Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   SoftwareUpdater.UI.exe will sich installieren (https://www.trojaner-board.de/143757-softwareupdater-ui-exe-will-installieren.html)

Steffi08 29.10.2013 10:01
SoftwareUpdater.UI.exe will sich installieren
 
Hallo,

ich habe ein Problem, seit dem ich ein Programm um Treiber zu aktualisieren
installiert habe, ( ich habe es wieder deinstalliert ) bekomme ich
immer nach dem Start die Meldung "SoftwareUpdater.UI.exe "installieren :confused:


Ich habe wenig Ahnung von Computern und bin weiblich ;);) aber vielleicht kann mir ja jemand helfen...

Lieben Gruß
Steffi

schrauber 29.10.2013 10:31
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Steffi08 29.10.2013 10:59
Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-10-2013
Ran by Steffi´s at 2013-10-29 10:54:49
Running from C:\Users\Steffi´s\Eigene Dokumente\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: G Data InternetSecurity 2014 (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G Data InternetSecurity 2014 (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G Data Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}

==================== Installed Programs ======================


AAV 6.0.00.15
Acer Arcade Deluxe (Version: 2.1.5529)
Acer Bio Protection
Acer Crystal Eye Webcam 3.0.6.3 (Version: 3.0.6.3)
Acer eAudio Management (Version: 3.0.3008)
Acer eDataSecurity Management (Version: 3.0.3065)
Acer Empowering Technology (Version: 3.0.3016)
Acer ePower Management (Version: 3.0.3019)
Acer eSettings Management (Version: 3.0.3011)
Acer GridVista (Version: 2.72.317)
Acer Mobility Center Plug-In (Version: 3.0.3002)
Acer Product Registration (Version: 3.0.0.10)
Acer ScreenSaver (Version: 1.13.1301)
Acer VCM (Version: 3.2.3002)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (Version: 11.0.05)
Advanced System Protector (Version: 2.1.1000.12150)
Agere Systems HDA Modem
Amazon MP3-Downloader 1.0.17 (Version: 1.0.17)
Ashampoo Burning Studio 2010 (Version: 9.21)
Ashampoo WinOptimizer 2010 CBE (Version: 6.5.0)
Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (Version: 1.0.0.30)
AVerMedia A815 USB DVB-T 1.0.0.61 (Version: 1.0.0.61)
AVerTV (Version: 6.0.18)
BatBrowse 1.0.0 (Version: 1.0.0)
Beetle Junior
BUDNI Fotowelt
C:\Program Files\Acer GameZone\GameConsole (Version: 2.0.1.4)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.5.0.3)
Canon Internet Library for ZoomBrowser EX (Version: 1.6.1.6)
Canon RAW Image Task for ZoomBrowser EX (Version: 3.3.0.5)
Canon Utilities CameraWindow (Version: 7.1.0.2)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.2.16)
Canon Utilities Digital Photo Professional 3.4 (Version: 3.4.0.0)
Canon Utilities EOS Utility (Version: 2.4.0.1)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities Original Data Security Tools (Version: 1.4.0.1)
Canon Utilities PhotoStitch (Version: 3.1.21.45)
Canon Utilities Picture Style Editor (Version: 1.3.0.0)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities WFT-E1/E2/E3 Utility (Version: 3.2.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.1.1.21)
CCleaner (Version: 4.07)
Claro LTD toolbar  on IE
ClaroInstaller (Version: 1.0.0.1)
Creative Media Lite
Creative Software Update (Version: 1.00.14)
Creative ZEN Stone-Benutzerhandbuch
CyberLink PowerDirector (Version: 6.5.3023d)
D3DX10 (Version: 15.4.2368.0902)
Dropbox (HKCU Version: 2.0.22)
DVDVideoSoftTB Toolbar (Version: 6.11.2.6)
ElsterFormular (Version: 13.1.1.8479p)
EOS USB WIA Driver (Version: 6.0.1.5)
Epson Easy Photo Print 2 (Version: 2.1.0.0)
EPSON PhotoQuicker3.4
EPSON PRINT Image Framer Tool2.0
EPSON Scan
Epson Stylus SX210_SX410_TX210_TX410 Handbuch
EPSON SX410 Series Printer Uninstall
EPSON-Drucker-Software
ESC64 Referenzhandbuch
ESC64 Softwarehandbuch
Exif-Viewer 2.50  (Version: 2.50)
Facebook Plug-In
FileHippo.com Update Checker
G Data InternetSecurity 2014 (Version: 24.0.3.4)
Gehirnjogging 5 (Version: 1.1)
Google Chrome (Version: 30.0.1599.101)
Google Desktop (Version: 5.9.1005.12335)
Google Drive (Version: 1.12.5329.1887)
Google Earth (Version: 7.1.1.1888)
Google Toolbar for Firefox (Version: 7.1.20101113b1)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.21.165)
Google Updater (Version: 2.4.2432.1652)
Intel® Matrix Storage Manager
ITECIR (Version: 1.00.0000)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
JMicron JMB38X Flash Media Controller (Version: 1.00.12.07)
Junk Mail filter update (Version: 15.4.3502.0922)
Kakuro 25.000 Edition v2.0 (Version: 2.0)
Launch Manager
LightScribe  1.4.142.1 (Version: 1.4.142.1)
Mediencenter 3.8.1.2208 (HKCU Version: 3.8.1.2208)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
metaCrawler
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft PowerPoint Viewer (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 08.05.0822)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyAshampoo Toolbar (Version: )
MyFreeCodec
MyPC Backup  (Version: )
MyPhoneExplorer (Version: 1.8.4)
Mystery Solitaire - Secret Island
NAVIGON Fresh 3.4.1 (Version: 3.4.1)
neroxml (Version: 1.0.0)
NTI Backup Now 5 (Version: 5.1.2.606)
NTI Backup Now Standard (Version: 5.1.2.606)
NTI Media Maker 8 (Version: 8.0.2.6329)
NVIDIA Drivers (Version: 1.7)
NVIDIA PhysX (Version: 9.09.0203)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Open It! (Version: 1.1.1)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Paint.NET v3.5.10 (Version: 3.60.0)
PC Connectivity Solution (Version: 6.43.14.0)
Picasa 3 (Version: 3.9)
PIF DESIGNER2.0
posterXXL.de Bestellsoftware 4.60
Putt Mania
Realtek High Definition Audio Driver
RegClean Pro (Version: 6.21)
Samsung AllShare (Version: 2.1.0.12031_10)
Samsung Kies (Version: 2.5.3.13034_9)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.23.0)
ScanToWeb
Spotify (HKCU Version: 0.9.4.185.g7545a404)
Surf & E-Mail-Stick (Version: 11.301.08.00.35)
Synaptics Pointing Device Driver (Version: 10.2.4.1)
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3)
Upgrade Kit (Version: 1.00.3002)
Validity Sensors software (Version: 2.7.44)
vShare Plugin
Win7codecs (Version: 2.4.8)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile-Gerätecenter (Version: 6.1.6965.0)
Windows Searchqu Toolbar (Version: 4.1.0.2881)

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1      localhost
::1            localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => ?
Task: C:\Windows\Tasks\DigitalSite.job => ?
Task: C:\Windows\Tasks\Google Software Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
Task: C:\Windows\Tasks\MetaCrawler.job => ?
Task: C:\Windows\Tasks\RegClean Pro_DEFAULT.job => ?
Task: C:\Windows\Tasks\RegClean Pro_UPDATES.job => ?
Task: C:\Windows\Tasks\Registry Reviver-Steffi´s-Startup.job => ?
Task: C:\Windows\Tasks\WinMaximizer-Steffi´s-Startup.job => ?

==================== Loaded Modules (whitelisted) =============

2008-04-28 09:49 - 2008-04-28 09:49 - 00003072 _____ () C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTrayLOC.dll
2009-03-18 10:43 - 2009-03-18 10:43 - 00841000 _____ () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll
2009-03-18 10:43 - 2009-03-18 10:43 - 00013096 _____ () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvcPS.dll
2008-07-29 17:52 - 2008-07-29 17:52 - 00227888 _____ () C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
2009-12-20 12:46 - 2009-12-20 12:46 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3016.0__4df5dcab8860d239\Framework.Utility.dll
2009-12-20 12:46 - 2009-12-20 12:46 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3016.0__3036420f80dd6947\Framework.Library.dll
2009-12-20 12:46 - 2009-12-20 12:46 - 00020480 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3016.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2009-02-02 12:44 - 2013-10-28 08:36 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll
2009-06-13 13:39 - 2007-09-11 10:12 - 00475136 _____ () C:\Program Files\Acer\Acer VCM\AcerControl.dll
2013-10-19 18:34 - 2013-10-09 01:02 - 04055504 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll
2013-10-19 18:34 - 2013-10-09 01:02 - 00415184 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
2013-10-19 18:34 - 2013-10-09 01:01 - 01604560 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
2013-10-19 18:34 - 2013-10-09 01:02 - 13584336 _____ () C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:793F316E

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/29/2013 10:38:26 AM) (Source: ESENT) (User: )
Description: DllHost (2932) WebCacheLocal: Fehler -1811 beim Öffnen von Protokolldatei C:\Users\Emma\AppData\Local\Microsoft\Windows\WebCache\V0100017.log.

Error: (10/29/2013 08:52:26 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (10/29/2013 08:18:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 00:55:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 08:46:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)

Error: (10/28/2013 08:46:22 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (10/29/2013 08:17:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "iGroupTec Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (10/29/2013 08:17:14 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst iGroupTec Service erreicht.

Error: (10/28/2013 00:54:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "iGroupTec Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (10/28/2013 00:54:17 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst iGroupTec Service erreicht.

Error: (10/28/2013 08:46:27 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/28/2013 08:46:23 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (10/28/2013 08:46:02 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "iGroupTec Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (10/28/2013 08:46:02 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst iGroupTec Service erreicht.

Error: (10/28/2013 07:58:36 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "iGroupTec Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (10/28/2013 07:58:36 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst iGroupTec Service erreicht.


Microsoft Office Sessions:
=========================
Error: (10/29/2013 10:38:26 AM) (Source: ESENT)(User: )
Description: DllHost2932WebCacheLocal: C:\Users\Emma\AppData\Local\Microsoft\Windows\WebCache\V0100017.log-1811

Error: (10/29/2013 08:52:26 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (10/29/2013 08:18:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 00:55:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 08:46:40 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service)(User: )
Description:
Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (10/28/2013 08:46:23 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (10/28/2013 08:46:22 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore


==================== Memory info ===========================

Percentage of memory in use: 68%
Total physical RAM: 3068.96 MB
Available physical RAM: 970.36 MB
Total Pagefile: 6136.22 MB
Available Pagefile: 3156.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1909.48 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:144.04 GB) (Free:26.32 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:137.5 GB) (Free:3.16 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-10-2013
Ran by Steffi´s (ATTENTION: The logged in user is not administrator) on STEFFI´S-PC on 29-10-2013 10:48:03
Running from C:\Users\Steffi´s\Eigene Dokumente\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Acer Corp.) C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
() C:\Windows\PLFSetI.exe
(Realtek Semiconductor Corp.) C:\Users\STEFFI~1\AppData\Local\Temp\RtkBtMnt.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(G Data Software AG) C:\Program Files\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Spotify Ltd) C:\Users\Steffi´s\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
() C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(Acer Inc.) C:\Program Files\Acer\Acer VCM\acp2HID.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6139904 2008-05-07] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] - C:\Windows\SkyTel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1037608 2008-04-04] (Synaptics, Inc.)
HKLM\...\Run: [ArcadeDeluxeAgent] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [147456 2008-07-24] (CyberLink Corp.)
HKLM\...\Run: [BkupTray] - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672 2008-04-25] ()
HKLM\...\Run: [CLMLServer] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [173352 2009-03-18] (CyberLink)
HKLM\...\Run: [eAudio] - C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-05-30] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [PlayMovie] - C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [173288 2009-05-21] (Acer Corp.)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-06-30] ()
HKLM\...\Run: [ZPdtWzdVitaKey MC3000] - "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [809480 2008-06-16] (Dritek System Inc.)
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [421888 2009-07-20] (Acer Inc.)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] - RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [DATAMNGR] - C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe
HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [G Data AntiVirus Tray] - C:\Program Files\G Data\InternetSecurity\AVKTray\AVKTray.exe [1444472 2013-08-21] (G Data Software AG)
HKLM\...\Run: [GDFirewallTray] - C:\Program Files\G Data\InternetSecurity\Firewall\GDFirewallTray.exe [1854928 2013-03-22] (G Data Software AG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2013-10-28] (Google)
HKLM\...\Runonce: [MSPCLOCK] - rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\Runonce: [MSPQM] - rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\Runonce: [MSKSSRV] - rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\Runonce: [MSTEE.CxTransform] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\Runonce: [MSTEE.Splitter] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\Runonce: [WDM_DRMKAUD] - rundll32.exe streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install
HKLM\...\Runonce: [Del8567528] - cmd.exe /Q /D /c del "C:\Users\Emma\AppData\Local\Temp\0.del"
HKLM\...\Runonce: [Del8632939] - cmd.exe /Q /D /c del "C:\Users\Emma\AppData\Local\Temp\0.del"
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\program files\g data\internetsecurity\avkkid\avkcks.exe
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll (Arachnoid Biometrics Identification Group Corp.)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehtray.exe [144384 2010-11-20] (Microsoft Corporation)
HKCU\...\Run: [ISUSPM] - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKCU\...\Run: [] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844144 2013-04-23] (Samsung)
HKCU\...\Run: [EPSON SX410 Series] - C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFCE.EXE /FU "C:\Windows\TEMP\E_S16F9.tmp" /EF "HKCU"
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Steffi´s\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1140736 2013-10-11] (Spotify Ltd)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2009-06-27] (Google Inc.)
MountPoints2: G - G:\AutoRun.exe
MountPoints2: {1aa3929a-f38c-11de-9db6-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {1aa392a2-f38c-11de-9db6-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {7ecf9eb8-d465-11e0-a8ab-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {7ecf9ec6-d465-11e0-a8ab-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {95db1de7-c3de-11e0-9b68-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {95db1dea-c3de-11e0-9b68-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {a60948a6-ee09-11de-81bc-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {fa6f25bd-9c59-11e1-9718-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {fa6f25c0-9c59-11e1-9718-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {fa6f25c4-9c59-11e1-9718-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {fa6f25eb-9c59-11e1-9718-001e331d56c9} - F:\AutoRun.exe
MountPoints2: {fa6f25ee-9c59-11e1-9718-001e331d56c9} - F:\AutoRun.exe
AppInit_DLLs: C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\datamngr.dll C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\IEBHO.dll C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll [ ] ()
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid=&mid=&lang=&ds=&pr=&d=&v=&sap=hp
URLSearchHook: HKLM - MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
URLSearchHook: HKLM - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
SearchScopes: HKCU - {043C5167-00BB-4324-AF7E-62013FAEDACF} URL = hxxp://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.claro-search.com/?q={searchTerms}&affID=116198&tt=3912_7&babsrc=SP_ss&mntrId=2455a81d000000000000001bdc0fe4d9
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=59F69173-BC83-41ED-87C0-C96DAD5FEF18&apn_sauid=F591F960-182A-43D0-A7E5-FAE2030059F3
SearchScopes: HKCU - {4EC5F988-297C-45BA-9EB1-6E8F20ECC413} URL = hxxp://www.google.de/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW_deDE333
SearchScopes: HKCU - {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=a9cpm36-ElA52IK84bPiuIdw44s?q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={2727117F-2A4F-4BCC-AE76-F462755536DB}&mid=c0b1b9f0ee6a47d0b47dd15775f9bf3a-b6b84fcd9f7aea2f3d202a921e056b3ddcd9beb0&lang=&ds=&pr=&d=&v=15.2.0.5&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
BHO: Claro LTD Helper Object - {000F18F2-09EB-4A59-82B2-5AE4184C39C3} - C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll (Montera Technologeis LTD)
BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)
BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll No File
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: BatBrowse - {b67b3dbb-c1c9-49d2-b016-2748b0b5017e} - C:\Program Files\BatBrowse\BatBrowseBHO.dll (BatBrowse)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKLM - MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
Toolbar: HKLM - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
Toolbar: HKLM - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll No File
Toolbar: HKLM - Claro LTD Toolbar - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll (Montera Technologeis LTD)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - MyAshampoo Toolbar - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} https://as.photoprintit.de/ips-opdata/layout/default_cms01/activex/IPSUploader4.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {F07E53AA-B14F-48E0-8CB6-45AE0EFAB848} hxxp://de.cyberlink.com/prog/oem/acer/update/UpdateAdvisor.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default
FF user.js: detected! => C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\user.js
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://www.claro-search.com/?affID=116198&tt=3912_7&babsrc=HP_ss&mntrId=2455a81d000000000000001bdc0fe4d9
FF NewTab: hxxp://www.claro-search.com/?affID=116198&tt=3912_7&babsrc=NT_ss&mntrId=2455a81d000000000000001bdc0fe4d9
FF DefaultSearchEngine: Ask.com
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @real.com/nppl3260;version=6.0.12.448 - C:\Program Files\Win7codecs\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files\Win7codecs\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @facebook.com/FBPlugin,version=1.0.3 - C:\Users\Steffi´s\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll ( )
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
FF Extension: No Name - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\ffxtlbr@babylon.com
FF Extension: Claro Toolbar - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\ffxtlbr@claro.com
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Google Toolbar for Firefox - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: DVDVideoSoftTB Community Toolbar - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
FF Extension: Searchqu Toolbar - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
FF Extension: MyAshampoo Community Toolbar - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
FF Extension:                    em:name="Free YouTube Download (Free Studio) Menu" - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: ST-de3 Community Toolbar - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065}
FF Extension: No Name - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
FF Extension: Adblock Plus - C:\Users\Steffi´s\AppData\Roaming\Mozilla\Firefox\Profiles\t63uz9cx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [{3112ca9c-de6d-4884-a869-9855de68056c}] - C:\ProgramData\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: Google Toolbar for Firefox - C:\ProgramData\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c}
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://www.google.com/ig
CHR RestoreOnStartup: "hxxp://www.google.com/", "https://www.google.de/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll (Amazon.com, Inc.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Updater) - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Win7codecs\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Win7codecs\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Plugin) - C:\Users\Steffi\u00B4s\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (BatBrowse) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccncljhbalbbkkfgopogabimepmfkmff\1.0.0_0
CHR Extension: (Claro Toolbar) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl\1.4_0
CHR Extension: (Digital Clock) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo\1.11_0
CHR Extension: (avast! Online Security) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (ProxMate - Proxy on steroids!) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\3.0.6_0
CHR Extension: (The Weather Channel for Chrome) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop\1.0.0.4_0
CHR Extension: (Unbenannt) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lilcjgoakfkhmgooicgmgllfckpmibfb\1.0_0
CHR Extension: (Clock) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjocghlclkpgheifflemilcnblodjohg\1.16_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (20-20 3D Viewer for IKEA) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbjlpbcjbhgeeloohnpbcfblhnkhffm\5.0.7.0_0
CHR Extension: (My Chrome Theme) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic\2.0_0
CHR Extension: (Weather Underground) - C:\Users\STEFFI~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej\1.6_0
CHR HKLM\...\Chrome\Extension: [ccncljhbalbbkkfgopogabimepmfkmff] - C:\Program Files\BatBrowse\ccncljhbalbbkkfgopogabimepmfkmff.crx
CHR HKLM\...\Chrome\Extension: [dcillohgikpecbmgioknapdpcjofaafl] - C:\Users\Steffi´s\AppData\Roaming\Claro\claro.crx
CHR HKLM\...\Chrome\Extension: [doobfiogmfmpjnoofjhhgjehmlofngfp] - C:\Users\Emma\AppData\Local\metacrawler-speeddial.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2009-09-22] (AVerMedia)
R2 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [393216 2009-04-09] ()
R2 AVKProxy; C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [1970296 2013-08-26] (G Data Software AG)
R2 AVKService; C:\Program Files\G Data\InternetSecurity\AVK\AVKService.exe [635000 2013-08-21] (G Data Software AG)
R2 AVKWCtl; C:\Program Files\G Data\InternetSecurity\AVK\AVKWCtl.exe [2101280 2013-10-15] (G Data Software AG)
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [75048 2009-04-16] ()
R2 CTDevice_Srv; C:\Program Files\Creative\Shared Files\CTDevSrv.exe [61440 2007-04-02] (Creative Technology Ltd)
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 CBE\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-13] ()
R3 GDFwSvc; C:\Program Files\G Data\InternetSecurity\Firewall\GDFwSvc.exe [2373712 2013-10-17] (G Data Software AG)
R3 GDScan; C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [695416 2013-08-22] (G Data Software AG)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2013-10-28] (Google)
S2 gupdate1ca0d54d869d7f1; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-07-25] (Google Inc.)
S2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3520512 2009-06-13] ()
R2 lmhosts; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S4 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [122880 2009-06-16] (Acer Incorporated)
R2 NlaSvc; C:\Windows\System32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] ()
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [233472 2008-07-19] (Acer Incorporated)
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [296448 2013-09-27] ()
R2 Update BatBrowse; C:\Program Files\BatBrowse\updateBatBrowse.exe [65824 2013-10-22] (BatBrowse)

==================== Drivers (Whitelisted) ====================

R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2009-06-13] (Alfa Corporation)
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [22528 2009-08-13] (CSR, plc)
R3 csr_a2dp; C:\Windows\System32\drivers\bthav.sys [61952 2009-12-21] (CSR, plc)
R1 DritekPortIO; C:\Program Files\Launch Manager\DPortIO.sys [20112 2006-11-02] (Dritek System Inc.)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [45912 2013-09-27] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [96600 2013-09-27] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [52056 2013-09-27] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [54104 2013-10-23] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [30040 2013-09-27] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [51032 2013-09-27] (G Data Software AG)
R2 int15; C:\Windows\system32\drivers\int15.sys [12832 2008-10-01] (Acer, Inc.)
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
S3 KMWDFILTER; C:\Windows\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [48640 2009-08-23] (Atheros Communications, Inc.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-13] (Ralink Technology Corp.)
R2 NTIPPKernel; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [122368 2008-01-16] (Cyberlink Corp.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [87536 2009-09-11] (CyberLink Corp.)
S3 cpuz132; \??\C:\Users\STEFFI~1\AppData\Local\Temp\cpuz132\cpuz132_x32.sys [x]
S3 MEMSWEEP2; \??\C:\Windows\system32\9DF3.tmp [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-29 10:47 - 2013-10-29 10:47 - 00000000 ____D C:\FRST
2013-10-29 10:40 - 2013-10-29 10:40 - 00001193 _____ C:\Users\Public\Desktop\Advanced System Protector.lnk
2013-10-29 10:40 - 2013-10-29 10:40 - 00000302 _____ C:\Windows\Tasks\MetaCrawler.job
2013-10-29 10:40 - 2013-10-29 10:40 - 00000000 ____D C:\ProgramData\Systweak
2013-10-29 10:40 - 2013-10-29 10:40 - 00000000 ____D C:\Program Files\Advanced System Protector
2013-10-29 10:40 - 2012-07-25 12:03 - 00017136 _____ C:\Windows\system32\sasnative32.exe
2013-10-29 10:39 - 2013-10-29 10:40 - 00000000 ____D C:\Program Files\MyPC Backup
2013-10-29 10:39 - 2013-10-29 10:40 - 00000000 ____D C:\Program Files\BatBrowse
2013-10-29 10:39 - 2013-10-29 10:39 - 00001018 _____ C:\Users\Public\Desktop\RegClean Pro.lnk
2013-10-29 10:39 - 2013-10-29 10:39 - 00000302 _____ C:\Windows\Tasks\DigitalSite.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000270 _____ C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000262 _____ C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000000 ____D C:\Program Files\RegClean Pro
2013-10-29 10:39 - 2013-07-22 16:07 - 00018776 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot.exe
2013-10-29 10:38 - 2013-10-29 10:39 - 00000000 ____D C:\Program Files\metaCrawler
2013-10-29 10:38 - 2013-10-29 10:38 - 00001072 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-10-29 10:38 - 2013-10-29 10:38 - 00000000 ____D C:\Program Files\OpenIt
2013-10-29 08:22 - 2013-10-29 08:22 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E4AB6B24-87CB-482B-93E5-43F06FA20EB8}
2013-10-28 08:46 - 2013-10-28 08:46 - 00001184 _____ C:\Users\Public\Desktop\Google Desktop.lnk
2013-10-28 08:45 - 2013-10-29 10:50 - 00312308 _____ C:\Windows\setupact.log
2013-10-28 08:45 - 2013-10-29 08:16 - 00108214 _____ C:\Windows\PFRO.log
2013-10-28 08:45 - 2013-10-28 08:45 - 00000000 _____ C:\Windows\setuperr.log
2013-10-28 08:31 - 2013-10-28 08:31 - 00000000 ____D C:\Program Files\FileHippo.com
2013-10-28 08:09 - 2013-10-28 08:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{B3FB24A2-FF05-4EA0-89C5-EB756405BBFE}
2013-10-27 12:05 - 2013-10-27 12:05 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{7F45FFEA-7592-4683-ABEA-0D2833BB4A04}
2013-10-25 07:25 - 2013-10-25 07:25 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{BFD5C00A-4151-4038-8A2C-BDAC97DB36F6}
2013-10-24 07:19 - 2013-10-24 07:19 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{DE67F030-29ED-4951-8E0C-04853BB8D053}
2013-10-23 07:34 - 2013-10-23 07:34 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{039C0353-2535-4BB7-BBC3-7285648E0D03}
2013-10-22 15:24 - 2013-10-22 15:24 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-22 15:24 - 2013-10-22 15:23 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-22 15:24 - 2013-10-22 15:23 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-22 15:24 - 2013-10-22 15:23 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-22 15:24 - 2013-10-22 15:23 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-22 15:23 - 2013-10-22 15:23 - 00000000 ____D C:\Program Files\Java
2013-10-22 07:31 - 2013-10-22 07:32 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{23114503-24B5-4353-AE0E-90860A1D9A07}
2013-10-21 07:04 - 2013-10-21 07:04 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{262722A0-8505-483E-A6C8-CCA2383E575E}
2013-10-20 07:10 - 2013-10-20 07:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{D0C69471-C446-4B6B-910E-9DB340839922}
2013-10-19 19:09 - 2007-03-12 22:34 - 00162304 _____ C:\Windows\system32\ztvunrar36.dll
2013-10-19 19:09 - 2007-03-12 22:34 - 00077312 _____ C:\Windows\system32\ztvunace26.dll
2013-10-19 19:09 - 2007-03-12 22:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\ztvcabinet.dll
2013-10-19 18:50 - 2013-10-19 20:14 - 00000000 ____D C:\Program Files\7-Zip
2013-10-19 18:06 - 2013-10-19 18:07 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{6C39B109-A019-4836-8E3E-D3E795A20820}
2013-10-18 09:16 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-18 09:16 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-18 07:14 - 2013-10-18 07:20 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{4E8EF62D-21DB-416C-96C1-23CA069F13F6}
2013-10-18 07:12 - 2013-10-18 07:12 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{35D53AED-D3E5-4136-9E9E-E50D91496D44}
2013-10-18 06:57 - 2013-10-18 06:58 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{164F0880-5EE3-4EA6-9921-628609C57079}
2013-10-17 06:33 - 2013-10-17 06:33 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{F18A6063-D82C-4BEF-A69E-9C0B8BEC4B0B}
2013-10-16 07:10 - 2013-10-16 07:11 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{89AF2510-BFE9-43EC-A40A-98E629860CE2}
2013-10-15 07:34 - 2013-10-15 07:36 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E483633A-1AF7-4E84-A827-93817B55C8A8}
2013-10-14 07:12 - 2013-10-14 07:13 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E1C25782-58B3-4D2E-A675-53F8A2B270A6}
2013-10-13 15:23 - 2013-10-13 15:23 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{3CD9C2B1-2495-4C27-8FF5-2C96056A51C4}
2013-10-11 06:57 - 2013-10-11 06:57 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{882E3ABC-F8BB-430C-B9EC-365C907B02CA}
2013-10-10 10:31 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 10:31 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 10:31 - 2013-09-23 00:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 10:31 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 10:31 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 10:31 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 10:31 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 07:38 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:37 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:37 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:37 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:37 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-10-10 07:37 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:37 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:37 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:37 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:37 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:37 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:37 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:37 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:37 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:37 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 07:37 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:37 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:37 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:37 - 2013-07-03 05:02 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-10-10 07:37 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:37 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:37 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:37 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:37 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:37 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:37 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:37 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:31 - 2013-10-10 07:31 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{36D6297D-5666-4E0E-8B4B-54E1400B982B}
2013-10-09 06:59 - 2013-10-09 06:59 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{99BB2008-3A9F-4261-8A3B-82EFD3C20078}
2013-10-08 06:01 - 2013-10-08 06:01 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{6CF182D0-3D13-4566-80F2-55E9A9470720}
2013-10-07 07:17 - 2013-10-07 07:18 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{74BEB4E1-341C-4BA9-B2CF-EEF7C0576B1C}
2013-10-03 07:23 - 2013-10-03 07:23 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{DA8910FB-8461-46D7-8559-51B8AFA3F5C2}
2013-10-02 07:10 - 2013-10-02 07:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{485A2424-20EE-4A77-84A0-F68DF0DAA8E7}
2013-10-01 07:22 - 2013-10-01 07:22 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{FE06A038-B308-45EF-9F6E-AB24DEA83FD7}
2013-09-30 07:25 - 2013-09-30 07:25 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{7FD49D3B-FE68-429B-9BFC-CBF7A6B14D77}
2013-09-29 07:54 - 2013-09-29 07:54 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{9096D0E2-0A2A-4610-93F3-2FF9D97879FF}

==================== One Month Modified Files and Folders =======

2013-10-29 10:50 - 2013-10-28 08:45 - 00312308 _____ C:\Windows\setupact.log
2013-10-29 10:50 - 2013-01-08 07:40 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-29 10:47 - 2013-10-29 10:47 - 00000000 ____D C:\FRST
2013-10-29 10:40 - 2013-10-29 10:40 - 00001193 _____ C:\Users\Public\Desktop\Advanced System Protector.lnk
2013-10-29 10:40 - 2013-10-29 10:40 - 00000302 _____ C:\Windows\Tasks\MetaCrawler.job
2013-10-29 10:40 - 2013-10-29 10:40 - 00000000 ____D C:\ProgramData\Systweak
2013-10-29 10:40 - 2013-10-29 10:40 - 00000000 ____D C:\Program Files\Advanced System Protector
2013-10-29 10:40 - 2013-10-29 10:39 - 00000000 ____D C:\Program Files\MyPC Backup
2013-10-29 10:40 - 2013-10-29 10:39 - 00000000 ____D C:\Program Files\BatBrowse
2013-10-29 10:39 - 2013-10-29 10:39 - 00001018 _____ C:\Users\Public\Desktop\RegClean Pro.lnk
2013-10-29 10:39 - 2013-10-29 10:39 - 00000302 _____ C:\Windows\Tasks\DigitalSite.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000270 _____ C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000262 _____ C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-10-29 10:39 - 2013-10-29 10:39 - 00000000 ____D C:\Program Files\RegClean Pro
2013-10-29 10:39 - 2013-10-29 10:38 - 00000000 ____D C:\Program Files\metaCrawler
2013-10-29 10:39 - 2012-07-18 09:43 - 00000000 ____D C:\Program Files\Windows Searchqu Toolbar
2013-10-29 10:38 - 2013-10-29 10:38 - 00001072 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-10-29 10:38 - 2013-10-29 10:38 - 00000000 ____D C:\Program Files\OpenIt
2013-10-29 10:26 - 2009-07-25 19:31 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-29 08:26 - 2009-12-20 12:35 - 00011216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-29 08:26 - 2009-12-20 12:35 - 00011216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-29 08:26 - 2009-07-25 19:31 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-29 08:23 - 2009-12-20 13:18 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-29 08:22 - 2013-10-29 08:22 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E4AB6B24-87CB-482B-93E5-43F06FA20EB8}
2013-10-29 08:22 - 2009-12-20 13:10 - 01712327 _____ C:\Windows\WindowsUpdate.log
2013-10-29 08:18 - 2013-06-04 07:30 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2013-10-29 08:18 - 2010-07-29 18:01 - 00000384 _____ C:\Windows\Tasks\Registry Reviver-Steffi´s-Startup.job
2013-10-29 08:18 - 2010-04-05 19:17 - 00000366 _____ C:\Windows\Tasks\WinMaximizer-Steffi´s-Startup.job
2013-10-29 08:16 - 2013-10-28 08:45 - 00108214 _____ C:\Windows\PFRO.log
2013-10-29 08:16 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-29 08:16 - 2009-02-02 13:15 - 00000147 _____ C:\Windows\system32\agent.log
2013-10-28 14:06 - 2009-07-25 19:19 - 00001052 _____ C:\Windows\Tasks\Google Software Updater.job
2013-10-28 08:46 - 2013-10-28 08:46 - 00001184 _____ C:\Users\Public\Desktop\Google Desktop.lnk
2013-10-28 08:45 - 2013-10-28 08:45 - 00000000 _____ C:\Windows\setuperr.log
2013-10-28 08:40 - 2009-12-20 12:29 - 00000000 ____D C:\Windows\Panther
2013-10-28 08:38 - 2013-01-23 09:55 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-28 08:38 - 2010-03-18 15:04 - 00000000 ____D C:\Program Files\CCleaner
2013-10-28 08:31 - 2013-10-28 08:31 - 00000000 ____D C:\Program Files\FileHippo.com
2013-10-28 08:10 - 2013-10-28 08:09 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{B3FB24A2-FF05-4EA0-89C5-EB756405BBFE}
2013-10-27 13:09 - 2012-05-10 10:26 - 00000000 ____D C:\Users\Steffi´s\AppData\Roaming\Spotify
2013-10-27 12:05 - 2013-10-27 12:05 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{7F45FFEA-7592-4683-ABEA-0D2833BB4A04}
2013-10-25 07:25 - 2013-10-25 07:25 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{BFD5C00A-4151-4038-8A2C-BDAC97DB36F6}
2013-10-24 07:19 - 2013-10-24 07:19 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{DE67F030-29ED-4951-8E0C-04853BB8D053}
2013-10-23 08:26 - 2012-05-10 10:26 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\Spotify
2013-10-23 07:34 - 2013-10-23 07:34 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{039C0353-2535-4BB7-BBC3-7285648E0D03}
2013-10-23 07:26 - 2013-09-23 12:57 - 00054104 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd32.sys
2013-10-23 07:26 - 2013-09-23 12:57 - 00001948 _____ C:\Users\Public\Desktop\G Data InternetSecurity 2014.lnk
2013-10-22 16:05 - 2013-09-19 09:06 - 00000000 ____D C:\ProgramData\Oracle
2013-10-22 15:24 - 2013-10-22 15:24 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-22 15:23 - 2013-10-22 15:24 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-22 15:23 - 2013-10-22 15:24 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-22 15:23 - 2013-10-22 15:24 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-22 15:23 - 2013-10-22 15:24 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-10-22 15:23 - 2013-10-22 15:23 - 00000000 ____D C:\Program Files\Java
2013-10-22 07:32 - 2013-10-22 07:31 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{23114503-24B5-4353-AE0E-90860A1D9A07}
2013-10-21 07:04 - 2013-10-21 07:04 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{262722A0-8505-483E-A6C8-CCA2383E575E}
2013-10-20 07:10 - 2013-10-20 07:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{D0C69471-C446-4B6B-910E-9DB340839922}
2013-10-19 20:14 - 2013-10-19 18:50 - 00000000 ____D C:\Program Files\7-Zip
2013-10-19 19:07 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2013-10-19 18:07 - 2013-10-19 18:06 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{6C39B109-A019-4836-8E3E-D3E795A20820}
2013-10-18 07:20 - 2013-10-18 07:14 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{4E8EF62D-21DB-416C-96C1-23CA069F13F6}
2013-10-18 07:12 - 2013-10-18 07:12 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{35D53AED-D3E5-4136-9E9E-E50D91496D44}
2013-10-18 06:58 - 2013-10-18 06:57 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{164F0880-5EE3-4EA6-9921-628609C57079}
2013-10-17 06:33 - 2013-10-17 06:33 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{F18A6063-D82C-4BEF-A69E-9C0B8BEC4B0B}
2013-10-16 07:11 - 2013-10-16 07:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{89AF2510-BFE9-43EC-A40A-98E629860CE2}
2013-10-15 07:36 - 2013-10-15 07:34 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E483633A-1AF7-4E84-A827-93817B55C8A8}
2013-10-14 09:18 - 2013-06-21 06:54 - 00016896 _____ C:\Users\Steffi´s\Eigene Dokumente\HUFU Bestell Liste 24.06.2013.xls
2013-10-14 09:18 - 2012-04-25 12:39 - 00000000 ___RD C:\Users\Steffi´s\Eigene Dokumente
2013-10-14 07:13 - 2013-10-14 07:12 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{E1C25782-58B3-4D2E-A675-53F8A2B270A6}
2013-10-13 15:23 - 2013-10-13 15:23 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{3CD9C2B1-2495-4C27-8FF5-2C96056A51C4}
2013-10-11 07:03 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-11 06:57 - 2013-10-11 06:57 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{882E3ABC-F8BB-430C-B9EC-365C907B02CA}
2013-10-10 12:59 - 2009-07-14 05:33 - 00368048 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 12:56 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-10-10 10:39 - 2013-08-15 09:51 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 10:33 - 2010-01-13 21:42 - 78106760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 10:32 - 2009-11-11 17:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 07:31 - 2013-10-10 07:31 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{36D6297D-5666-4E0E-8B4B-54E1400B982B}
2013-10-09 10:50 - 2013-01-08 07:40 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 10:50 - 2011-06-03 07:38 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 06:59 - 2013-10-09 06:59 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{99BB2008-3A9F-4261-8A3B-82EFD3C20078}
2013-10-08 06:01 - 2013-10-08 06:01 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{6CF182D0-3D13-4566-80F2-55E9A9470720}
2013-10-07 12:48 - 2009-07-14 03:04 - 00002577 _____ C:\Windows\system32\config.nt
2013-10-07 11:16 - 2009-07-14 05:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-07 07:18 - 2013-10-07 07:17 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{74BEB4E1-341C-4BA9-B2CF-EEF7C0576B1C}
2013-10-03 07:23 - 2013-10-03 07:23 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{DA8910FB-8461-46D7-8559-51B8AFA3F5C2}
2013-10-02 07:10 - 2013-10-02 07:10 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{485A2424-20EE-4A77-84A0-F68DF0DAA8E7}
2013-10-01 07:22 - 2013-10-01 07:22 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{FE06A038-B308-45EF-9F6E-AB24DEA83FD7}
2013-09-30 07:25 - 2013-09-30 07:25 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{7FD49D3B-FE68-429B-9BFC-CBF7A6B14D77}
2013-09-29 07:54 - 2013-09-29 07:54 - 00000000 ____D C:\Users\Steffi´s\AppData\Local\{9096D0E2-0A2A-4610-93F3-2FF9D97879FF}

Some content of TEMP:
====================
C:\Users\Steffi´s\AppData\Local\Temp\RtkBtMnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 29.10.2013 15:45
hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Steffi08 29.10.2013 17:28
Hallo Schrauber, danke für deine Hilfe aber leider habe ich ein Problem, mein MBR funktioniert nicht mehr . Ein Bekannter versucht gerade meine Daten zu retten und Windows 7 aufzuspielen.

Lieben Gruß
Steffi mit ihren Tablet ;)

schrauber 30.10.2013 12:03
Zitat:
mein MBR funktioniert nicht mehr
:wtf:

Wie kommste da drauf?

Steffi08 30.10.2013 14:58
Wenn ich mein Laptop hochfahren will, bekomme ich die Meldung
das keine Software mehr auf meinem lapi ist. Mein Bekannten wollte ich eigentlich nicht an meinen Laptop lassen ...deshalb habe ich mich bei euch angemeldet. Er hat irgendwas gemacht und jetzt haben wir das Theater.
Lieben Gruß Steffi

Berichtigung ich bekomme die Meldung kein Betriebssystem vorhanden ....

schrauber 31.10.2013 09:26
Hast Du Combofix laufen lassen aus meiner Anleitung oder hat er vorher schon dran rumgefingert?

Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8)
Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
  • Downloade dir bitte die passende Version des Tools (im Zweifel beide) und speichere diese auf einen USB Stick: FRST Download FRST 32-Bit | FRST 64-Bit
  • Schließe den USB Stick an das infizierte System an und boote das System in die System Reparatur Option.
  • Scanne jetzt nach der bebilderten Anleitung oder verwende die folgende Kurzanleitung:
Über den Boot Manager:
  • Starte den Rechner neu.
  • Während dem Hochfahren drücke mehrmals die F8 Taste
  • Wähle nun Computer reparieren.
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Mit Windows CD/DVD (auch bei Windows 8 möglich):
  • Lege die Windows CD in dein Laufwerk.
  • Starte den Rechner neu und starte von der CD.
  • Wähle die Spracheinstellungen und klicke "Weiter".
  • Klicke auf Computerreparaturoptionen !
  • Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".
Wähle in den Reparaturoptionen: Eingabeaufforderung
  • Gib nun bitte notepad ein und drücke Enter.
  • Im öffnenden Textdokument: Datei > Speichern unter... und wähle Computer.
    Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt, merke ihn dir.
  • Schließe Notepad wieder
  • Gib nun bitte folgenden Befehl ein.
    e:\frst.exe bzw. e:\frst64.exe
    Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks, den du dir gemerkt hast. Gegebenfalls anpassen.
  • Akzeptiere den Disclaimer mit Ja und klicke Untersuchen
Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung).


Steffi08 01.11.2013 13:02
Hallo Schrauber,

vielen Dank für deine Hilfe aber jetzt ist alles zu spät..

Ich habe eben mein Laptop wieder zurück bekommen mit Vista :nixda:
Als ich mein Laptop gekauft habe war Vista drauf und ich habe ein kostenloses Upgrate auf Windows 7 gemacht, dabei habe ich auch die Sicherheits CD gemacht.
Kann ich jetzt einfach diese CD einlegen und einfach Windows 7 installieren ??

das hat zwar nichts mit Viren zu tun aber vielleicht kannst du mir ja helfen

Lieben Gruß
Steffi

schrauber 01.11.2013 19:05
Ja kannste einfach drauf installieren.

Steffi08 01.11.2013 20:03
Danke ...aber leider ist die Sicherheits CD von Vista und den Key für Windows 7
kann ich nicht mehr finden. Acer kann mir auch nicht helfen also entweder mit Vista weitermachen oder Windows 7 oder Windows 8 kaufen ...dumm gelaufen

ihr seid aber super hier :-) und beim nächsten Problem lasse ich mir nicht reinreden

Gruß Steffi

schrauber 02.11.2013 11:38
Gern Geschehen :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:37 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131