-27 13:47        --------        d-----w-        c:\program files\Lexmark
2013-11-24 18:40 . 2013-11-24 18:40        --------        d-----w-        c:\programdata\Licenses
2013-11-24 16:47 . 2013-11-24 16:47        --------        d-----w-        c:\users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 16:46 . 2013-11-24 16:46        --------        d-----w-        c:\programdata\Simply Super Software
2013-11-22 19:12 . 2005-11-13 22:22        69715        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
2013-11-22 19:12 . 2005-11-13 22:21        274432        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
2013-11-22 19:12 . 2005-11-13 22:20        204800        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
2013-11-22 19:12 . 2005-11-13 22:19        65024        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ISBEW64.exe
2013-11-22 19:12 . 2005-11-13 22:19        5632        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2013-11-22 19:12 . 2013-11-22 19:12        331908        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
2013-11-22 19:12 . 2013-11-22 19:12        200836        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
2013-11-22 19:12 . 2005-11-13 22:22        757760        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
2013-11-21 20:42 . 2013-11-21 20:44        --------        d-----w-        c:\users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 07:49 . 2013-11-21 08:13        --------        d-----w-        c:\users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-19 18:57 . 2013-11-19 18:57        --------        d-----w-        c:\users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-18 14:14 . 2013-11-18 14:14        --------        d-----w-        c:\program files (x86)\Team Fortress 2
2013-11-18 09:31 . 2013-11-18 09:31        --------        d-----w-        c:\users\Stinkerseitz\AppData\Local\id Software
2013-11-14 12:59 . 2013-11-14 12:59        --------        d-----w-        c:\programdata\WinterSoft
2013-11-14 12:59 . 2013-11-14 12:59        --------        d-----w-        c:\users\Stinkerseitz\AppData\Local\Packages
2013-11-14 12:59 . 2013-11-14 19:42        --------        d-----w-        c:\programdata\fd10bf0bf388fa62
2013-11-14 12:58 . 2013-11-14 12:59        --------        d-----w-        c:\programdata\InstallMate
2013-11-09 21:38 . 2013-11-09 21:38        138152        ----a-w-        c:\windows\SysWow64\drivers\AnyDVD.sys
2013-11-09 21:38 . 2013-11-09 21:38        138152        ----a-w-        c:\windows\system32\drivers\AnyDVD.sys
2013-11-08 20:14 . 2013-11-08 20:14        --------        d-sh--w-        c:\programdata\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 20:14 . 2013-11-08 20:14        --------        d--h--w-        c:\programdata\Common Files
2013-11-08 20:13 . 2013-11-08 20:13        --------        d-----w-        c:\program files (x86)\Common Files\DVDVideoSoft
2013-11-07 17:01 . 2013-11-07 17:01        --------        d-----w-        c:\program files (x86)\Mplayer
2013-11-06 09:34 . 2013-10-18 09:40        965000        ------w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D457C527-DAC5-4327-9CF1-4B29B1D33C70}\gapaengine.dll
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-27 10:42 . 2011-05-22 09:19        71048        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-19 02:33 . 2010-02-15 14:29        267936        ------w-        c:\windows\system32\MpSigStub.exe
2013-11-13 02:07 . 2010-02-15 14:49        82896128        ----a-w-        c:\windows\system32\MRT.exe
2013-11-10 16:03 . 2010-06-03 22:36        281768        ----a-w-        c:\windows\SysWow64\PnkBstrB.xtr
2013-11-10 16:03 . 2010-04-11 09:24        281768        ----a-w-        c:\windows\SysWow64\PnkBstrB.exe
2013-11-10 16:01 . 2010-04-11 09:24        103736        ----a-w-        c:\windows\SysWow64\PnkBstrB.ex0
2013-11-08 20:47 . 2013-10-31 15:53        1064224        ----a-w-        c:\windows\system32\nvspcap64.dll
2013-11-08 20:47 . 2013-10-31 15:53        955168        ----a-w-        c:\windows\SysWow64\nvspcap.dll
2013-11-04 18:50 . 2010-04-11 09:24        76888        ----a-w-        c:\windows\SysWow64\PnkBstrA.exe
2013-10-30 11:13 . 2011-01-06 13:02        4659712        ----a-w-        c:\windows\SysWow64\Redemption.dll
2013-10-30 11:07 . 2013-10-30 11:07        90112        ----a-w-        c:\windows\MAMCityDownload.ocx
2013-10-30 11:07 . 2013-10-30 11:07        330240        ----a-w-        c:\windows\MASetupCaller.dll
2013-10-30 11:07 . 2013-10-30 11:07        30568        ----a-w-        c:\windows\MusiccityDownload.exe
2013-10-23 18:13 . 2013-10-23 18:13        21504        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Offline Scanner\FilesList32.dll
2013-10-23 10:30 . 2013-10-31 15:50        9524088        ----a-w-        c:\windows\SysWow64\nvcuda.dll
2013-10-23 10:30 . 2013-10-31 15:50        9480328        ----a-w-        c:\windows\SysWow64\nvopencl.dll
2013-10-23 10:30 . 2013-10-31 15:50        696096        ----a-w-        c:\windows\system32\NvFBC64.dll
2013-10-23 10:30 . 2013-10-31 15:50        655136        ----a-w-        c:\windows\system32\NvIFR64.dll
2013-10-23 10:30 . 2013-10-31 15:50        599840        ----a-w-        c:\windows\SysWow64\NvFBC.dll
2013-10-23 10:30 . 2013-10-31 15:50        560416        ----a-w-        c:\windows\SysWow64\NvIFR.dll
2013-10-23 10:30 . 2013-10-31 15:50        3131680        ----a-w-        c:\windows\system32\nvcuvid.dll
2013-10-23 10:30 . 2013-10-31 15:50        3124512        ----a-w-        c:\windows\system32\nvcuvenc.dll
2013-10-23 10:30 . 2013-10-31 15:50        2946848        ----a-w-        c:\windows\SysWow64\nvcuvid.dll
2013-10-23 10:30 . 2013-10-31 15:50        2747168        ----a-w-        c:\windows\SysWow64\nvcuvenc.dll
2013-10-23 10:30 . 2013-10-31 15:50        22933792        ----a-w-        c:\windows\SysWow64\nvoglv32.dll
2013-10-23 10:30 . 2013-10-31 15:50        1884448        ----a-w-        c:\windows\system32\nvdispco6433165.dll
2013-10-23 10:30 . 2013-10-31 15:50        18199872        ----a-w-        c:\windows\system32\nvd3dumx.dll
2013-10-23 10:30 . 2013-10-31 15:50        1511712        ----a-w-        c:\windows\system32\nvdispgenco6433165.dll
2013-10-23 10:30 . 2013-10-31 15:50        12572960        ----a-w-        c:\windows\system32\drivers\nvlddmkm.sys
2013-10-23 10:30 . 2013-10-31 15:50        11426568        ----a-w-        c:\windows\system32\nvcuda.dll
2013-10-23 10:30 . 2013-10-31 15:50        11374520        ----a-w-        c:\windows\system32\nvopencl.dll
2013-10-23 10:30 . 2013-10-31 15:50        25257248        ----a-w-        c:\windows\system32\nvcompiler.dll
2013-10-23 10:30 . 2013-10-31 15:50        17560352        ----a-w-        c:\windows\SysWow64\nvcompiler.dll
2013-10-23 10:30 . 2013-09-29 12:29        15212336        ----a-w-        c:\windows\SysWow64\nvd3dum.dll
2013-10-23 10:30 . 2012-10-10 20:23        15855568        ----a-w-        c:\windows\SysWow64\nvwgf2um.dll
2013-10-23 10:30 . 2012-10-10 20:22        2695200        ----a-w-        c:\windows\SysWow64\nvapi.dll
2013-10-23 10:30 . 2011-10-30 18:04        30344480        ----a-w-        c:\windows\system32\nvoglv64.dll
2013-10-23 10:30 . 2010-01-12 11:03        3067560        ----a-w-        c:\windows\system32\nvapi64.dll
2013-10-23 10:30 . 2009-07-13 21:59        18286416        ----a-w-        c:\windows\system32\nvwgf2umx.dll
2013-10-23 08:20 . 2011-04-07 21:19        6669600        ----a-w-        c:\windows\system32\nvcpl.dll
2013-10-23 08:20 . 2011-04-07 21:18        3489568        ----a-w-        c:\windows\system32\nvsvc64.dll
2013-10-23 08:20 . 2011-04-07 21:19        922912        ----a-w-        c:\windows\system32\nvvsvc.exe
2013-10-23 08:20 . 2011-04-07 21:19        2559776        ----a-w-        c:\windows\system32\nvsvcr.dll
2013-10-23 08:20 . 2011-04-07 21:19        219424        ----a-w-        c:\windows\system32\nvmctray.dll
2013-10-23 08:20 . 2010-01-11 22:19        63776        ----a-w-        c:\windows\system32\nvshext.dll
2013-10-23 02:02 . 2013-10-23 02:02        589600        ----a-w-        c:\windows\SysWow64\nvStreaming.exe
2013-10-18 09:40 . 2011-03-25 18:09        965000        ------w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-10-16 00:48 . 2013-10-23 08:48        1884448        ----a-w-        c:\windows\system32\nvdispco6433158.dll
2013-10-16 00:48 . 2013-10-23 08:48        1511712        ----a-w-        c:\windows\system32\nvdispgenco6433158.dll
2013-09-30 23:38 . 2013-09-30 23:38        97176        ----a-w-        c:\windows\SysWow64\ElbyCDIO.dll
2013-09-27 23:01 . 2013-10-31 15:50        39200        ----a-w-        c:\windows\system32\drivers\nvvad64v.sys
2013-09-27 23:01 . 2013-10-31 15:50        28960        ----a-w-        c:\windows\SysWow64\nvaudcap32v.dll
2013-09-27 23:01 . 2013-09-29 12:30        29984        ----a-w-        c:\windows\system32\nvaudcap64v.dll
2013-09-27 08:53 . 2013-09-27 08:53        248240        ----a-w-        c:\windows\system32\drivers\MpFilter.sys
2013-09-27 08:53 . 2010-10-24 20:25        134944        ----a-w-        c:\windows\system32\drivers\NisDrvWFP.sys
2013-09-19 13:09 . 2009-08-18 11:49        564632        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2013-09-19 13:09 . 2009-08-18 10:24        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-09-19 13:07 . 2010-10-01 17:52        122904        ----a-w-        c:\windows\system32\OpenAL32.dll
2013-09-19 13:07 . 2010-10-01 17:52        109080        ----a-w-        c:\windows\SysWow64\OpenAL32.dll
2013-09-12 08:58 . 2013-09-29 12:29        1884448        ----a-w-        c:\windows\system32\nvdispco6432723.dll
2013-09-12 08:58 . 2013-09-29 12:29        1511712        ----a-w-        c:\windows\system32\nvdispgenco6432723.dll
2013-09-08 02:30 . 2013-10-08 20:57        1903552        ----a-w-        c:\windows\system32\drivers\tcpip.sys
2013-09-08 02:27 . 2013-10-08 20:57        327168        ----a-w-        c:\windows\system32\mswsock.dll
2013-09-08 02:03 . 2013-10-08 20:57        231424        ----a-w-        c:\windows\SysWow64\mswsock.dll
2013-09-04 12:12 . 2013-10-08 20:57        343040        ----a-w-        c:\windows\system32\drivers\usbhub.sys
2013-09-04 12:11 . 2013-10-08 20:57        325120        ----a-w-        c:\windows\system32\drivers\usbport.sys
2013-09-04 12:11 . 2013-10-08 20:57        99840        ----a-w-        c:\windows\system32\drivers\usbccgp.sys
2013-09-04 12:11 . 2013-10-08 20:57        52736        ----a-w-        c:\windows\system32\drivers\usbehci.sys
2013-09-04 12:11 . 2013-10-08 20:57        30720        ----a-w-        c:\windows\system32\drivers\usbuhci.sys
2013-09-04 12:11 . 2013-10-08 20:57        25600        ----a-w-        c:\windows\system32\drivers\usbohci.sys
2013-09-04 12:11 . 2013-10-08 20:57        7808        ----a-w-        c:\windows\system32\drivers\usbd.sys
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"KiesPreload"="c:\progs\Kies\Kies.exe" [2013-11-06 1564528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"TrojanScanner"="c:\program files (x86)\Progs\Trojan Remover\Trjscan.exe" [2013-11-11 1658640]
"KiesTrayAgent"="c:\progs\Kies\KiesTrayAgent.exe" [2013-11-06 311152]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-15 1207312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute        REG_MULTI_SZ          autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 nyvlvnpy;nyvlvnpy;c:\windows\system32\drivers\nyvlvnpy.sys;c:\windows\SYSNATIVE\drivers\nyvlvnpy.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SetupARService;SetupARService;c:\program files (x86)\Realtek\Audio\SetupAfterRebootService.exe;c:\program files (x86)\Realtek\Audio\SetupAfterRebootService.exe [x]
R3 cpuz130;cpuz130;c:\users\STINKE~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys;c:\users\STINKE~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 phaudlwr;Philips Audio Filter;c:\windows\system32\DRIVERS\phaudlwr.sys;c:\windows\SYSNATIVE\DRIVERS\phaudlwr.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SPC530;Philips SPC530NC PC Camera;c:\windows\system32\drivers\SPC530.sys;c:\windows\SYSNATIVE\drivers\SPC530.sys [x]
R3 SPC530m;Philips SPC530NC PC Cameram;c:\windows\system32\drivers\SPC530m.sys;c:\windows\SYSNATIVE\drivers\SPC530m.sys [x]
R3 sscebus;SAMSUNG USB Composite Device V2 driver (WDM);c:\windows\system32\DRIVERS\sscebus.sys;c:\windows\SYSNATIVE\DRIVERS\sscebus.sys [x]
R3 sscemdfl;SAMSUNG Mobile Modem V2 Filter;c:\windows\system32\DRIVERS\sscemdfl.sys;c:\windows\SYSNATIVE\DRIVERS\sscemdfl.sys [x]
R3 sscemdm;SAMSUNG Mobile Modem V2 Drivers;c:\windows\system32\DRIVERS\sscemdm.sys;c:\windows\SYSNATIVE\DRIVERS\sscemdm.sys [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R4 sptd;sptd; [x]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys;c:\windows\SYSNATIVE\DRIVERS\Lbd.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OODefragAgent;O&O Defrag;c:\program files\Progs\OO Software\Defrag\oodag.exe;c:\program files\Progs\OO Software\Defrag\oodag.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-12-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-22 10:42]
.
2013-12-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job
- c:\users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-14 17:44]
.
2013-12-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job
- c:\users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-14 17:44]
.
2013-12-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11 18:47]
.
2013-12-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-11 18:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2011-09-29 110360]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-11-08 1064224]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://www.google.com
IE: An OneNote s&enden - c:\progra~2\MIF5BA~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: ????3?? - c:\users\Stinkerseitz\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\users\Stinkerseitz\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{5B2D16F2-C56C-3DDB-0AD0-279E6CCF922E} - c:\program files (x86)\YoutubeAdblocker\nCH.dll
Toolbar-10 - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-MSC - c:\program files\Microsoft Security Client\mssecex.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-CodInstl - c:\windows\system32\CDUninst.isu
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-VIS - c:\users\Stinkerseitz\AppData\Roaming\Windows Net Data\uninstaller.exe
AddRemove-{4820778D-AB0D-6D18-C316-52A6A0E1D507} - c:\programdata\YoutubeAdblocker\k0_z.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-536369218-3522263162-1686712380-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_f3* N}]
@="c:\\Users\\Stinkerseitz\\AppData\\Roaming\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-536369218-3522263162-1686712380-1001\Software\Microsoft\Internet Explorer\MenuExt\O(uë_f3* N}hQèþ”¥c]
@="c:\\Users\\Stinkerseitz\\AppData\\Roaming\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_USERS\S-1-5-21-536369218-3522263162-1686712380-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:ee,0e,d3,bd,da,05,3d,cd,0c,70,3c,f9,d0,77,fa,54,e7,4a,04,76,cc,ab,4b,
  c6,01,bc,9a,34,27,41,78,de,0b,24,de,72,d3,c4,a0,69,d5,a5,de,5f,68,8c,54,66,\
"??"=hex:67,1e,55,4c,83,b7,05,0d,0e,f0,0d,1c,af,e4,ed,85
.
[HKEY_USERS\S-1-5-21-536369218-3522263162-1686712380-1001\Software\SecuROM\License information*]
"datasecu"=hex:02,88,d1,b2,97,93,a9,3f,a1,2d,a2,96,36,75,ba,5c,7e,91,6a,66,85,
  ed,09,22,08,bd,52,29,7f,00,42,9e,01,27,b7,60,ac,0a,41,59,c8,e8,ee,b2,ca,ed,\
"rkeysecu"=hex:11,00,db,c8,39,2a,ba,51,66,84,48,18,03,22,54,7d
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet003\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-12-02  17:30:50
ComboFix-quarantined-files.txt  2013-12-02 16:30
.
Vor Suchlauf: 22 Verzeichnis(se), 396.502.413.312 Bytes frei
Nach Suchlauf: 23 Verzeichnis(se), 396.135.628.800 Bytes frei
.
- - End Of File - - 3EE560CC533DB46A9FF5F95B10B6597A
5C616939100B85E558DA92B899A0FC36

schrauber 03.12.2013 11:42
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

maxpay 03.12.2013 14:07
Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.03.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Stinkerseitz :: STINKERSEITZ-PC [Administrator]

03.12.2013 12:08:45
mbam-log-2013-12-03 (12-08-45).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 264563
Laufzeit: 6 Minute(n), 47 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
Code:
# AdwCleaner v3.014 - Bericht erstellt am 03/12/2013 um 13:08:55
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Stinkerseitz - STINKERSEITZ-PC
# Gestartet von : C:\Users\Stinkerseitz\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\Stinkerseitz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Classes\VirtualStore\MACHINE\SOFTWARE\Wow6432Node\BabylonToolbar

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901\prefs.js ]

Zeile gelöscht : user_pref("extensions.KGXFCTL.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self.location.hostname.indexOf('mail.')==-1)\r\n{try{for(i=0;i<5;i++){[...]
Zeile gelöscht : user_pref("extensions.ZgfxL.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};if(window.self==window.top){var script=document.createElement('script');script.typ[...]
Zeile gelöscht : user_pref("extensions.r_pYnuWV.scode", "(function(){if(window.self.location.hostname.indexOf(\"acebook.co\")>-1){return};new function(){var a=this;a.domain_storage=\"hxxp://xls.searchfun.in\";a.prefix[...]

*************************

AdwCleaner[R0].txt - [1746 octets] - [03/12/2013 12:18:41]
AdwCleaner[S0].txt - [1667 octets] - [03/12/2013 13:08:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1727 octets] ##########
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Stinkerseitz on 03.12.2013 at 14:03:55,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-536369218-3522263162-1686712380-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\dt soft\daemon tools toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6BE5CDE8-1670-47EC-87A1-C667E8B544A8}



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted the following from C:\Users\Stinkerseitz\AppData\Roaming\mozilla\firefox\profiles\v3ohwoyh.default-1373988548901\prefs.js

user_pref("extensions.ZgfxL.url", "hxxp://getproxy5.info/sync2/?q=hfZ9ofV9CShEAen0qHs9tMqLDe49CNU0mwkMCMlNhd9FrHwFrjnFrTk4rjrMBzqUojwHrjwHrdw4rHaHqch7hfs0pihPBMn0pdn6rHn7qds8p
Emptied folder: C:\Users\Stinkerseitz\AppData\Roaming\mozilla\firefox\profiles\v3ohwoyh.default-1373988548901\minidumps [22 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.12.2013 at 14:06:29,97
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
So das war alles.

Mfg
Frank

schrauber 04.12.2013 10:30

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

maxpay 04.12.2013 19:23
Code:
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=13b465dd34821f42bc57b4ef26d9af27
# engine=16129
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-04 04:29:08
# local_time=2013-12-04 05:29:08 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 291755 137804398 0 0
# scanned=408407
# found=5
# cleaned=0
# scan_time=15873
sh=A63941C8B3CA7D2FFB49779C9CC2944DE2FB1D58 ft=1 fh=f93b2f60a795ef1f vn="Win32/Sirefef.FY trojan" ac=I fn="C:\Program Files (x86)\Google\Desktop\Install\{16e661dc-6b5d-8401-9e94-fcc67e2dad48}\  \...\???\{16e661dc-6b5d-8401-9e94-fcc67e2dad48}\GoogleUpdate.exe"
sh=21C23C470BDABB763D2FC372D86E9D3FB9F923AE ft=1 fh=1a43b0206fc57ad6 vn="a variant of Win32/Packed.VMProtect.AAA trojan" ac=I fn="C:\Spiele\Codemasters\DiRT 3\paul.dll"
sh=5B31FB5741304E8486ACFD81E30B314B87A28E9F ft=1 fh=b4b60b69ec22cbd1 vn="a variant of Win32/Packed.VMProtect.AAA trojan" ac=I fn="C:\Spiele\Codemasters\DiRT 3\SKIDROW.dll"
sh=A63941C8B3CA7D2FFB49779C9CC2944DE2FB1D58 ft=1 fh=f93b2f60a795ef1f vn="Win32/Sirefef.FY trojan" ac=I fn="C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install\{16e661dc-6b5d-8401-9e94-fcc67e2dad48}\???\???\???\{16e661dc-6b5d-8401-9e94-fcc67e2dad48}\GoogleUpdate.exe"
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.AAA trojan" ac=I fn="C:\Users\Stinkerseitz\Downloads\Neue Spiele\sr-dirt3.iso"
Code:
Results of screen317's Security Check version 0.99.76 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 10 
``````````````Antivirus/Firewall Check:``````````````
Microsoft Security Essentials 
 Antivirus up to date! 
`````````Anti-malware/Other Utilities Check:`````````
 Trojan Remover 6.8.8 
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java 7 Update 45 
 Adobe Flash Player 11.9.900.152 
 Adobe Reader XI 
 Mozilla Firefox (26.0)
````````Process Check: objlist.exe by Laurent```````` 
 Microsoft Security Essentials MSMpEng.exe
 Malwarebytes' Anti-Malware mbamscheduler.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 
````````````````````End of Log``````````````````````

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-12-2013
Ran by Stinkerseitz (administrator) on STINKERSEITZ-PC on 04-12-2013 17:46:53
Running from C:\Users\Stinkerseitz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Nero AG) C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(O&O Software GmbH) C:\Program Files\Progs\OO Software\Defrag\oodag.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Samsung) C:\Progs\Kies\Kies.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Samsung Electronics Co., Ltd.) C:\Progs\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDPop3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x86\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\plugins\LCDAppletsMono-8.12.072\Applets\x64\LCDCountdown.exe
() C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\plugin-container.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.Exe [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [110360 2011-09-29] (Logitech Inc.)
HKLM\...\Run: [MSC] - "c:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey <===== ATTENTION (File name is altered)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [KiesPreload] - C:\Progs\Kies\Kies.exe [1564528 2013-11-06] (Samsung)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\Progs\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKLM-x32\...\Run: [TrojanScanner] - C:\Program Files (x86)\Progs\Trojan Remover\Trjscan.exe [1658640 2013-11-11] (Simply Super Software)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Progs\Kies\KiesTrayAgent.exe [311152 2013-11-06] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKU\UpdatusUser\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\UpdatusUser\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKU\UpdatusUser\...\Run: [Facebook Update] - C:\Users\Stinkerseitz\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3442527CCB94CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: YoutubeAdblocker - {5B2D16F2-C56C-3DDB-0AD0-279E6CCF922E} - C:\Program Files (x86)\YoutubeAdblocker\nCH.dll No File
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Winsock: Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [327168] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\Progs\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.138.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Stinkerseitz\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrchddr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: testpilot - C:\Users\Stinkerseitz\AppData\Roaming\Mozilla\Firefox\Profiles\v3ohwoyh.default-1373988548901\Extensions\testpilot@labs.mozilla.com.xpi
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF HKCU\...\Firefox\Extensions: [{9A207F60-3F1C-4ED0-972D-0A4CDFBFF803}] - C:\Users\Stinkerseitz\AppData\Roaming\15001.001
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7\firefox.exe

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Progs\Nero\Nero8\Nero BackItUp\NBService.exe [869672 2007-12-03] (Nero AG)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\Progs\OO Software\Defrag\oodag.exe [3152200 2010-11-25] (O&O Software GmbH)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-04] ()
S4 RemoteAccess; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2012-06-26] (Realtek Semiconductor.)
S2 sfrem01; C:\Windows\system32\sfrem01.exe [601208 2006-07-05] (Protection Technology (StarForce))

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [138152 2013-11-09] (SlySoft, Inc.)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-09-09] (Devguru Co., Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-02] (Disc Soft Ltd)
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-11-22] (Lavasoft AB)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 phaudlwr; C:\Windows\System32\DRIVERS\phaudlwr.sys [114608 2009-10-21] (Philips Applied Technologies)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [69120 2006-05-10] (Protection Technology (StarForce))
S0 sfsync04; C:\Windows\System32\drivers\sfsync04.sys [78208 2006-08-11] (Protection Technology (StarForce))
S3 SPC530; C:\Windows\System32\drivers\SPC530.sys [583168 2008-05-21] (                                                            )
S3 SPC530m; C:\Windows\System32\drivers\SPC530m.sys [8192 2008-05-21] (                                                            )
S4 sptd; No ImagePath
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz130; \??\C:\Users\STINKE~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S1 nyvlvnpy; \??\C:\Windows\system32\drivers\nyvlvnpy.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-04 17:46 - 2013-12-04 17:46 - 01959766 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-04 17:46 - 2013-12-04 17:46 - 00017300 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-04 15:46 - 2013-12-04 15:46 - 00000069 _____ C:\Windows\NeroDigital.ini
2013-12-04 13:01 - 2013-12-04 13:01 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-04 10:49 - 2013-12-04 10:49 - 02347384 _____ (ESET) C:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe
2013-12-04 10:49 - 2013-12-04 10:49 - 00891184 _____ C:\Users\Stinkerseitz\Desktop\SecurityCheck.exe
2013-12-03 14:06 - 2013-12-03 14:06 - 00001613 _____ C:\Users\Stinkerseitz\Desktop\JRT.txt
2013-12-03 12:18 - 2013-12-03 13:08 - 00000000 ____D C:\AdwCleaner
2013-12-03 12:04 - 2013-12-03 12:04 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Stinkerseitz\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-03 12:04 - 2013-12-03 12:04 - 01110034 _____ C:\Users\Stinkerseitz\Desktop\adwcleaner.exe
2013-12-03 12:04 - 2013-12-03 12:04 - 01034531 _____ (Thisisu) C:\Users\Stinkerseitz\Desktop\JRT.exe
2013-12-03 10:31 - 2013-12-03 10:32 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\C&C Red Alert game Fix
2013-12-03 10:29 - 2013-12-03 10:29 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Grid no Dvd v1.3
2013-12-03 10:27 - 2013-12-03 10:27 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Blur no-dvd v1.2
2013-12-03 10:24 - 2013-12-03 10:24 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Ut 2004 no-dvd
2013-12-02 22:56 - 2013-12-02 22:56 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\World in Conflict
2013-12-02 22:44 - 2013-12-02 22:44 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\InstallShield
2013-12-02 22:42 - 2013-12-02 22:42 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-12-02 17:30 - 2013-12-02 17:30 - 00030837 _____ C:\ComboFix.txt
2013-12-02 17:07 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-02 17:07 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-02 17:07 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-02 17:07 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-02 17:07 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-02 17:07 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-02 17:07 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-02 17:07 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-02 17:05 - 2013-12-02 17:31 - 00000000 ____D C:\Qoobox
2013-12-02 17:05 - 2012-07-05 21:06 - 00772544 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-12-02 17:05 - 2012-07-05 21:06 - 00687544 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-12-02 16:53 - 2013-12-02 16:54 - 05151572 ____R (Swearware) C:\Users\Stinkerseitz\Desktop\ComboFix.exe
2013-12-02 12:07 - 2013-12-02 12:07 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-01 19:30 - 2013-12-01 19:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-12-01 19:30 - 2013-12-01 19:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-12-01 19:30 - 2013-12-01 19:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-12-01 19:30 - 2013-12-01 19:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-12-01 19:29 - 2013-12-01 19:29 - 00000000 ____D C:\Program Files\Java
2013-12-01 19:24 - 2013-12-01 19:23 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-01 19:22 - 2013-12-01 19:22 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Ultra High V11
2013-12-01 19:15 - 2013-12-01 19:30 - 00000000 ____D C:\ProgramData\Oracle
2013-12-01 15:12 - 2013-12-01 15:12 - 00472688 _____ C:\Windows\Minidump\120113-19624-01.dmp
2013-12-01 14:27 - 2013-12-01 14:27 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Codemasters
2013-12-01 10:39 - 2013-11-15 10:45 - 00000806 _____ C:\Users\Stinkerseitz\Desktop\AnyDVD.lnk
2013-12-01 10:39 - 2013-11-08 15:27 - 00027064 _____ C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low - Kopie.smi
2013-12-01 10:39 - 2010-02-17 16:29 - 00000494 _____ C:\Users\Stinkerseitz\Desktop\Lokaler Datenträger (D) - Verknüpfung - Kopie.lnk
2013-12-01 10:36 - 2013-12-01 10:36 - 00008584 _____ C:\Users\Stinkerseitz\Desktop\Gmer.txt
2013-12-01 09:58 - 2013-12-01 09:58 - 00377856 _____ C:\Users\Stinkerseitz\Desktop\gmer_2.1.19163.exe
2013-12-01 09:53 - 2013-12-01 09:54 - 00038722 _____ C:\Users\Stinkerseitz\Desktop\Addition.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:43 - 2013-12-03 13:14 - 00000000 ____D C:\Windows\ERUNT
2013-12-01 09:43 - 2013-12-01 09:46 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 03:05 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:33 - 2013-11-30 20:47 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:46 - 2013-10-30 12:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-11-29 19:40 - 2013-12-04 09:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-11-29 19:24 - 2013-12-01 03:05 - 00023090 _____ C:\Windows\IE11_main.log
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 21:28 - 2013-11-24 21:41 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:42 - 2013-11-21 21:44 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 08:49 - 2013-11-21 09:13 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-14 14:03 - 2013-11-14 14:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 20:42 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:58 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 00:04 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 00:04 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 00:04 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 00:04 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 00:04 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 00:04 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 00:04 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 00:04 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 00:04 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 00:04 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 00:04 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 00:04 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 00:04 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 00:04 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 00:04 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 00:04 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 00:04 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 00:04 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 00:04 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 00:04 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 00:04 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-07 18:01 - 2013-11-07 18:04 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer

==================== One Month Modified Files and Folders =======

2013-12-04 17:47 - 2013-12-04 17:46 - 00017300 _____ C:\Users\Stinkerseitz\Desktop\FRST.txt
2013-12-04 17:46 - 2013-12-04 17:46 - 01959766 _____ (Farbar) C:\Users\Stinkerseitz\Desktop\FRST64.exe
2013-12-04 17:44 - 2012-03-11 19:47 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-04 17:33 - 2013-02-03 12:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-04 16:49 - 2012-04-14 09:39 - 00001166 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001UA.job
2013-12-04 16:14 - 2010-04-25 09:35 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\vlc
2013-12-04 15:55 - 2010-02-15 15:11 - 01079297 _____ C:\Windows\WindowsUpdate.log
2013-12-04 15:46 - 2013-12-04 15:46 - 00000069 _____ C:\Windows\NeroDigital.ini
2013-12-04 15:42 - 2012-12-09 11:34 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Usenet.nl
2013-12-04 13:01 - 2013-12-04 13:01 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-04 10:49 - 2013-12-04 10:49 - 02347384 _____ (ESET) C:\Users\Stinkerseitz\Downloads\esetsmartinstaller_enu.exe
2013-12-04 10:49 - 2013-12-04 10:49 - 00891184 _____ C:\Users\Stinkerseitz\Desktop\SecurityCheck.exe
2013-12-04 09:43 - 2013-11-29 19:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 7
2013-12-03 19:49 - 2012-04-14 09:39 - 00001144 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-536369218-3522263162-1686712380-1001Core.job
2013-12-03 19:40 - 2012-03-11 19:47 - 00001118 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 14:10 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-03 14:10 - 2009-07-14 05:45 - 00014800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-03 14:07 - 2009-07-14 18:58 - 00696848 _____ C:\Windows\system32\perfh007.dat
2013-12-03 14:07 - 2009-07-14 18:58 - 00148144 _____ C:\Windows\system32\perfc007.dat
2013-12-03 14:07 - 2009-07-14 06:13 - 01613222 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 14:06 - 2013-12-03 14:06 - 00001613 _____ C:\Users\Stinkerseitz\Desktop\JRT.txt
2013-12-03 14:03 - 2009-07-14 05:51 - 00154527 _____ C:\Windows\setupact.log
2013-12-03 14:02 - 2011-05-31 13:14 - 00654588 _____ C:\Windows\system32\oodbs.lor
2013-12-03 14:02 - 2010-02-15 15:40 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-03 14:02 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-03 13:14 - 2013-12-01 09:43 - 00000000 ____D C:\Windows\ERUNT
2013-12-03 13:08 - 2013-12-03 12:18 - 00000000 ____D C:\AdwCleaner
2013-12-03 12:04 - 2013-12-03 12:04 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Stinkerseitz\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-03 12:04 - 2013-12-03 12:04 - 01110034 _____ C:\Users\Stinkerseitz\Desktop\adwcleaner.exe
2013-12-03 12:04 - 2013-12-03 12:04 - 01034531 _____ (Thisisu) C:\Users\Stinkerseitz\Desktop\JRT.exe
2013-12-03 10:40 - 2010-07-28 22:10 - 00000000 ____D C:\Program Files (x86)\Spiele
2013-12-03 10:32 - 2013-12-03 10:31 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\C&C Red Alert game Fix
2013-12-03 10:29 - 2013-12-03 10:29 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Grid no Dvd v1.3
2013-12-03 10:27 - 2013-12-03 10:27 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Blur no-dvd v1.2
2013-12-03 10:24 - 2013-12-03 10:24 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Ut 2004 no-dvd
2013-12-03 10:21 - 2010-02-15 15:33 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-03 10:04 - 2010-02-15 15:45 - 00073698 _____ C:\Windows\PFRO.log
2013-12-02 22:56 - 2013-12-02 22:56 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\World in Conflict
2013-12-02 22:48 - 2010-02-18 20:05 - 00306128 _____ C:\Windows\DirectX.log
2013-12-02 22:44 - 2013-12-02 22:44 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\InstallShield
2013-12-02 22:44 - 2010-10-02 19:36 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-02 22:43 - 2010-10-02 19:36 - 00002068 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-12-02 22:43 - 2010-10-02 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\DAEMON Tools Lite
2013-12-02 22:42 - 2013-12-02 22:42 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-12-02 20:22 - 2013-01-09 19:12 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Outlook-Dateien
2013-12-02 17:31 - 2013-12-02 17:05 - 00000000 ____D C:\Qoobox
2013-12-02 17:30 - 2013-12-02 17:30 - 00030837 _____ C:\ComboFix.txt
2013-12-02 17:21 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-12-02 17:05 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-02 16:54 - 2013-12-02 16:53 - 05151572 ____R (Swearware) C:\Users\Stinkerseitz\Desktop\ComboFix.exe
2013-12-02 16:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-12-02 12:07 - 2013-12-02 12:07 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-02 12:07 - 2011-07-23 09:04 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-02 12:07 - 2010-02-24 18:43 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Adobe
2013-12-02 12:07 - 2010-02-24 18:42 - 00000000 ____D C:\ProgramData\Adobe
2013-12-02 12:06 - 2010-02-18 21:14 - 00000000 ____D C:\Program Files (x86)\Progs
2013-12-02 09:26 - 2010-04-25 09:48 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\dvdcss
2013-12-01 20:38 - 2012-01-05 13:22 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Lan- Spiele
2013-12-01 20:38 - 2010-05-15 21:38 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-12-01 19:35 - 2012-03-11 19:47 - 00004118 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-01 19:35 - 2012-03-11 19:47 - 00003866 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-01 19:30 - 2013-12-01 19:15 - 00000000 ____D C:\ProgramData\Oracle
2013-12-01 19:29 - 2013-12-01 19:30 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-12-01 19:29 - 2013-12-01 19:30 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-12-01 19:29 - 2013-12-01 19:30 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-12-01 19:29 - 2013-12-01 19:30 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-12-01 19:29 - 2013-12-01 19:29 - 00000000 ____D C:\Program Files\Java
2013-12-01 19:23 - 2013-12-01 19:24 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-12-01 19:23 - 2013-12-01 19:23 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-01 19:22 - 2013-12-01 19:22 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\Ultra High V11
2013-12-01 17:09 - 2010-10-01 21:47 - 00000000 ____D C:\ProgramData\Codemasters
2013-12-01 15:12 - 2013-12-01 15:12 - 00472688 _____ C:\Windows\Minidump\120113-19624-01.dmp
2013-12-01 15:12 - 2013-09-29 13:35 - 00000000 ____D C:\Users\UpdatusUser.Stinkerseitz-PC
2013-12-01 15:12 - 2012-09-04 18:24 - 540753459 _____ C:\Windows\MEMORY.DMP
2013-12-01 15:12 - 2010-04-01 17:20 - 00000000 ____D C:\Windows\Minidump
2013-12-01 14:27 - 2013-12-01 14:27 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Codemasters
2013-12-01 11:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-01 10:36 - 2013-12-01 10:36 - 00008584 _____ C:\Users\Stinkerseitz\Desktop\Gmer.txt
2013-12-01 09:58 - 2013-12-01 09:58 - 00377856 _____ C:\Users\Stinkerseitz\Desktop\gmer_2.1.19163.exe
2013-12-01 09:54 - 2013-12-01 09:53 - 00038722 _____ C:\Users\Stinkerseitz\Desktop\Addition.txt
2013-12-01 09:52 - 2013-12-01 09:52 - 00000000 ____D C:\FRST
2013-12-01 09:48 - 2013-12-01 09:48 - 00000538 _____ C:\Users\Stinkerseitz\Desktop\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00050477 _____ C:\Users\Stinkerseitz\Desktop\Defogger.exe
2013-12-01 09:47 - 2013-12-01 09:47 - 00000538 _____ C:\Users\Stinkerseitz\Downloads\defogger_disable.log
2013-12-01 09:47 - 2013-12-01 09:47 - 00000020 _____ C:\Users\Stinkerseitz\defogger_reenable
2013-12-01 09:47 - 2010-02-15 15:16 - 00000000 ____D C:\Users\Stinkerseitz
2013-12-01 09:46 - 2013-12-01 09:43 - 00001479 _____ C:\DelFix.txt
2013-12-01 09:04 - 2013-12-01 09:04 - 00000000 ____D C:\Users\Stinkerseitz\Documents\Simply Super Software
2013-12-01 08:59 - 2011-05-18 11:33 - 00001421 _____ C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-01 03:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-01 03:05 - 2013-11-29 19:24 - 00023090 _____ C:\Windows\IE11_main.log
2013-12-01 03:02 - 2013-12-01 03:02 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-01 03:02 - 2013-12-01 03:02 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-01 03:02 - 2013-12-01 03:02 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-01 03:02 - 2013-12-01 03:02 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-01 03:02 - 2013-12-01 03:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-01 03:02 - 2013-12-01 03:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-01 03:02 - 2013-12-01 03:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-01 03:02 - 2013-12-01 03:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-30 23:01 - 2010-10-10 09:45 - 00000000 ____D C:\Users\Stinkerseitz\Documents\My Games
2013-11-30 20:53 - 2013-11-30 20:53 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 20:53 - 2013-11-30 20:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 20:49 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-11-30 20:47 - 2013-11-30 20:33 - 00000000 ____D C:\Windows\erdnt
2013-11-30 20:06 - 2013-11-30 20:06 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mjkxnsgt.sys
2013-11-30 20:05 - 2013-11-30 20:05 - 00056616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\aoybskii.sys
2013-11-30 20:01 - 2013-09-23 11:17 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2013-11-30 20:01 - 2010-02-15 15:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-30 19:56 - 2010-12-15 20:17 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-30 19:30 - 2011-02-28 14:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-30 19:30 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Google
2013-11-30 17:41 - 2012-03-11 19:47 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-30 10:05 - 2013-11-30 10:05 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\DriverTuner
2013-11-30 09:49 - 2010-02-15 17:33 - 00000000 ____D C:\Progs
2013-11-30 09:48 - 2013-11-30 09:48 - 00001541 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00001531 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-30 09:48 - 2013-11-30 09:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-30 09:48 - 2011-01-06 14:03 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Samsung
2013-11-30 09:48 - 2010-10-24 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Samsung
2013-11-30 09:45 - 2011-02-07 13:14 - 00000000 ____D C:\ProgramData\Samsung
2013-11-30 09:43 - 2011-01-06 14:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Downloaded Installations
2013-11-30 09:28 - 2012-03-27 17:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-27 14:47 - 2013-11-27 14:47 - 00000000 ____D C:\Program Files\Lexmark
2013-11-27 11:42 - 2013-02-03 12:09 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-27 11:42 - 2011-05-22 10:19 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-11-27 11:02 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-27 11:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-11-26 20:11 - 2010-02-15 17:59 - 00000000 ____D C:\ProgramData\DVD Shrink
2013-11-24 23:23 - 2013-11-24 23:23 - 00001353 _____ C:\Users\Public\Desktop\DTM Experience Demo.lnk
2013-11-24 23:19 - 2010-08-20 10:54 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-24 21:41 - 2013-11-24 21:28 - 1119798648 _____ (SimBin Studios AB                                          ) C:\Users\Stinkerseitz\Downloads\DTM_Experience_Demo_Setup.exe
2013-11-24 19:45 - 2013-11-24 19:45 - 00000000 ____D C:\Windows\pss
2013-11-24 19:45 - 2010-02-15 15:16 - 00000000 ___RD C:\Users\Stinkerseitz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-24 19:40 - 2013-11-24 19:40 - 00000000 ____D C:\ProgramData\Licenses
2013-11-24 17:47 - 2013-11-24 17:47 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Simply Super Software
2013-11-24 17:46 - 2013-11-24 17:46 - 00001245 _____ C:\Users\Public\Desktop\Trojan Remover.lnk
2013-11-24 17:46 - 2013-11-24 17:46 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-11-24 15:40 - 2011-11-08 23:14 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-22 10:52 - 2011-06-16 19:32 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\SKIDROW
2013-11-21 21:52 - 2013-11-21 21:52 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2013-11-21 21:44 - 2013-11-21 21:42 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\Red Alert 3
2013-11-21 19:18 - 2010-12-27 17:03 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Spiele
2013-11-21 09:13 - 2013-11-21 08:49 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Darksiders2
2013-11-20 09:09 - 2013-04-28 18:18 - 00000000 ____D C:\Users\Stinkerseitz\Desktop\Handy Daten
2013-11-20 09:07 - 2010-12-28 14:50 - 00000831 _____ C:\Users\Stinkerseitz\Desktop\Cracks,Patche,Treiber u Programme - Verknüpfung.lnk
2013-11-19 19:57 - 2013-11-19 19:57 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\NVIDIA Corporation
2013-11-19 07:21 - 2013-09-02 17:24 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-19 03:33 - 2010-02-15 15:29 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-19 03:01 - 2011-01-25 20:45 - 00001912 _____ C:\Windows\epplauncher.mif
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-11-19 03:00 - 2011-01-25 20:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-11-18 15:14 - 2013-11-18 15:14 - 00000000 ____D C:\Program Files (x86)\Team Fortress 2
2013-11-18 10:31 - 2013-11-18 10:31 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\id Software
2013-11-17 19:46 - 2012-04-06 19:31 - 00000000 ____D C:\Users\Stinkerseitz\Downloads\BF3_files
2013-11-17 17:08 - 2013-11-17 17:08 - 00000000 ____D C:\Users\Stinkerseitz\Documents\OneNote-Notizbücher
2013-11-15 10:45 - 2013-12-01 10:39 - 00000806 _____ C:\Users\Stinkerseitz\Desktop\AnyDVD.lnk
2013-11-15 10:45 - 2010-02-15 17:43 - 00000806 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2013-11-14 20:42 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\fd10bf0bf388fa62
2013-11-14 14:05 - 2013-11-14 14:03 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Local\Packages
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\ProgramData\WinterSoft
2013-11-14 13:59 - 2013-11-14 13:58 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-13 20:40 - 2013-11-13 20:40 - 00001447 _____ C:\Users\Stinkerseitz\Desktop\Usenet Download - Verknüpfung.lnk
2013-11-13 03:12 - 2013-07-12 22:18 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 03:07 - 2010-02-15 15:49 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-10 17:03 - 2010-06-03 23:36 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-10 17:03 - 2010-04-11 10:24 - 00281768 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-10 17:01 - 2010-04-11 10:24 - 00103736 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\SysWOW64\Drivers\AnyDVD.sys
2013-11-09 22:38 - 2013-11-09 22:38 - 00138152 _____ (SlySoft, Inc.) C:\Windows\system32\Drivers\AnyDVD.sys
2013-11-08 21:47 - 2013-10-31 16:53 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-31 16:53 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-08 21:15 - 2012-05-03 19:00 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\TuneUp Software
2013-11-08 21:14 - 2013-11-08 21:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-08 21:14 - 2012-05-03 19:00 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-11-08 21:13 - 2013-11-08 21:13 - 00001542 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-11-08 21:13 - 2013-11-08 21:13 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-11-08 21:13 - 2012-05-03 18:55 - 00000000 ____D C:\Users\Stinkerseitz\AppData\Roaming\DVDVideoSoft
2013-11-08 15:27 - 2013-12-01 10:39 - 00027064 _____ C:\Users\Stinkerseitz\Desktop\Stricken - Mütze im falschen Patentmuster aus 1 Knäuel 'hatnut cool'_low - Kopie.smi
2013-11-07 18:04 - 2013-11-07 18:01 - 00000148 _____ C:\Windows\QIII.INI
2013-11-07 18:01 - 2013-11-07 18:01 - 00000000 ____D C:\Program Files (x86)\Mplayer
2013-11-04 19:50 - 2010-04-11 10:24 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
ZeroAccess:
C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

Some content of TEMP:
====================
C:\Users\Stinkerseitz\AppData\Local\Temp\Quarantine.exe
C:\Users\Stinkerseitz\AppData\Local\Temp\_is29BC.exe
C:\Users\Stinkerseitz\AppData\Local\Temp\_is3060.exe
C:\Users\Stinkerseitz\AppData\Local\Temp\_is47E6.exe
C:\Users\Stinkerseitz\AppData\Local\Temp\_isB40D.exe
C:\Users\Stinkerseitz\AppData\Local\Temp\_isFC6.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 00:04

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

So das wars.

Sag schon mal Danke für die Hilfe.

Mfg
Frank

schrauber 05.12.2013 12:07
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ZeroAccess:
C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


maxpay 05.12.2013 20:55
Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 05-12-2013
Ran by Stinkerseitz at 2013-12-05 20:55:12 Run:1
Running from C:\Users\Stinkerseitz\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************

*****************


==== End of Fixlog ====

schrauber 06.12.2013 10:49
Bitte nochmal, deine fixlist war leer.

maxpay 06.12.2013 13:30
Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-12-2013
Ran by Stinkerseitz at 2013-12-06 13:29:46 Run:4
Running from C:\Users\Stinkerseitz\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
ZeroAccess:
C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install
*****************

C:\Users\Stinkerseitz\AppData\Local\Google\Desktop\Install => Moved successfully.
C:\Program Files (x86)\Google\Desktop\Install => Moved successfully.

==== End of Fixlog ====
So schauts besser aus glaub ich. ;-)

Gruß Frank

schrauber 07.12.2013 11:45
Supi :)

Frisches FRST log bitte. Noch Probleme?


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:54 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131