| |
| |||||||
Log-Analyse und Auswertung: Nation ZoomWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
19.01.2014, 14:24
| #1 |
| /// the machine /// TB-Ausbilder    |  Nation Zoom hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.01.2014, 15:45
| #2 | |
 | Nation ZoomZitat:
FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014
Ran by Sven (administrator) on SVEN-PC on 19-01-2014 15:00:10
Running from C:\Users\Sven\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
() C:\Program Files\ShrewSoft\VPN Client\dtpd.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
() C:\Program Files\ShrewSoft\VPN Client\iked.exe
() C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
() C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Sytems Incorporated) C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-23] (Alcor Micro Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9643552 2009-12-11] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [325120 2009-10-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-04-23] (Acer Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [260608 2010-03-09] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-02-01] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201512 2009-12-25] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [401192 2009-12-25] (Egis Technology Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [908368 2010-04-08] (Dritek System Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-06-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [Adobe Version Cue CS2] - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [iMesh] - "C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe" --lightmode
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-15] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE403
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550
SearchScopes: HKCU - {B8903C25-5D73-47B4-914D-3865CB897903} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=cc96a3b5000000000000c44619a2c50f&r=234
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO-x32: SwissAcademic.Citavi.Picker.IEPicker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{8751A103-9CA0-448D-818F-150CFCF9572A}: [NameServer]141.55.192.51,141.55.192.50
FireFox:
========
FF ProfilePath: C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default
FF user.js: detected! => C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\user.js
FF NewTab: hxxp://www.nationzoom.com/newtab/?type=nt&ts=1388054059&from=amt&uid=WDCXWD3200BEVT-22A23T0_WD-WX81A700695506955
FF DefaultSearchEngine: nationzoom
FF SelectedSearchEngine: nationzoom
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "autoconfig_url", "hxxp://config/laptop/proxy.pac"
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\Sven\AppData\Roaming\Mozilla\Plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin HKCU: iMeshPlugin - C:\Program Files (x86)\iMesh Applications\iMesh\npiMeshPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Sven\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\searchplugins\softonic.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Websteroids - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\support@websteroidsapp.com [2013-12-26]
FF Extension: YouTube to MP3 - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\youtube2mp3@mondayx.de [2012-01-20]
FF Extension: Value Apps - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\{94cd2cc3-083f-49ba-a218-4cda4b4829fd} [2013-12-26]
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi [2013-07-26]
FF Extension: NoScript - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-03-07]
FF Extension: Adblock Plus - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\790y69hn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-06-29]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2013-12-20]
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2013-04-17]
FF HKCU\...\Firefox\Extensions: [{6b97d63f-0c5e-47ee-ae30-a81cafa9cdc1}] - C:\Program Files (x86)\Re-markit\150.xpi
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (No Name) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-12-20]
CHR HKLM-x32\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx [2013-12-20]
CHR HKLM-x32\...\Chrome\Extension: [elchiiiejkobdbblfejjkbphbddgmljf] - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonic.crx [2013-06-11]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-02-06] (Adobe Systems)
R2 Adobe Version Cue CS2; C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536 2012-07-07] ()
R2 dtpd; C:\Program Files\ShrewSoft\VPN Client\dtpd.exe [56592 2010-08-17] ()
R2 iked; C:\Program Files\ShrewSoft\VPN Client\iked.exe [957712 2010-08-17] ()
R2 ipsecd; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [697616 2010-08-17] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-02-01] (Egis Technology Inc.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
R1 cnnctfy2; C:\Windows\System32\DRIVERS\cnnctfy2.sys [31344 2012-07-26] (Connectify)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-20] (Duplex Secure Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz130; \??\C:\Users\Sven\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-19 15:00 - 2014-01-19 15:01 - 00023076 _____ C:\Users\Sven\Desktop\FRST.txt
2014-01-19 14:59 - 2014-01-19 14:59 - 02076672 _____ (Farbar) C:\Users\Sven\Desktop\FRST64.exe
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D C:\FRST
2014-01-19 14:46 - 2014-01-19 14:57 - 00000960 _____ C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iMesh.lnk
2014-01-19 14:46 - 2014-01-19 14:57 - 00000930 _____ C:\Users\Sven\Desktop\iMesh.lnk
2014-01-19 14:38 - 2014-01-19 14:38 - 00000000 ____D C:\Users\Sven\AppData\Local\iMesh
2014-01-19 14:33 - 2014-01-19 14:33 - 01431792 _____ (iMesh Inc) C:\Users\Sven\Desktop\iMeshSetup-r1487-w-bf.exe
2014-01-15 17:05 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 17:05 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 17:05 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 17:04 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-04 00:24 - 2014-01-04 01:40 - 00000000 ____D C:\Users\Sven\AppData\Roaming\Vidalia
2013-12-29 20:27 - 2013-12-29 20:27 - 00017956 _____ C:\Windows\PFRO.log
2013-12-29 15:10 - 2014-01-19 13:16 - 00002688 _____ C:\Windows\setupact.log
2013-12-29 15:10 - 2013-12-29 15:10 - 00000000 _____ C:\Windows\setuperr.log
2013-12-26 11:36 - 2013-12-26 11:38 - 00000000 ____D C:\Program Files (x86)\SciLor's grooveshark(tm).com Downloader
2013-12-26 11:36 - 2013-12-26 11:36 - 00001316 _____ C:\Users\Public\Desktop\SciLor's grooveshark™.com Downloader.lnk
2013-12-26 11:35 - 2013-12-26 13:41 - 00000000 ____D C:\Users\Sven\AppData\Local\Mobogenie
2013-12-26 11:35 - 2013-12-26 13:29 - 00000138 _____ C:\Users\Sven\daemonprocess.txt
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\Documents\Mobogenie
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\AppData\Local\genienext
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\AppData\Local\cache
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\.android
2013-12-26 11:34 - 2013-12-29 20:27 - 00000000 ____D C:\ProgramData\WPM
2013-12-26 11:34 - 2013-12-29 20:27 - 00000000 ____D C:\ProgramData\Updater
2013-12-26 11:34 - 2013-12-29 20:27 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-26 11:34 - 2013-12-29 20:25 - 00000000 ____D C:\Users\Sven\AppData\Local\Conduit
2013-12-26 11:34 - 2013-12-29 20:25 - 00000000 ____D C:\Program Files\Conduit
2013-12-26 11:34 - 2013-12-26 13:41 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-26 11:33 - 2013-12-29 20:25 - 00000000 ____D C:\Users\Sven\AppData\Local\SwvUpdater
2013-12-26 11:33 - 2013-12-26 13:41 - 00000000 ____D C:\Users\Sven\AppData\Local\Lollipop
2013-12-26 11:33 - 2013-12-26 11:34 - 00000000 _____ C:\END
2013-12-22 16:09 - 2013-12-22 16:09 - 00000000 ____D C:\Users\Sven\Documents\Neuer Ordner
2013-12-20 23:28 - 2013-12-20 23:59 - 00000000 ____D C:\Users\Sven\AppData\Local\Nero
2013-12-20 23:28 - 2013-12-20 23:28 - 00000000 ____D C:\Users\Sven\Documents\NeroVideo
2013-12-20 23:25 - 2013-12-20 23:25 - 00002913 _____ C:\Users\Public\Desktop\Nero 2014.lnk
2013-12-20 23:25 - 2013-12-20 23:25 - 00000000 ____D C:\Windows\System32\Tasks\Nero
2013-12-20 23:13 - 2013-12-20 23:13 - 00006148 ____H C:\Users\Sven\.DS_Store
2013-12-20 23:03 - 2013-12-20 23:03 - 00000000 ____D C:\Program Files (x86)\Softonic
2013-12-20 22:45 - 2013-12-20 23:13 - 00006148 ____H C:\Users\Sven\Desktop\.DS_Store
2013-12-20 22:13 - 2013-12-20 22:13 - 00000000 ____D C:\Users\Sven\Desktop\WWi-III
2013-12-20 17:41 - 2013-12-20 17:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified Files and Folders =======
2014-01-19 15:01 - 2014-01-19 15:00 - 00023076 _____ C:\Users\Sven\Desktop\FRST.txt
2014-01-19 15:00 - 2010-09-04 07:22 - 01891765 _____ C:\Windows\WindowsUpdate.log
2014-01-19 14:59 - 2014-01-19 14:59 - 02076672 _____ (Farbar) C:\Users\Sven\Desktop\FRST64.exe
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D C:\FRST
2014-01-19 14:57 - 2014-01-19 14:46 - 00000960 _____ C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iMesh.lnk
2014-01-19 14:57 - 2014-01-19 14:46 - 00000930 _____ C:\Users\Sven\Desktop\iMesh.lnk
2014-01-19 14:57 - 2010-12-18 05:54 - 00000826 _____ C:\Windows\WinInit.Ini
2014-01-19 14:46 - 2010-10-26 14:22 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-19 14:38 - 2014-01-19 14:38 - 00000000 ____D C:\Users\Sven\AppData\Local\iMesh
2014-01-19 14:37 - 2012-05-11 09:37 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-19 14:37 - 2009-07-14 05:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-19 14:37 - 2009-07-14 05:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-19 14:33 - 2014-01-19 14:33 - 01431792 _____ (iMesh Inc) C:\Users\Sven\Desktop\iMeshSetup-r1487-w-bf.exe
2014-01-19 13:46 - 2010-10-26 14:22 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-19 13:16 - 2013-12-29 15:10 - 00002688 _____ C:\Windows\setupact.log
2014-01-19 13:16 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-16 17:20 - 2009-07-14 05:45 - 00417288 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 18:33 - 2010-10-27 09:56 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-10 23:16 - 2010-10-26 13:06 - 00000000 ____D C:\Users\Sven
2014-01-04 01:40 - 2014-01-04 00:24 - 00000000 ____D C:\Users\Sven\AppData\Roaming\Vidalia
2013-12-29 20:27 - 2013-12-29 20:27 - 00017956 _____ C:\Windows\PFRO.log
2013-12-29 20:27 - 2013-12-26 11:34 - 00000000 ____D C:\ProgramData\WPM
2013-12-29 20:27 - 2013-12-26 11:34 - 00000000 ____D C:\ProgramData\Updater
2013-12-29 20:27 - 2013-12-26 11:34 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-29 20:25 - 2013-12-26 11:34 - 00000000 ____D C:\Users\Sven\AppData\Local\Conduit
2013-12-29 20:25 - 2013-12-26 11:34 - 00000000 ____D C:\Program Files\Conduit
2013-12-29 20:25 - 2013-12-26 11:33 - 00000000 ____D C:\Users\Sven\AppData\Local\SwvUpdater
2013-12-29 20:25 - 2010-12-26 20:34 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-12-29 17:22 - 2011-03-29 15:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-29 15:10 - 2013-12-29 15:10 - 00000000 _____ C:\Windows\setuperr.log
2013-12-29 15:04 - 2011-01-22 06:42 - 00000000 ____D C:\Windows\Minidump
2013-12-29 15:04 - 2010-11-02 06:51 - 00000000 ____D C:\Users\Sven\AppData\Roaming\DAEMON Tools Lite
2013-12-29 15:04 - 2009-07-27 21:41 - 00000000 ____D C:\Windows\Panther
2013-12-27 23:49 - 2010-11-05 05:35 - 00000000 ____D C:\Users\Sven\AppData\Roaming\vlc
2013-12-26 19:43 - 2010-12-13 05:07 - 00000000 ____D C:\Users\Sven\Documents\Faustball
2013-12-26 14:17 - 2010-12-22 08:34 - 00000000 ____D C:\Users\Sven\AppData\Local\FreePDF_XP
2013-12-26 13:57 - 2010-09-04 17:11 - 00697098 _____ C:\Windows\system32\perfh007.dat
2013-12-26 13:57 - 2010-09-04 17:11 - 00148362 _____ C:\Windows\system32\perfc007.dat
2013-12-26 13:57 - 2009-07-14 06:13 - 01613412 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-26 13:41 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\AppData\Local\Mobogenie
2013-12-26 13:41 - 2013-12-26 11:34 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-26 13:41 - 2013-12-26 11:33 - 00000000 ____D C:\Users\Sven\AppData\Local\Lollipop
2013-12-26 13:39 - 2013-11-17 21:34 - 00000000 ____D C:\Users\Sven\AppData\Roaming\DVDVideoSoft
2013-12-26 13:29 - 2013-12-26 11:35 - 00000138 _____ C:\Users\Sven\daemonprocess.txt
2013-12-26 13:27 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-26 11:38 - 2013-12-26 11:36 - 00000000 ____D C:\Program Files (x86)\SciLor's grooveshark(tm).com Downloader
2013-12-26 11:36 - 2013-12-26 11:36 - 00001316 _____ C:\Users\Public\Desktop\SciLor's grooveshark™.com Downloader.lnk
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\Documents\Mobogenie
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\AppData\Local\genienext
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\AppData\Local\cache
2013-12-26 11:35 - 2013-12-26 11:35 - 00000000 ____D C:\Users\Sven\.android
2013-12-26 11:34 - 2013-12-26 11:33 - 00000000 _____ C:\END
2013-12-26 11:34 - 2010-10-26 13:08 - 00001653 _____ C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-22 16:18 - 2012-01-02 20:48 - 00000000 ____D C:\Users\Sven\Documents\praxisberichte
2013-12-22 16:09 - 2013-12-22 16:09 - 00000000 ____D C:\Users\Sven\Documents\Neuer Ordner
2013-12-21 10:55 - 2012-05-07 13:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 23:59 - 2013-12-20 23:28 - 00000000 ____D C:\Users\Sven\AppData\Local\Nero
2013-12-20 23:50 - 2012-03-08 14:41 - 00000000 ____D C:\Users\Sven\AppData\Roaming\Nero
2013-12-20 23:28 - 2013-12-20 23:28 - 00000000 ____D C:\Users\Sven\Documents\NeroVideo
2013-12-20 23:28 - 2012-03-08 14:27 - 00000000 ____D C:\ProgramData\Nero
2013-12-20 23:25 - 2013-12-20 23:25 - 00002913 _____ C:\Users\Public\Desktop\Nero 2014.lnk
2013-12-20 23:25 - 2013-12-20 23:25 - 00000000 ____D C:\Windows\System32\Tasks\Nero
2013-12-20 23:19 - 2012-03-08 14:16 - 00000000 ____D C:\Program Files (x86)\Nero
2013-12-20 23:16 - 2011-12-31 18:20 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-12-20 23:14 - 2010-11-02 06:51 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-12-20 23:13 - 2013-12-20 23:13 - 00006148 ____H C:\Users\Sven\.DS_Store
2013-12-20 23:13 - 2013-12-20 22:45 - 00006148 ____H C:\Users\Sven\Desktop\.DS_Store
2013-12-20 23:04 - 2010-11-02 06:53 - 00381440 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2013-12-20 23:04 - 2010-11-02 06:53 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-12-20 23:03 - 2013-12-20 23:03 - 00000000 ____D C:\Program Files (x86)\Softonic
2013-12-20 23:03 - 2010-10-26 13:09 - 00000000 ____D C:\Users\Sven\AppData\Local\Google
2013-12-20 22:56 - 2013-05-31 20:28 - 00000000 ____D C:\Users\Sven\Desktop\Hochwasser
2013-12-20 22:13 - 2013-12-20 22:13 - 00000000 ____D C:\Users\Sven\Desktop\WWi-III
2013-12-20 22:06 - 2013-02-06 10:17 - 00000000 ____D C:\Users\Sven\Desktop\Creative suite
2013-12-20 17:42 - 2013-12-20 17:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
Some content of TEMP:
====================
C:\Users\Sven\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-09 20:11
==================== End Of Log ============================
--- --- --- --- --- --- # #Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 Ran by Sven at 2014-01-19 15:01:57 Running from C:\Users\Sven\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft) AC3Filter 1.63b (x32 Version: 1.63b - Alexander Vigovsky) Acer Backup Manager (x32 Version: 2.0.0.60 - NewTech Infosystems) Acer Crystal Eye webcam (x32 Version: 1.0.3.5 - Liteon) Acer ePower Management (x32 Version: 5.00.3004 - Acer Incorporated) Acer eRecovery Management (x32 Version: 4.05.3011 - Acer Incorporated) Acer GameZone Console (x32 Version: 6.1.0.2 - Oberon Media, Inc.) Acer Registration (x32 Version: 1.03.3003 - Acer Incorporated) Acer ScreenSaver (x32 Version: 1.1.0423.2010 - Acer Incorporated) Acer Updater (x32 Version: 1.02.3001 - Acer Incorporated) Acrobat.com (x32 Version: 1.6.65 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden Adobe Bridge 1.0 (x32 Version: 001.000.001 - Adobe Systems) Hidden Adobe Common File Installer (x32 Version: 1.00.001 - Adobe System Incorporated) Hidden Adobe Creative Suite 2 (x32 Version: - ) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated) Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated) Adobe Help Center 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden Adobe Illustrator CS2 (x32 Version: 12.000.000 - Adobe Systems Inc.) Hidden Adobe InDesign CS2 (x32 Version: 004.000.000 - Adobe Systems Incorporated) Hidden Adobe Photoshop CS2 (x32 Version: 9.0 - Adobe Systems, Inc.) Hidden Adobe Reader X (10.1.1) - Deutsch (x32 Version: 10.1.1 - Adobe Systems Incorporated) Adobe Stock Photos 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden Adobe SVG Viewer 3.0 (x32 Version: 3.0 - Adobe Systems, Inc.) Adobe Version Cue CS2 (x32 Version: 2.0 - Adobe Systems, Inc.) Hidden AGISync (x32 Version: 2.6.0 - Hochschule Mittweida) Alcor Micro USB Card Reader (x32 Version: 1.5.17.05094 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 1.5.17.05094 - Alcor Micro Corp.) Hidden ALPS Touch Pad Driver (Version: 7.105.2015.1107 - Alps Electric) Amazonia (x32 Version: - Oberon Media) Apple Application Support (x32 Version: 2.2.2 - Apple Inc.) Apple Mobile Device Support (Version: 6.0.0.59 - Apple Inc.) Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.) ATI Catalyst Install Manager (Version: 3.0.758.0 - ATI Technologies, Inc.) Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira) Avira SearchFree Toolbar (x32 Version: 12.10.0.2948 - APN, LLC) Backup Manager Basic (x32 Version: 2.0.0.60 - NewTech Infosystems) Hidden Bonjour (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit NetLink Controller (Version: 12.52.03 - Broadcom Corporation) Brother MFL-Pro Suite DCP-8070D (x32 Version: 1.0.5.0 - Brother Industries, Ltd.) Cake Mania (x32 Version: - Oberon Media) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden Catalyst Control Center Core Implementation (x32 Version: 2010.0122.858.16002 - ATI) Hidden Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0122.858.16002 - ATI) Hidden Catalyst Control Center Graphics Full New (x32 Version: 2010.0122.858.16002 - ATI) Hidden Catalyst Control Center Graphics Light (x32 Version: 2010.0122.858.16002 - ATI) Hidden Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0122.858.16002 - ATI) Hidden Catalyst Control Center InstallProxy (x32 Version: 2010.0122.858.16002 - ATI Technologies, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2010.0122.858.16002 - ATI) Hidden CCC Help Chinese Standard (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Chinese Traditional (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Czech (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Danish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Dutch (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help English (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Finnish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help French (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help German (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Greek (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Hungarian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Italian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Japanese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Korean (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Norwegian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Polish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Portuguese (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Russian (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Spanish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Swedish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Thai (x32 Version: 2010.0122.0857.16002 - ATI) Hidden CCC Help Turkish (x32 Version: 2010.0122.0857.16002 - ATI) Hidden ccc-core-static (x32 Version: 2010.0122.858.16002 - Ihr Firmenname) Hidden ccc-utility64 (Version: 2010.0122.858.16002 - ATI) Hidden CCleaner (Version: 3.24 - Piriform) Chicken Invaders 2 (x32 Version: - Oberon Media) Cisco Systems VPN Client 5.0.07.0440 (Version: 5.0.7 - Cisco Systems, Inc.) Citavi (x32 Version: 3.4.0.2 - Swiss Academic Software) Collaboration Data Objects 1.2.1 (x32 Version: 6.5.7821.1 - Microsoft) Connectify (Version: 3.5.1.24187 - Connectify) CyberLink PowerDVD 9 (x32 Version: 9.0.2529.50 - CyberLink Corp.) CyberLink PowerDVD 9 (x32 Version: 9.0.2529.50 - CyberLink Corp.) Hidden Dairy Dash (x32 Version: - Oberon Media) DC++ 0.799 (x32 Version: 0.799 - Jacek Sieka) Dead Space™ (x32 Version: 1.0.222.0 - Electronic Arts) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version: - Microsoft) DivX-Setup (x32 Version: 2.1.2.2 - DivX, Inc. ) Dream Day First Home (x32 Version: - Oberon Media) Duden-Rechtschreibprüfung 30-Tage-Testversion (x32 Version: 8.0 - Bibliographisches Institut GmbH) eBay Worldwide (x32 Version: 2.1.0901 - OEM) ElsterFormular (x32 Version: 13.1.0.8394p - Landesfinanzdirektion Thüringen) eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden Farm Frenzy 2 (x32 Version: - Oberon Media) Flatcast Viewer Plugin 5.3.0.784 (x32 Version: - 1 mal 1 Software GmbH) FreePDF (Remove only) (x32 Version: - ) Futuremark SystemInfo (x32 Version: 3.21.2.1 - Futuremark Corporation) Galapago (x32 Version: - Oberon Media) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden GPL Ghostscript 9.00 (x32 Version: - ) Granny In Paradise (x32 Version: - Oberon Media) Heroes of Hellas (x32 Version: - Oberon Media) ICQ7.2 (x32 Version: 7.2 - ICQ) Identity Card (x32 Version: 1.00.3003 - Acer Incorporated) Intel(R) Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation) Intel(R) Rapid Storage Technology (x32 Version: 9.6.0.1014 - Intel Corporation) iTunes (Version: 10.7.0.21 - Apple Inc.) Java 7 Update 9 (x32 Version: 7.0.90 - Oracle) Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation) Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden K-Lite Codec Pack 6.0.4 (Basic) (x32 Version: 6.0.4 - ) Launch Manager (x32 Version: 4.0.8 - Acer Inc.) Lexware Info Service (x32 Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden Microsoft Games for Windows - LIVE (x32 Version: 3.0.86.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.0.17.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Language Pack 2007 - German/Deutsch (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office O MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Project MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Project Professional 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden Microsoft Office SharePoint Designer MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Visio 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Visio MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Office X MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden Microsoft Project Professional 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation) Microsoft Visio Professional 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) Microsoft XML Parser (x32 Version: 8.70.1104.04 - Microsoft Corporation) Hidden Microsoft_VC100_CRT_x86 (x32 Version: 1.0.0 - Microsoft) Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla) Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla) MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation) MyWinLocker (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden MyWinLocker Suite (x32 Version: 3.1.206.0 - Egis Technology Inc.) MyWinLocker Suite (x32 Version: 3.1.206.0 - Egis Technology Inc.) Hidden Nero 11 (x32 Version: 11.2.00400 - Nero AG) Nero 11 Image Samples (x32 Version: 11.0.11200.12.0 - Nero AG) Hidden Nero 2014 (x32 Version: 15.0.02200 - Nero AG) Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden Nero BackItUp 11 (x32 Version: 6.2.18400.2.100 - Nero AG) Hidden Nero BackItUp 11 Help (CHM) (x32 Version: 11.0.10200 - Nero AG) Hidden Nero Backup Drivers (Version: 1.0.11100.8.0 - Nero AG) Nero Blu-ray Player (x32 Version: 12.0.20031 - Nero AG) Hidden Nero Blu-ray Player Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden Nero Burning Core (x32 Version: 15.0.19000 - Nero AG) Hidden Nero Burning ROM (x32 Version: 15.0.19000 - Nero AG) Hidden Nero Burning ROM 11 (x32 Version: 11.2.10300.0.0 - Nero AG) Hidden Nero Burning ROM 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden Nero Burning ROM Help (CHM) (x32 Version: 15.0.00018 - Nero AG) Hidden Nero ControlCenter (x32 Version: 11.0.16700 - Nero AG) Hidden Nero ControlCenter Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden Nero Core Components (x32 Version: 11.0.22500 - Nero AG) Hidden Nero CoverDesigner 11 (x32 Version: 6.0.11000.13.100 - Nero AG) Hidden Nero CoverDesigner 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden Nero Disc to Device (x32 Version: 15.0.12010 - Nero AG) Hidden Nero Effects Basic (x32 Version: 15.0.10010 - Nero AG) Hidden Nero Express (x32 Version: 15.0.19000 - Nero AG) Hidden Nero Express 11 (x32 Version: 11.2.10300.0.0 - Nero AG) Hidden Nero Express 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden Nero Express Help (CHM) (x32 Version: 15.0.00018 - Nero AG) Hidden Nero Info (x32 Version: 15.1.0023 - Nero AG) Hidden Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden Nero Launcher (x32 Version: 15.0.8000 - Nero AG) Hidden Nero MediaHome (x32 Version: 1.20.8200 - Nero AG) Hidden Nero MediaHome Help (CHM) (x32 Version: 15.0.00018 - Nero AG) Hidden Nero PiP Effects Basic (x32 Version: 15.0.10008 - Nero AG) Hidden Nero Recode (x32 Version: 15.0.14000 - Nero AG) Hidden Nero Recode 11 (x32 Version: 5.2.10900.0.0 - Nero AG) Hidden Nero Recode 11 Help (CHM) (x32 Version: 11.0.10500 - Nero AG) Hidden Nero Recode Help (CHM) (x32 Version: 15.0.00018 - Nero AG) Hidden Nero RescueAgent (x32 Version: 15.0.2000 - Nero AG) Hidden Nero RescueAgent 11 (x32 Version: 4.0.10600.10.100 - Nero AG) Hidden Nero RescueAgent 11 Help (CHM) (x32 Version: 11.0.10400 - Nero AG) Hidden Nero RescueAgent Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden Nero SharedVideoCodecs (x32 Version: 1.0.15003 - Nero AG) Hidden Nero SoundTrax 11 (x32 Version: 5.0.10700.6.100 - Nero AG) Hidden Nero SoundTrax 11 Help (CHM) (x32 Version: 11.0.10400 - Nero AG) Hidden Nero Update (x32 Version: 11.0.13300.42.0 - Nero AG) Hidden Nero Video (x32 Version: 15.0.12000 - Nero AG) Hidden Nero Video 11 (x32 Version: 8.2.15700.3.100 - Nero AG) Hidden Nero Video 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden Nero Video Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden Nero WaveEditor 11 (x32 Version: 6.2.11300.0.100 - Nero AG) Hidden Nero WaveEditor 11 Help (CHM) (x32 Version: 11.0.10400 - Nero AG) Hidden nero.prerequisites.msi (x32 Version: 11.0.20010 - Nero AG) Hidden neroxml (x32 Version: 1.0.0 - Nero AG) Hidden Norton Online Backup (x32 Version: 1.2.0.36 - Symantec) NTI Backup Now 5 (x32 Version: 5.1.2.628 - NewTech Infosystems) NTI Backup Now Standard (x32 Version: 5.1.2.628 - NewTech Infosystems) Hidden NTI Media Maker 8 (x32 Version: 8.0.12.6630 - NewTech Infosystems) NTI Media Maker 8 (x32 Version: 8.0.12.6630 - NewTech Infosystems) Hidden NVIDIA PhysX (x32 Version: 9.09.0814 - NVIDIA Corporation) OpenAL (x32 Version: - ) PDF-Viewer (Version: 2.5.211.0 - Tracker Software Products Ltd) Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden QuickSteuer 2012 (x32 Version: 18.09.00.0003 - Haufe-Lexware GmbH & Co.KG) QuickSteuer 2013 (x32 Version: 19.06.00.0003 - Haufe-Lexware GmbH & Co.KG) QuickTime (x32 Version: 7.72.80.56 - Apple Inc.) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6000 - Realtek Semiconductor Corp.) RedMon - Redirection Port Monitor (Version: - ) SciLor's grooveshark™.com Downloader 0.4.12 (x32 Version: 0.4.12 - SciLor) Secure Download Manager (x32 Version: 3.0.3 - e-academy Inc.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden Shredder (Version: 2.0.5.0 - Egis Technology Inc.) Hidden Shredder (x32 Version: 2.0.5.0 - Egis Technology Inc.) Hidden Shrew Soft VPN Client (Version: - ) Skype Click to Call (x32 Version: 5.9.9216 - Skype Technologies S.A.) Skype™ 6.3 (x32 Version: 6.3.105 - Skype Technologies S.A.) Softonic toolbar on IE and Chrome (x32 Version: 1.8.21.14 - Softonic) <==== ATTENTION Spin & Win (x32 Version: - Oberon Media) StarCraft II (x32 Version: 1.2.2.17811 - Blizzard Entertainment) Suite Specific (x32 Version: 2.0.0 - Adobe Systems, Incorporated) Hidden Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation) Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version: - Microsoft) Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft) Update for Microsoft Office Infopath 2007 Help (KB963662) (x32 Version: - Microsoft) Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft) Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version: - Microsoft) Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft) Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft) Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft) Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft) Updater (x32 Version: 2.6.53 - Creative Island Media, LLC) VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0 - DivX, Inc) Hidden VCRedistSetup (x32 Version: 1.0.0 - Nero AG) Hidden Virtua Tennis Demo (x32 Version: - ) VLC media player 2.0.1 (x32 Version: 2.0.1 - VideoLAN) welcome (x32 Version: 11.0.22900.0.0 - Nero AG) Hidden Welcome Center (x32 Version: 1.01.3002 - Acer Incorporated) Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5 - Microsoft Corporation) Windows Live Call (x32 Version: 14.0.8064.0206 - Microsoft Corporation) Hidden Windows Live Communications Platform (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden Windows Live Essentials (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Windows Live Essentials (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden Windows Live Fotogalerie (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden Windows Live Mail (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Windows Live Messenger (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Windows Live Movie Maker (x32 Version: 14.0.8091.0730 - Microsoft Corporation) Hidden Windows Live Sync (x32 Version: 14.0.8089.726 - Microsoft Corporation) Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Windows Live-Uploadtool (x32 Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp) WinRAR (Version: - ) YouTube Song Downloader (x32 Version: 8.2 - Abelssoft) Zattoo4 4.0.5 (x32 Version: 4.0.5 - Zattoo Inc.) ==================== Restore Points ========================= 26-12-2013 12:41:49 Removed Nero 11. 27-12-2013 14:53:54 Windows Update 01-01-2014 18:44:59 Windows Update 07-01-2014 17:17:06 Windows Update 10-01-2014 22:13:32 Windows Update 14-01-2014 16:12:08 Windows Update 15-01-2014 17:31:25 Windows Update ==================== Hosts content: ========================== 2009-07-14 03:34 - 2011-12-31 16:28 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {15D0D7F6-9182-46E1-B7E9-EDDD10687703} - System32\Tasks\{E76BC036-BAD8-459E-8709-37DDFA83F586} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2013-02-28] (Skype Technologies S.A.) Task: {37B0D9C2-ADA3-43B3-9EE1-65C2CF5CB166} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {3CA65E52-6344-49EE-AB41-24E9A2A94DED} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-08-20] (Nero AG) Task: {7E5399D1-89FF-4E7A-A798-5B265D6DDB95} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd) Task: {8CDD26AC-8655-4585-8F7F-8CBA7C8254D0} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {A0D98B4D-93FB-45D3-8A4D-B506EFEB6D6C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-26] (Google Inc.) Task: {B2413C99-0B61-471F-80E2-E8B22C28BAB7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-10-26] (Google Inc.) Task: {E3C81E0C-F371-461B-8FD8-6400694F327A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated) Task: {EA4EBF4C-FC78-4368-B594-75A6C5DD1DC4} - System32\Tasks\{78B7564D-5403-4EA8-9E19-D7E6F57BACCB} => Firefox.exe Downloading Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-01-07 13:42 - 2010-01-07 13:42 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2010-09-04 07:23 - 2010-09-04 07:23 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2013-08-07 09:44 - 2013-08-06 23:10 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll 2005-04-06 16:52 - 2005-04-06 16:52 - 00028791 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\hpi.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00057453 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\verify.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00102515 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\java.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00053364 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\zip.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00057455 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\net.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00032880 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\jre\bin\nio.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 00434255 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\ps-rw-vc-v8_58.dll 2005-04-06 16:53 - 2005-04-06 16:53 - 01019904 _____ () C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\ps-vc-v8_58.dll 2012-08-27 20:33 - 2012-08-27 20:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2012-08-27 20:33 - 2012-08-27 20:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2012-07-26 13:58 - 2012-07-07 03:36 - 00088936 _____ () C:\Program Files (x86)\Connectify\NativeLibrary.dll 2011-03-04 12:49 - 2011-03-04 12:49 - 00202752 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll 2012-07-26 13:58 - 2012-07-07 03:36 - 00034152 _____ () C:\Program Files (x86)\Connectify\DriverLib.dll 2012-07-26 13:58 - 2012-07-07 03:36 - 01017192 _____ () C:\Program Files (x86)\Connectify\ConnectifyNAT.dll 2012-07-26 13:58 - 2012-07-07 03:36 - 00015208 _____ () C:\Program Files (x86)\Connectify\BuildProps.dll 2012-07-26 13:58 - 2012-07-07 03:36 - 00700264 _____ () C:\Program Files (x86)\Connectify\Vendors.dll 2010-03-09 01:18 - 2010-03-09 01:18 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll 2010-03-09 01:13 - 2010-03-09 01:13 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll 2010-09-04 16:59 - 2009-05-20 23:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\Temp:93DE1838 AlternateDataStreams: C:\Users\Sven\.DS_Store:AFP_AfpInfo AlternateDataStreams: C:\Users\Sven\Desktop\.DS_Store:AFP_AfpInfo AlternateDataStreams: C:\Users\Sven\Desktop\WWi-III:AFP_AfpInfo ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service" ==================== Faulty Device Manager Devices ============= Name: Cisco Systems VPN Adapter for 64-bit Windows Description: Cisco Systems VPN Adapter for 64-bit Windows Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Cisco Systems Service: CVirtA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Shrew Soft Virtual Adapter Description: Shrew Soft Virtual Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Shrew Soft Service: vnet Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (01/19/2014 01:17:42 PM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 29.178.168.192.in-addr.arpa. PTR Sven-PC.local. Error: (01/19/2014 01:17:42 PM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.178.29:5353 17 29.178.168.192.in-addr.arpa. PTR Sven-PC-2.local. Error: (01/19/2014 11:20:38 AM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 29.178.168.192.in-addr.arpa. PTR Sven-PC.local. Error: (01/19/2014 11:20:38 AM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.178.29:5353 17 29.178.168.192.in-addr.arpa. PTR Sven-PC-2.local. Error: (01/18/2014 06:40:48 PM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 29.178.168.192.in-addr.arpa. PTR Sven-PC.local. Error: (01/18/2014 06:40:48 PM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.178.29:5353 17 29.178.168.192.in-addr.arpa. PTR Sven-PC-2.local. Error: (01/18/2014 02:37:39 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (01/18/2014 11:49:47 AM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 29.178.168.192.in-addr.arpa. PTR Sven-PC.local. Error: (01/18/2014 11:49:47 AM) (Source: Bonjour Service) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.178.29:5353 17 29.178.168.192.in-addr.arpa. PTR Sven-PC-2.local. Error: (01/18/2014 00:20:23 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. System errors: ============= Error: (01/19/2014 01:16:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/19/2014 11:20:18 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/18/2014 06:40:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/18/2014 11:49:22 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/17/2014 10:30:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/17/2014 05:21:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/17/2014 05:20:52 PM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 17.01.2014 um 17:11:07 unerwartet heruntergefahren. Error: (01/17/2014 05:04:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/16/2014 05:20:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Error: (01/16/2014 05:16:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT) Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden. Modulpfad: C:\Windows\system32\athExt.dll Fehlercode: 126 Microsoft Office Sessions: ========================= Error: (12/22/2013 04:19:38 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 136 seconds with 120 seconds of active time. This session ended with a crash. Error: (05/19/2013 04:45:24 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 14082 seconds with 3300 seconds of active time. This session ended with a crash. Error: (02/20/2012 10:19:51 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 21741 seconds with 3480 seconds of active time. This session ended with a crash. Error: (02/19/2012 04:35:33 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3519 seconds with 360 seconds of active time. This session ended with a crash. Error: (02/04/2012 08:56:11 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 521 seconds with 180 seconds of active time. This session ended with a crash. Error: (02/04/2012 08:47:17 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 16565 seconds with 3300 seconds of active time. This session ended with a crash. Error: (02/04/2012 04:10:57 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 447 seconds with 240 seconds of active time. This session ended with a crash. Error: (02/04/2012 04:03:14 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 483 seconds with 120 seconds of active time. This session ended with a crash. Error: (01/08/2012 07:45:25 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 286 seconds with 180 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2011-12-31 16:26:57.915 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2011-12-31 16:26:57.853 Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert. Date: 2011-12-26 16:42:24.258 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 16:25:00.656 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 15:50:04.118 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 15:31:42.476 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 14:48:43.164 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 14:22:33.972 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 14:11:37.914 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2011-12-26 13:59:16.564 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 38% Total physical RAM: 3956.5 MB Available physical RAM: 2435.52 MB Total Pagefile: 7911.17 MB Available Pagefile: 5829.64 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (ACER) (Fixed) (Total:284.81 GB) (Free:13.03 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: 65FC65FC) Partition 1: (Not Active) - (Size=13 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=285 GB) - (Type=07 NTFS) ==================== End Of Log ============================# |
|
Hybrid-Darstellung
