| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: werbung in skype deaktivierenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.02.2014, 17:32
| #1 |
 |  werbung in skype deaktivieren hi habe bei skype seit kurzem nur noch werbung in chats oder auf der skype home seite nutze folgende version 6.11.0.102 von skype seit samstag ca erscheint in der konversation werbung als banner selbst als ich die optionen deaktiviert habe wo die werbung her kommt bleibt sie den noch erhalten. -.-* ich bin jetzt mit meinen latein sozusagen am ende. was mir nur noch als möglichkeit einfallen würde währe das ich mir vlt nen virus eingefangen haben könnte. weis jmd wie ich diese werbung deaktivieren kann und das dauerhaft? nutze windows 7 home premium 64bit auf einen medion akoya e7216 hab ein bild beigefügt wo die werbung drauf ist die ich meinte die ist seit samstag in skype bei mir Geändert von saufbiene (03.02.2014 um 17:39 Uhr) |
|
03.02.2014, 18:50
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | werbung in skype deaktivieren Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
04.02.2014, 18:02
| #3 |
| | werbung in skype deaktivierenFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2014
Ran by Daniel (administrator) on MEDION on 04-02-2014 17:57:26
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-23] (AVAST Software)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [ISUSPM] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-05-16] (Macrovision Corporation)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\start.exe
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
==================== Internet (Whitelisted) ====================
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Chrome:
=======
CHR HomePage:
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-11]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-11]
CHR Extension: (Turn Off the Lights) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-11]
CHR Extension: (Cake Mania Main Street) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohogdkongdgejlnndnnhamjgfnbfoon [2013-11-13]
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bolmkphclbnmjlbmibfcnfggbakghpck [2013-11-13]
CHR Extension: (Mangas und Comics auf Deutsch) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\chmidfbpiiicmkfimcbcoagpmchgmkpl [2013-11-13]
CHR Extension: (Monster Dash) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog [2013-11-13]
CHR Extension: (Google-Suche) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-11]
CHR Extension: (Search by Image (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-13]
CHR Extension: (avast! Online Security) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-09]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2013-11-13]
CHR Extension: (Cake Mania) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckjnbilaljpiclmpmnomoapakjmoapj [2013-11-13]
CHR Extension: (SparkChess 6) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem [2013-11-13]
CHR Extension: (Sand 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\klicmgamjpclmbhppmdeamffedflmkcn [2013-11-13]
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-11]
CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-09]
==================== Services (Whitelisted) =================
S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [5101928 2014-01-23] (Reimage®)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-23] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-23] (AVAST Software)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2009-11-07] (X10)
==================== Drivers (Whitelisted) ====================
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2013-12-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-23] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [440672 2014-01-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-23] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-21] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
U3 DfSdkS;
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-04 17:57 - 2014-02-04 17:57 - 00017413 ____C () C:\Users\Daniel\Desktop\FRST.txt
2014-02-04 17:57 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST
2014-02-04 17:53 - 2014-02-04 17:54 - 02080256 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype
2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk
2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype
2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667}
2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm
2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works
2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip
2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip
2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485}
2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF}
2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker
2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup
2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee
2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-16 14:29 - 2014-01-16 14:28 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java
2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC
2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\ProgramData\Screaming Bee
2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee
2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk
2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini
2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk
2014-01-15 08:15 - 2014-01-15 13:45 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 08:15 - 2014-01-15 13:44 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design
2014-01-12 22:25 - 2014-01-12 22:29 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8
2014-01-12 22:25 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design
2014-01-12 22:25 - 2012-03-01 11:08 - 00966144 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00877568 ____C (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00634880 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00522752 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00467968 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00467456 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2014-01-12 22:25 - 2012-02-11 21:07 - 00413696 ____C (Gabest) C:\Windows\SysWOW64\flvsplitter.ax
2014-01-12 22:25 - 2011-03-29 12:52 - 00962560 ____C (East Wind Software) C:\Windows\SysWOW64\advdaudio.ocx
2014-01-12 22:25 - 2011-03-29 12:52 - 00110080 ____C () C:\Windows\SysWOW64\advd.dll
2014-01-12 22:25 - 2011-03-29 12:52 - 00023040 ____C () C:\Windows\SysWOW64\auth.dll
2014-01-12 22:25 - 2003-08-07 14:01 - 00237568 ____C () C:\Windows\SysWOW64\lame_enc.dll
2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk
2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games
2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ
2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone
2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk
2014-01-08 06:40 - 2014-01-08 06:40 - 00000000 ____C () C:\END
2014-01-05 18:16 - 2014-01-05 18:18 - 286128963 ____C () C:\Users\Daniel\Documents\MCGame_Complete_2014-01-05_18-16-30_Backup.mcgame
==================== One Month Modified Files and Folders =======
2014-02-04 17:57 - 2014-02-04 17:57 - 00017413 ____C () C:\Users\Daniel\Desktop\FRST.txt
2014-02-04 17:57 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST
2014-02-04 17:57 - 2013-11-11 16:47 - 00001110 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-04 17:56 - 2013-08-01 16:23 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Skype
2014-02-04 17:54 - 2014-02-04 17:53 - 02080256 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2014-02-04 17:52 - 2013-08-14 08:41 - 01933459 ____C () C:\Windows\WindowsUpdate.log
2014-02-04 17:36 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\system32\NDF
2014-02-04 17:08 - 2013-07-31 21:11 - 00000884 ____C () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-04 09:57 - 2013-11-11 16:47 - 00001106 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-04 00:29 - 2010-05-12 09:18 - 00699340 ____C () C:\Windows\system32\perfh007.dat
2014-02-04 00:29 - 2010-05-12 09:18 - 00149448 ____C () C:\Windows\system32\perfc007.dat
2014-02-04 00:29 - 2009-07-14 06:13 - 01619272 ____C () C:\Windows\system32\PerfStringBackup.INI
2014-02-04 00:28 - 2013-11-18 10:37 - 00009339 ____C () C:\Windows\setupact.log
2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype
2014-02-03 18:33 - 2013-08-01 16:23 - 00000000 ___DC () C:\ProgramData\Skype
2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk
2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype
2014-02-03 18:29 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-03 18:29 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667}
2014-02-03 17:19 - 2013-08-01 16:06 - 00000000 ___DC () C:\Users\Daniel\Documents\Youcam
2014-02-02 19:51 - 2013-08-19 06:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\vlc
2014-02-01 14:01 - 2013-11-11 16:48 - 00002139 ____C () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 08:37 - 2013-12-09 01:49 - 00004182 ____C () C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-30 08:33 - 2013-11-18 10:37 - 03268424 ____C () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 08:33 - 2009-07-14 06:08 - 00000006 ___HC () C:\Windows\Tasks\SA.DAT
2014-01-29 23:11 - 2013-11-19 16:01 - 00217648 ____C () C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-29 14:07 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\TS3Client
2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm
2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works
2014-01-28 17:13 - 2013-08-02 18:31 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Office
2014-01-28 17:12 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\Help
2014-01-26 20:22 - 2013-11-21 00:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\bilder
2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip
2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip
2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485}
2014-01-26 17:24 - 2013-08-03 19:09 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\CrashDumps
2014-01-26 12:11 - 2013-11-07 14:54 - 00000000 ___DC () C:\Program Files\AntiToolbar
2014-01-25 16:55 - 2013-07-31 20:43 - 00000000 __RDC () C:\Users\Daniel\Desktop\Dj Musik
2014-01-24 17:14 - 2013-09-06 12:54 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\.minecraft
2014-01-23 14:11 - 2013-12-09 01:50 - 00002036 ____C () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-01-23 14:11 - 2013-12-09 01:50 - 00001976 ____C () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-01-23 14:10 - 2013-12-21 23:19 - 00080184 ____C (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 01038072 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00421704 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00334136 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-23 14:10 - 2013-12-09 01:49 - 00078648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00043152 ____C (AVAST Software) C:\Windows\avastSS.scr
2014-01-23 14:09 - 2013-12-09 01:48 - 00440672 ____C (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-01-23 12:59 - 2013-11-01 16:13 - 00000000 ___DC () C:\Users\Daniel\Downloads\programe
2014-01-23 12:58 - 2013-11-01 16:12 - 00000000 ___DC () C:\Users\Daniel\Downloads\rar verzeichnisse
2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF}
2014-01-21 22:30 - 2013-08-06 00:06 - 00000000 ___DC () C:\ProgramData\firebird
2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker
2014-01-21 15:22 - 2013-08-01 16:05 - 00000000 ___DC () C:\Users\Daniel\Documents\Manfred
2014-01-20 21:40 - 2013-08-01 22:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Utherverse
2014-01-16 22:58 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 22:58 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 22:58 - 2013-07-31 21:11 - 00003822 ____C () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-16 15:16 - 2013-12-08 20:28 - 00000000 ___DC () C:\Users\Daniel\Desktop\programme
2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup
2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee
2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\ProgramData\Screaming Bee
2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee
2014-01-16 14:38 - 2013-07-31 21:10 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Adobe
2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-16 14:37 - 2013-10-20 00:56 - 00000000 ___DC () C:\ProgramData\Oracle
2014-01-16 14:37 - 2013-07-31 21:11 - 00000000 ___DC () C:\Program Files (x86)\Java
2014-01-16 14:28 - 2014-01-16 14:29 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java
2014-01-16 14:27 - 2013-12-16 02:22 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\BitTorrent
2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC
2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk
2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini
2014-01-16 13:45 - 2013-07-31 18:47 - 00000000 ___DC () C:\Users\Daniel
2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk
2014-01-16 13:42 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2014-01-16 13:38 - 2013-11-19 18:45 - 00000000 ___DC () C:\Users\Daniel\Desktop\sims
2014-01-16 13:38 - 2013-08-21 22:22 - 00000000 ___DC () C:\Users\Daniel\Desktop\spiele
2014-01-15 13:45 - 2014-01-15 08:15 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 13:44 - 2014-01-15 08:15 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 13:44 - 2009-07-14 03:34 - 00000634 ____C () C:\Windows\win.ini
2014-01-15 13:43 - 2013-08-01 10:11 - 00000000 ___DC () C:\Windows\system32\MRT
2014-01-15 13:38 - 2013-07-31 22:46 - 86054176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 22:29 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8
2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio
2014-01-12 22:27 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design
2014-01-12 22:25 - 2013-11-30 14:03 - 00000000 ___DC () C:\Program Files (x86)\Franzis
2014-01-12 00:00 - 2013-11-20 00:00 - 00198156 ____C () C:\Windows\PFRO.log
2014-01-11 09:50 - 2013-09-20 20:07 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk
2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games
2014-01-11 09:48 - 2013-07-31 18:53 - 00000000 __HDC () C:\Program Files (x86)\InstallShield Installation Information
2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences
2014-01-10 07:10 - 2013-10-16 09:23 - 00000000 ___DC () C:\Users\Daniel\Documents\Mama 2013
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ
2014-01-09 02:28 - 2013-08-03 15:10 - 00000000 __RDC () C:\Users\Daniel\Dropbox
2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone
2014-01-08 21:46 - 2013-08-19 06:16 - 00000919 ____C () C:\Users\Public\Desktop\VLC media player.lnk
2014-01-08 15:34 - 2013-08-03 15:06 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Dropbox
2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk
2014-01-08 06:43 - 2013-07-31 21:36 - 00001612 ____C () C:\Users\Daniel\Desktop\DivX Movies.lnk
2014-01-08 06:43 - 2013-07-31 21:31 - 00000000 ___DC () C:\Program Files (x86)\DivX
2014-01-08 06:43 - 2013-07-31 21:29 - 00000000 ___DC () C:\ProgramData\DivX
2014-01-08 06:42 - 2013-09-10 00:46 - 00001091 ____C () C:\Users\Public\Desktop\DivX Converter.lnk
2014-01-08 06:40 - 2014-01-08 06:40 - 00000000 ____C () C:\END
2014-01-05 18:18 - 2014-01-05 18:16 - 286128963 ____C () C:\Users\Daniel\Documents\MCGame_Complete_2014-01-05_18-16-30_Backup.mcgame
Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\ginstall.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\vlc-2.1.2-win64.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-29 00:09
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-02-2014
Ran by Daniel at 2014-02-04 17:58:16
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Internet Security (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Internet Security (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Internet Security (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
4shared Desktop (x32 Version: - )
64 Bit HP CIO Components Installer (Version: 4.2.1 - Hewlett-Packard) Hidden
AC3Filter 2.6.0b (x32 Version: 2.6.0b - Alexander Vigovsky)
AChat 1.17 high detail textures and additional music (x32 Version: - AChat Animation Studios)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (x32 Version: 1.2.443 - Adobe Systems Incorporated)
Adobe Acrobat 9 Pro - English, Français, Deutsch (x32 Version: 9.5.5 - Adobe Systems) Hidden
Adobe Acrobat 9.5.5 - CPSID_83708 (x32 Version: - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS4 (x32 Version: 4 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS4 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe CMaps CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Recommended Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color Video Profiles CS CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 4 Design Premium (x32 Version: 4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Design Premium (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS4 (x32 Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Dynamiclink Support (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 Extension - Flash Lite STI others (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 STI-other (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Fonts All (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS4 (x32 Version: 14.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Application Feature Set Files (Roman) (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Common Base Files (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Icon Handler (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 (x32 Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CS4 Importer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (x32 Version: 1.1 - Adobe Systems Incorporated)
Adobe Output Module (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 Support (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Search for Help (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Service Manager Extension (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe SGM CS4 (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.0 (x32 Version: 12.0.7.148 - Adobe Systems, Inc.)
Adobe SING CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS4 (x32 Version: 6.0.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS4 Server (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (x32 Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetCMYK (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetRGB (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Age of Wonders Shadow Magic (x32 Version: - )
Aimersoft DRM Media Converter(Build 1.4.7.2) (x32 Version: - Aimersoft Software)
AION Free-to-Play (x32 Version: - Gameforge)
Aiseesoft Total Video Converter Platinum 7.1.10 (x32 Version: 7.1.10 - Aiseesoft Studio)
Ancient Weapon Sounds (x32 Version: 2.1.0 - Screaming Bee)
ANNO 1503 (x32 Version: - )
Anno 1602 (x32 Version: - )
Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03 - Sunflowers)
Anno 1701 (x32 Version: 1.04 - Sunflowers)
ANNO 2070 (x32 Version: 1.0.0.0 - Ubisoft)
AntiToolbar (Version: 1.0.0.5 - Reimage)
Anti-Twin (Installation 07.08.2013) (x32 Version: - Joerg Rosenthal, Germany)
Ashampoo Burning Studio 12 v.12.0.5 (x32 Version: 12.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 14 v.14.0.1 (x32 Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander (x32 Version: 8.3.2 - ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer (x32 Version: 3.12.0 - ashampoo GmbH & Co. KG)
Ashampoo Snap (x32 Version: 3.4.1 - ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 10 v.10.2.6 (x32 Version: 10.02.06 - Ashampoo GmbH & Co. KG)
Aurora Blu-ray Media Player (x32 Version: 2.13.4.1435 - Aurora Software Inc.)
avast! Internet Security (x32 Version: 9.0.2013 - Avast Software)
BitTorrent (HKCU Version: 7.8.2.30332 - BitTorrent Inc.)
Blue Satin Skin (x32 Version: 2.2.0 - Screaming Bee)
BufferChm (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Caesar 3 (x32 Version: - )
Caesar IV (x32 Version: 1.2 - Tilted Mill Entertainment)
Cake Mania - Back To The Bakery (HKCU Version: 1.0.0.0 - eGames)
CCleaner (Version: 4.08 - Piriform)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.)
CloneDVD 6.0.0.1 (x32 Version: - Copyright (C) 2003-2012 Aviosoft.)
Comic Sound Pack (x32 Version: 2.1.0 - Screaming Bee)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
concept/design Video Jukebox (x32 Version: 1.3.0.0 - concept/design GmbH)
Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Contents (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
Corel KPT Collection (x32 Version: 1.0.0.46 - Corel Corporation)
Corel KPT Collection (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39 - Corel Corporation) Hidden
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66 - Corel Corporation) Hidden
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40 - Corel Corporation) Hidden
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183 - Corel Corporation)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
Corel PaintShop Pro X6 (x32 Version: 16.0.0.113 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
Corel Shell Extension - 64Bit (Version: 14.0 - Corel Corporation) Hidden
Corel VideoStudio Pro X5 (x32 Version: 15.0.0.258 - Corel Corporation)
CorelDRAW Essentials 4 - Content (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Draw (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Extra Content (x32 Version: - Corel Corporation)
CorelDRAW Essentials 4 - Extra Content (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Filters (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - ICA (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - IPM - No VBA (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang BR (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang DE (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang EN (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang ES (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang FR (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang IT (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Lang NL (x32 Version: 4.0 - Uw bedrijfsnaam) Hidden
CorelDRAW Essentials 4 - PHOTO-PAINT (x32 Version: 4.0 - Corel Corporation) Hidden
CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: - Corel Corporation)
CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: 1.1 - Corel Corporation) Hidden
CorelDRAW Essentials 4 (x32 Version: - Corel Corporation)
CorelDRAW Essentials 4 (x32 Version: 4.0 - Corel Corporation) Hidden
Creatures of Darkness (x32 Version: 3.3.0 - Screaming Bee LLC)
CustomerResearchQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3418 - CyberLink Corp.) Hidden
CyberLink MediaShow (x32 Version: 5.0.1410a - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.0.1410a - CyberLink Corp.) Hidden
CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a - CyberLink Corp.)
CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a - CyberLink Corp.) Hidden
CyberLink PhotoNow (x32 Version: 1.1.0.6904 - CyberLink Corp.)
CyberLink PhotoNow (x32 Version: 1.1.0.6904 - CyberLink Corp.) Hidden
CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3802 - CyberLink Corp.) Hidden
CyberLink PowerDirector (x32 Version: 8.0.3224a - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.3224a - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02 - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink PowerProducer (x32 Version: 5.0.2.2429 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.2.2429 - CyberLink Corp.) Hidden
CyberLink YouCam (x32 Version: 3.1.3428 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.1.3428 - CyberLink Corp.) Hidden
Darkest of Days (x32 Version: 1.0 - 8monkey Labs)
Deep Space Voices (x32 Version: 3.3.0 - Screaming Bee)
Delete Virtual-Mate Launcher (x32 Version: 1.0.0 - Interlex Inc.)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden
DeviceDiscovery (x32 Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Die Siedler III Gold Edition (x32 Version: - )
Die Sims™ 3 (x32 Version: 1.63.5 - Electronic Arts)
Die Sims™ 3 70er, 80er & 90er Accessoires (x32 Version: 17.0.77 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Inselparadies (x32 Version: 19.0.101 - Electronic Arts)
Die Sims™ 3 Into the Future (x32 Version: 21.0.150 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (x32 Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Movie-Accessoires (x32 Version: 20.0.53 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (x32 Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (x32 Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84 - Electronic Arts)
Die Sims™ 3 Wildes Studentenleben (x32 Version: 18.0.126 - Electronic Arts)
Die*Sims™*3 Erstelle einen Sim (x32 Version: 1.0.26 - Electronic Arts)
DivX-Setup (x32 Version: 2.6.1.90 - DivX, LLC)
DivxToDVD 0.5.2b (x32 Version: 0.5.2b - VSO-Software SARL)
Drakensang (x32 Version: - dtp)
Dream Pinball 3D (x32 Version: 1.1.0.0 - TopWare Interactive)
Dropbox (HKCU Version: 2.4.10 - Dropbox, Inc.)
DVDFab 9.0.6.3 (09/09/2013) (x32 Version: - Fengtao Software Inc.)
FaceFilter Studio 2 (x32 Version: 2.0 - Reallusion)
Fantasy Sound Pack (x32 Version: 1.1.0 - Screaming Bee)
Fantasy Voice Pack (x32 Version: 1.3.0 - Screaming Bee)
Farm Animal Sounds (x32 Version: 1.1.0 - Screaming Bee)
Female Voice Pack (x32 Version: 3.3.1 - Screaming Bee)
FileViewPro (Version: 4.0 - stfx, Ath)
Firebird 2.5.0.26074 (Win32) (x32 Version: 2.5.0.26074 - Firebird Project)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0 - MAGIX AG)
FRANZIS onlineTV 8 (x32 Version: 8.5.0.10 - FRANZIS Verlag GmbH)
Free Audio Dub version 1.7.9.908 (x32 Version: 1.7.9.908 - DVDVideoSoft Ltd.)
Free AVI Video Converter version 5.0.28.827 (x32 Version: 5.0.28.827 - DVDVideoSoft Ltd.)
Furry Voices for Second Life (x32 Version: 1.3.0 - Screaming Bee)
Galactic Voices (x32 Version: 1.3.0 - Screaming Bee)
Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0 - Gameforge)
GameSpy Arcade (x32 Version: - )
Ghost Recon Online (EU) (HKCU Version: 1.34.1166.2 - Ubisoft)
Google Chrome (x32 Version: 32.0.1700.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Haali Media Splitter (x32 Version: - )
HP Color LaserJet CM1312 MFP Series 5.1 (Version: 5.1 - HP)
HP Customer Participation Program 10.0 (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (Version: 10.0 - HP)
hppCLJCM1312 (x32 Version: 005.001.00142 - Hewlett-Packard) Hidden
hppFaxDrvCM1312 (x32 Version: 005.000.00001 - Hewlett-Packard) Hidden
hppFaxUtilityCM1312 (x32 Version: 005.001.00137 - Ihr Firmenname) Hidden
hppFonts (x32 Version: 001.001.00061 - Hewlett-Packard) Hidden
hppManualsCM1312 (x32 Version: 005.001.00145 - Ihr Firmenname) Hidden
hppQFolderCM1312 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
hppScanToCM1312 (x32 Version: 005.001.00140 - Ihr Firmenname) Hidden
hppSendFaxCM1312 (x32 Version: 005.000.00001 - Ihr Firmenname) Hidden
hppusgCM1312 (x32 Version: 1.1.0.1 - Hewlett-Packard) Hidden
ICA (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
ICA (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
ICA (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IMVU Avatar Chat Software (HKCU Version: - )
Insaniquarium Deluxe 1.0 (x32 Version: - )
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2827 - Intel Corporation)
IPM_PSP_COM (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
IPM_PSP_COM (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.0.0.113 - Corel Corporation) Hidden
IPM_VS_Pro (x32 Version: 15.0 - Corel Corporation) Hidden
ISCOM (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
King Arthur - The Role-playing Wargame (x32 Version: - NeoCoreGames)
kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
LastChaosGER (x32 Version: 1.00.000 - Barunsongames CO., LTD.)
Launch Manager (x32 Version: 1.5.1.2 - Wistron Corp.)
Magic ISO Maker v5.5 (build 0272) (x32 Version: - )
MagicDisc 2.7.106 (x32 Version: - )
MAGIX Burn routines (Version: 11.0.0.233 - MAGIX AG)
MAGIX Content und Soundpools (x32 Version: 1.0.0.0 - MAGIX AG)
MAGIX Goya burnR (MSI) (Version: 4.3.2.0 - MAGIX AG) Hidden
MAGIX Goya burnR (MSI) (x32 Version: 4.3.2.0 - MAGIX AG)
MAGIX Independence Libraries Common Files (Version: 3.1.0.0 - MAGIX AG) Hidden
MAGIX Independence Libraries Common Files (x32 Version: 3.1.0.0 - MAGIX AG)
MAGIX Independence Pro 3.1 RTAS-Plugins (Version: 3.1.0.0 - MAGIX AG) Hidden
MAGIX Independence Pro 3.1 RTAS-Plugins (x32 Version: 3.1.0.0 - MAGIX AG)
MAGIX Independence Pro 3.1 VST-Plugins (Version: 3.1.0.0 - MAGIX AG) Hidden
MAGIX Independence Pro 3.1 VST-Plugins (x32 Version: 3.1.0.0 - MAGIX AG)
MAGIX Independence Pro Software Suite 3.1 (Version: 3.1.0.69 - MAGIX AG) Hidden
MAGIX Independence Pro Software Suite 3.1 (x32 Version: 3.1.0.69 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Demosongs) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium (Demosongs) (x32 Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Einführungsvideos) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium (Einführungsvideos) (x32 Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (x32 Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium (Visuals) (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium (Visuals) (x32 Version: 1.0.0.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium (x32 Version: 19.0.1.36 - MAGIX AG)
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Premium Update (Version: 19.0.6.58 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker Hip Hop Edition 5 (Version: 19.0.5.57 - MAGIX AG) Hidden
MAGIX Music Maker Hip Hop Edition 5 (x32 Version: 19.0.5.57 - MAGIX AG)
MAGIX Music Maker Hip Hop Edition 5 Trial Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (Version: 17.0.2.6 - MAGIX AG) Hidden
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (x32 Version: 17.0.2.6 - MAGIX AG)
MAGIX Music Maker Techno Edition 5 (Version: 19.0.5.57 - MAGIX AG) Hidden
MAGIX Music Maker Techno Edition 5 (x32 Version: 19.0.5.57 - MAGIX AG)
MAGIX Music Maker Techno Edition 5 Trial Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Screenshare (x32 Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG)
Male Voice Pack (x32 Version: 1.3.0 - Screaming Bee)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Mass Effect (x32 Version: 1.00 - Electronic Arts, Inc.)
Medion Home Cinema (x32 Version: 8.0.2213 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2213 - CyberLink Corp.) Hidden
Meine kleine Kuchenbäckerei (x32 Version: 1.0 - rondomedia)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Mission Pack (x32 Version: - )
MorphVOX Pro (x32 Version: 4.3.13 - Screaming Bee)
MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42 - The Firebird Project)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
My Game Long Name (Version: - Epic Games, Inc.)
MySQL Connector/ODBC 3.51 (x32 Version: 3.51.12 - MySQL AB)
Notepad++ (x32 Version: 6.5.1 - Notepad++ Team)
Nutella EstaThe Snack and Drink (x32 Version: - )
NVIDIA PhysX (x32 Version: 9.09.0814 - NVIDIA Corporation)
OpenAL (x32 Version: - )
Opera 12.16 (x32 Version: 12.16.1860 - Opera Software ASA)
Origin (x32 Version: 9.3.10.4710 - Electronic Arts, Inc.)
PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Personal ID (x32 Version: 1.8.5.202 - coolspot AG)
Personality Voices (x32 Version: 1.0.0 - Screaming Bee)
Phoenix Viewer 1.6.0.1691 (x32 Version: - PhoenixViewer.com)
Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PlanetSide 2 (HKCU Version: 1.0.3.183 - Sony Online Entertainment)
Power MP3 WMA Converter 2011, (ver 6.1) (x32 Version: 6.1 - CooolSoft, Inc.)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.13 - ProtectDisc Software GmbH)
PSPPContent (x32 Version: 15.3.0.8 - Corel Corporation) Hidden
PSPPContent (x32 Version: 16.0.0.113 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.1.0.18 - Corel Corporation) Hidden
PSPPro64 (Version: 15.0.0.183 - Corel Corporation) Hidden
PSPPro64 (Version: 16.0.0.113 - Corel Corporation) Hidden
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
RapidCRC 0.6.1 (x32 Version: 0.6.1 - Sebastian Ewert)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6237 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30121 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (x32 Version: 1.00.0180 - REALTEK Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group)
SAM3 (remove only) (x32 Version: - )
Samplitude Music Studio 2013 (Demoprojekte) (Version: 1.0.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 2013 (Demoprojekte) (x32 Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 2013 (Independence) (Version: 1.1.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 2013 (Independence) (x32 Version: 1.1.0.0 - MAGIX AG)
Samplitude Music Studio 2013 (Objekt-Synthesizer) (Version: 1.0.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 2013 (Objekt-Synthesizer) (x32 Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (Version: 1.0.0.0 - MAGIX AG) Hidden
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (x32 Version: 1.0.0.0 - MAGIX AG)
Samplitude Music Studio 2013 (Version: 19.0.0.15 - MAGIX AG) Hidden
Samplitude Music Studio 2013 (x32 Version: 19.0.0.15 - MAGIX AG)
Samplitude Music Studio 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.1800.0 - SAMSUNG Electronics Co., Ltd.)
Sandlot Games Client Services 1.2.2 (x32 Version: - Sandlot Games)
Schriftenbibliothek (x32 Version: - )
Sci-Fi 2 Sound Pack (x32 Version: 1.3.0 - Screaming Bee)
Sci-Fi Sound Pack (x32 Version: 1.1.0 - Screaming Bee)
Sci-Fi Voice Pack (x32 Version: 1.3.0 - Screaming Bee)
SecondLifeViewer (remove only) (x32 Version: - )
Secret City (x32 Version: 1.9.4662 - Utherverse Digital Inc)
Setup (x32 Version: 15.0.0.183 - Ihr Firmenname) Hidden
Setup (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
Setup (x32 Version: 16.0.0.113 - Ihr Firmenname) Hidden
Share (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
Share64 (Version: 15.0.0.258 - Corel Corporation) Hidden
SHOUTcast Source DSP Plug-in v2 (x32 Version: 2.3.2 - Nullsoft, Inc)
Sid Meier's Pirates! (x32 Version: 1.00.0000 - Firaxis Games)
Sid Meier's Pirates! (x32 Version: 1.00.0000 - Firaxis Games) Hidden
Sierra-Dienstprogramme (x32 Version: - )
Skype™ 6.13 (x32 Version: 6.13.104 - Skype Technologies S.A.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
SmartTools Publishing • Outlook LockOutlook (x32 Version: v4.00 - SmartTools Publishing)
Spooky Sounds (x32 Version: 2.1.0 - Screaming Bee)
Star Trek Online (x32 Version: - Cryptic Studios)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 14.0.19.0 - Synaptics Incorporated)
System Requirements Lab for Intel (x32 Version: 4.5.15.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKCU Version: 3.0.13 - TeamSpeak Systems GmbH)
TERA (x32 Version: 7 - Gameforge Productions GmbH)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0 - Magix Development GmbH)
Translator Fun Voice Pack (x32 Version: 1.5.0 - Screaming Bee)
TrayApp (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Virtual DJ Pro Full - Atomix Productions (x32 Version: - )
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden
VLC media player 2.1.2 (Version: 2.1.2 - VideoLAN)
VSClassic (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
VSHelp (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
VSPro (x32 Version: 15.0.0.258 - Corel Corporation) Hidden
WebReg (x32 Version: 100.0.170.000 - Hewlett-Packard) Hidden
Winamp (x32 Version: 5.65 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Media Encoder 9 Series (x32 Version: - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)
Worms Armageddon (x32 Version: - )
Worms World Party (x32 Version: - )
X10 Hardware(TM) (x32 Version: - )
==================== Restore Points =========================
26-01-2014 15:36:15 Windows Update
28-01-2014 16:14:26 Microsoft Office 2003 Web Components wird installiert
30-01-2014 14:10:00 Windows Update
03-02-2014 18:03:34 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2014-02-03 18:14 - 00000871 ___AC C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 rad.msn.com
==================== Scheduled Tasks (whitelisted) =============
Task: {0052B3E0-CD48-4645-9B05-2DD2D5FE59F2} - System32\Tasks\{7F2BEF3C-1702-4CE3-92A5-31BBBA30A504} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {0146E4C2-13DC-4368-A6B7-D5CF252D6997} - System32\Tasks\{EEEDB95D-08F3-442A-8D8B-D3DA84E659E3} => E:\AUTORUN.EXE
Task: {05463694-75B9-4BE3-9B3B-800D10AB67E5} - System32\Tasks\{92A80300-B86A-4486-83DF-40A2210AD209} => C:\Voelker2\DieVölker2\bin\Game.exe
Task: {10CB193C-53C1-4E38-BC3B-8BE0F0EFBA30} - System32\Tasks\{0FF87F05-F93F-4EA6-BB4C-42AC41C141F3} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {141DAE6E-AB19-4698-A390-AA3577138437} - System32\Tasks\{94C030CB-4D91-45C1-A34E-BBA10E012375} => E:\S2\SETUP.EXE
Task: {146E7991-4825-4936-A698-6A2A9ABCB104} - System32\Tasks\{3C36117E-8926-4783-AC4C-D1B8C38F2D02} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {158F82B5-9D27-41D4-9C70-42B888C7C636} - System32\Tasks\{40CF2673-31FE-42B2-B5D6-9EDA7CA7E074} => E:\S2\SETUP.EXE
Task: {15EBF901-034E-4560-86AD-430162A3F85F} - System32\Tasks\{6D05EFDD-B539-4AA5-AA7C-3C3F5EA8B7E7} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {16685128-43F7-4FEB-8EF9-8ED19E50FAB3} - System32\Tasks\{BDEFC5EB-FF3E-4DB9-922F-18F92A8F9501} => E:\S2\SETUP.EXE
Task: {182BD8E5-8F56-4489-B03E-752E05F8B240} - System32\Tasks\{CDA55D36-8DF0-41E4-B91F-A867A295CA40} => E:\S2\SETUP.EXE
Task: {1B18848F-9874-4EF8-827B-D1940EB66F97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.)
Task: {1F9EF73A-547A-499D-81A8-38F5BAAB9D90} - System32\Tasks\{1FB1189B-4A13-4061-8C74-1464D7BFBABF} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {21712D36-1001-44CB-854A-5AD64B1DC146} - System32\Tasks\{BA3F1772-A7D2-4B5A-A09C-0209BB7D8008} => E:\S2\SETUP.EXE
Task: {2275B0EB-3BB1-4D92-AAA9-9E3AF4E64338} - System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {23FC5B23-2D5F-41BB-8197-E5BF90F1094C} - System32\Tasks\{68D46493-E0E4-4139-9E3D-DE0764CB9EA8} => E:\AUTORUN.EXE
Task: {256AB0F1-34E6-44DD-8476-F7FCA8DAAA9B} - System32\Tasks\{966F5682-3102-46EB-9C86-3634FFFE6CFA} => E:\S2\SETUP.EXE
Task: {290DA27A-6B42-4FC5-BC9D-B287608BBF99} - System32\Tasks\{5D69D029-4F89-42C2-8F71-F657145E1685} => C:\Users\Daniel\Desktop\FFS20_Deu_Full.exe
Task: {29CE8A34-DC14-442B-8626-4D134A82C9AE} - System32\Tasks\{E856EACC-A5FB-412B-8CFA-3BB71A8C8E08} => E:\S2\SETUP.EXE
Task: {2B0CD943-0873-489B-8C70-85C6370771A3} - System32\Tasks\{12AE0E5B-084A-4433-90FF-9E76E054AACB} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {2B1FFE5E-812A-4AEC-8869-70FAAAC46EE2} - System32\Tasks\{8FB71093-FDC3-4660-9BA9-AB685F171D45} => C:\Program Files (x86)\Anno 1701\Anno1701.exe [2007-10-20] (Related Designs Software GmbH)
Task: {2BBFF583-2992-496F-BC5F-E4CFA4144CC7} - System32\Tasks\{AED448DE-9E65-4A47-8CED-BCACCE365CB7} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {316BBC71-9744-421E-B08F-4824A90A29EA} - System32\Tasks\{37FCF798-62A0-4DDD-8915-98DF52D67371} => C:\Users\Daniel\Desktop\MassEffect_BDtS_G_a.exe
Task: {35440900-5B0D-45C6-9CA3-1D1630231902} - System32\Tasks\{A1F70949-7DB6-4A23-8B76-293576F1B899} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {40F39DB0-F75F-4F8F-8AA5-A7327A1E290D} - System32\Tasks\{AE5B5A87-81B2-42A9-9A74-550525F4940F} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {41A87A6B-C582-4F2D-8597-A723964CC71A} - System32\Tasks\{5D0B6982-DE4D-4CC0-AB2B-98754F07700B} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {451D621F-6FFD-4089-93FE-270A9D2DE6DA} - System32\Tasks\{E2B047D4-D8BD-4693-B5B3-010EF3D97A56} => E:\bhvstart.exe
Task: {47DF6057-A1FD-4A77-A813-3F691D2DDE1F} - System32\Tasks\{810EBF1A-8F17-441C-B563-3C43E33C03CD} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {48A3C185-9AC2-4F2F-940D-DA73CE675CE4} - System32\Tasks\{073A5D00-C4F9-4990-A885-8D366629D006} => E:\S2\SETUP.EXE
Task: {4C820340-8F6B-4CEC-AA89-8B64222456B0} - System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485} => C:\Users\Daniel\Desktop\spiele\pokegen\programm\c gear\PokeCGear.exe [2011-01-14] ()
Task: {5293CE73-94BE-449D-95AD-5BE339716D0D} - System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667} => c:\program files (x86)\opera\opera.exe [2013-11-24] (Opera Software)
Task: {54C90F0A-8143-4086-BD6C-E8F6173D6B16} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-23] (AVAST Software)
Task: {5A330F3D-65AE-4D4C-81D4-E64FEA83D5D9} - System32\Tasks\{E8DB0424-DD34-4B5E-ABA1-8F87BA189D0B} => C:\Program Files\FileViewPro\FileViewPro.exe [2013-11-18] ()
Task: {5E3F78E3-D239-4E26-B09A-1E1D02A3A0F4} - System32\Tasks\{D2222B24-F51D-4DBD-B431-AC065B5CBCA9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {6BD68BC3-51C8-411C-AFA6-8F6729835575} - System32\Tasks\{131AF74A-19DF-443F-B4C1-82A8AA55497A} => E:\S2\SETUP.EXE
Task: {7A4636B7-F05B-4249-8AB0-DAFF11C962A7} - System32\Tasks\{B515B6F0-4FFF-4CBA-893E-D3FCA3106B64} => E:\S2\SETUP.EXE
Task: {7C9D8C03-6A35-487F-9016-E7A5E53BA833} - System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {7EF75918-6B2B-4300-888A-ED73DEBECBBF} - System32\Tasks\{3BE362E2-E75B-429E-9FC4-7B3B8D11B963} => E:\S2\SETUP.EXE
Task: {805D9E42-8317-4C78-82F6-946B5DE8A0C7} - System32\Tasks\{678365FC-379B-4E24-8568-D579CE2F2C7E} => E:\S2\SETUP.EXE
Task: {8C335720-465F-4ACF-97C0-6E46FA18E7E9} - System32\Tasks\{F15A6F01-F619-4817-90FB-C09F19CB63F5} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {91F56EAD-6C3B-436A-A540-1B3C95D9A052} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-16] (Adobe Systems Incorporated)
Task: {9431E549-F644-4FE1-98C5-C72AC9CD37ED} - System32\Tasks\{652A2BC8-55C4-41C0-8B47-06EA583CE2D3} => E:\S2\SETUP.EXE
Task: {953A719E-FDEC-4852-BCC9-1459D68B3BC4} - System32\Tasks\{FBB1652A-75F8-4D32-BA6C-0BD7071B4B4A} => E:\S2\SETUP.EXE
Task: {9C100C66-5F10-4548-8B69-E3CDB0BF606D} - System32\Tasks\{4994E248-B0AD-46CA-AF2E-310612827F2E} => E:\S2\SETUP.EXE
Task: {9E16B815-46D6-4F9B-A140-C810E8BD3C46} - System32\Tasks\{87BD9F31-A0C4-47D4-83F6-B3EEAB2B4AEB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {A4F101B4-2127-4730-A5A0-220A141EE63D} - System32\Tasks\{F6CB6A22-E114-4CB3-B3C9-953D284AE683} => C:\Users\Daniel\Desktop\FFS20_Deu_Full.exe
Task: {AB9A30AF-E579-445E-A157-A50D32A862FA} - System32\Tasks\{1BC5009A-C623-4DA0-9118-CADA3959EEAA} => E:\S2\SETUP.EXE
Task: {AC3B6A3B-E516-41A0-BE7B-AE74D6F05EE5} - System32\Tasks\{26F8FEE5-EBEF-4BF2-9960-B3F3C8A758EC} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {ADCDF35A-0D81-4315-B30C-9FAC42DDAE19} - System32\Tasks\{FBFC2A81-70A5-4C34-AD06-B257CD752FE9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {B0ADE302-1717-472E-912A-21887DE485B5} - System32\Tasks\{C5EB8D0E-8B8B-43C8-8016-A6FCC462946D} => C:\Program Files (x86)\CloneDVD6\MainApp.EXE [2012-11-27] (Aviosoft.)
Task: {B48CDE2F-2934-4D81-BA37-A4CC53492B70} - System32\Tasks\{7126DAF6-E7A6-4025-B30F-0E113A7B46D4} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {B6184494-F268-4AA5-A390-4FC97BCD71CE} - System32\Tasks\{AC7D1521-F5AE-49AD-9106-6809CBEB4215} => E:\S2\SETUP.EXE
Task: {BCEBC503-CF3B-45A5-9650-966FF580E545} - System32\Tasks\{B5DF1DB1-C0F9-480C-9281-BB0E6C2EB486} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {C191FDC0-4CF1-4F8F-9E82-10875ABED458} - System32\Tasks\{69044440-C839-428E-8079-6D3979B6842D} => E:\S2\SETUP.EXE
Task: {C409ADF5-FF12-4451-B6D1-ABF4D1DC6510} - System32\Tasks\{41DDBE48-43A3-48E0-9048-FF8D6F08DF4F} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {C67A266A-5DC1-41D6-BADD-BC0F4B90CCA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {C67C2332-CE25-4759-ACB1-21EE7AFDC3FA} - System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF} => C:\Users\Daniel\Downloads\STO_Online_ServerChecker.exe
Task: {CD11ECCA-157C-43CA-B7A7-35C95D3EB1E0} - System32\Tasks\{55B58783-E133-4F90-9909-7A0BA16C1073} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {CDE261B1-8B17-44EC-A7C1-47055128E765} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-11] (Google Inc.)
Task: {CFE9CA76-1416-4888-BDB0-CF30D54F1E41} - System32\Tasks\{BE174E91-202D-4B20-8B77-A9509C30AF97} => E:\S2\SETUP.EXE
Task: {D24DA4B0-1A08-4A6F-92AB-842D16821219} - System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {D5475704-31C1-4F9A-9F96-87742F55F1B8} - System32\Tasks\{396AB30D-E0FA-42C6-853F-325CA099A4CA} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {DAA47877-F275-4DC4-8719-853FA4CA95EE} - System32\Tasks\{663B9866-54C7-46F1-BAAF-0F7203E79B3B} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {E057A7C3-A541-43F2-9106-667F7102D12D} - System32\Tasks\{3B22FD6B-6978-4EC1-867B-3AEAC82D7C80} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {E062A614-05FF-4598-85EE-06AD7420CC8B} - System32\Tasks\{ED0A83FB-4A12-4E5A-B587-37357929ACB1} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {E92D482A-975D-487D-BF28-EAFEB9F3B2A1} - System32\Tasks\{DCB5CC94-301F-46D1-9D76-95232ED99F04} => E:\S2\SETUP.EXE
Task: {E9D3F432-A90C-4B1A-8088-6A66F9FF9253} - System32\Tasks\{0C327DCE-02DB-495E-B0EE-43000B4098DE} => C:\BlueByte\Siedler3\s3.exe [2000-02-15] (Blue Byte )
Task: {EC390F5C-2E7E-4509-A5AC-1586E03077EB} - System32\Tasks\{13AC6F75-921C-4FC2-9162-219DC0C4B4EB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {F423C561-80AB-48ED-B98F-22F5E35F9576} - System32\Tasks\{50E458ED-E7F4-4DB3-A9B8-E8FEBE776D73} => E:\DieVoelkerGE.exe
Task: {FA534E6C-82BF-413F-A76C-44FAF30F4156} - System32\Tasks\{A2C44D26-5E7A-4773-B378-D2EAB102F3DB} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-03-14 17:28 - 2013-03-14 17:28 - 00653824 ____C () C:\Program Files (x86)\4shared Desktop\CMenu64.dll
2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 ____C () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-29 13:39 - 2014-01-28 17:44 - 02166272 ____C () C:\Program Files\AVAST Software\Avast\defs\14012801\algo.dll
2014-02-04 17:55 - 2014-02-04 09:16 - 02168320 ____C () C:\Program Files\AVAST Software\Avast\defs\14020400\algo.dll
2013-07-31 20:06 - 2010-02-10 12:34 - 00031840 ____C () C:\Program Files (x86)\Cyberlink\Shared files\RichVideops.dll
2009-11-02 13:20 - 2009-11-02 13:20 - 00619816 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 13:23 - 2009-11-02 13:23 - 00013096 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2013-10-15 13:34 - 2009-02-27 15:39 - 00019968 ____C () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2013-12-09 01:49 - 2013-12-09 01:49 - 19336120 ____C () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-11-15 01:49 - 2013-11-15 01:49 - 00100688 ____C () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00835584 ____C () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00093696 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00094208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00057344 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00096256 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00062976 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00067072 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00158208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00312832 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00038912 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00073728 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2013-09-20 13:36 - 2013-11-24 18:08 - 00101888 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/04/2014 04:31:22 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: spoolsv.exe, Version: 6.1.7601.17777, Zeitstempel: 0x4f35fc1d
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000c4102
ID des fehlerhaften Prozesses: 0x77c
Startzeit der fehlerhaften Anwendung: 0xspoolsv.exe0
Pfad der fehlerhaften Anwendung: spoolsv.exe1
Pfad des fehlerhaften Moduls: spoolsv.exe2
Berichtskennung: spoolsv.exe3
Error: (02/02/2014 03:38:29 PM) (Source: Application Hang) (User: )
Description: Programm Md8Rntm.exe, Version 6.0.0.151 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ef4
Startzeit: 01cf202445ad1f84
Endzeit: 1420
Anwendungspfad: E:\RUNTIME\Md8Rntm.exe
Berichts-ID: a6c64675-8c17-11e3-8a96-00262dc36228
Error: (01/28/2014 05:03:37 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller) (User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.
System errors:
=============
Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:52:02 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:39 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:51:16 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Error: (02/04/2014 05:49:23 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10.
Microsoft Office Sessions:
=========================
Error: (02/04/2014 04:31:22 AM) (Source: Application Error)(User: )
Description: spoolsv.exe6.1.7601.177774f35fc1dntdll.dll6.1.7601.18247521eaf24c000037400000000000c410277c01cf1d8d9b889c6aC:\Windows\System32\spoolsv.exeC:\Windows\SYSTEM32\ntdll.dlld0cec5d3-8d4c-11e3-8a96-00262dc36228
Error: (02/02/2014 03:38:29 PM) (Source: Application Hang)(User: )
Description: Md8Rntm.exe6.0.0.151ef401cf202445ad1f841420E:\RUNTIME\Md8Rntm.exea6c64675-8c17-11e3-8a96-00262dc36228
Error: (01/28/2014 05:03:37 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:32 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/28/2014 05:03:31 PM) (Source: MsiInstaller)(User: Medion)
Description: Produkt: Microsoft Office Professional Edition 2003 -- Fehler 1309. Fehler beim Lesen von Datei: I:\Daniel\programme\MS.Office.2003.Pro.SP3.Enterprise.GERMAN\FILES\PFILES\MSOFFICE\OFFICE11\CLIPPIT.ACS. Systemfehler 3. Überprüfen Sie, ob die Datei existiert und ob Sie darauf zugreifen können.(NULL)(NULL)(NULL)(NULL)(NULL)
CodeIntegrity Errors:
===================================
Date: 2014-01-30 08:35:39.467
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-30 08:35:39.337
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-27 13:27:04.527
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-27 13:27:04.397
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-27 00:03:17.886
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-27 00:03:17.756
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-23 14:22:30.234
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-23 14:22:30.094
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-23 12:52:27.444
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-01-23 12:52:27.304
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 64%
Total physical RAM: 3893.49 MB
Available physical RAM: 1363.7 MB
Total Pagefile: 7785.16 MB
Available Pagefile: 4532.35 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (Boot) (Fixed) (Total:546.25 GB) (Free:64.79 GB) NTFS
Drive d: (Recover) (Fixed) (Total:48.83 GB) (Free:6.12 GB) NTFS
Drive e: (Daten Medium 19.10.2005 (2)) (CDROM) (Total:0.44 GB) (Free:0 GB) UDF
Drive g: (EOS_DIGITAL) (Removable) (Total:3.68 GB) (Free:0.09 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=546 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=49 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1023 MB) - (Type=12)
========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)
==================== End Of Log ============================
und das hier ist ein privat rechner kein gewerblich genutzter *gg* |
|
04.02.2014, 18:13
| #4 |
| | werbung in skype deaktivieren Die werbung ist normal hab ich auch,und wen es ein virus sein würde wer die werbung bestimmt nicht von Skype selber aber vieleicht gibt es ja ein plugin das die skype werbung ausblendet 
__________________ Mfg K1ramox |
|
04.02.2014, 18:18
| #5 |
| | werbung in skype deaktivieren nicht die standard werbung unten links XD oben beim chat ist die werbung und ich habe auch bei einen anderenr echner skype drauf und dort ist die nicht vorhanden  sie ist ja auch erst seit samstag in skype oben. vorher gar nix. ^^ |
|
04.02.2014, 18:33
| #6 |
| | werbung in skype deaktivieren Ja das ist normal aber ich glaub wen man ne ältere version von skype läd ist da auch keine werbung
__________________ --> werbung in skype deaktivieren |
|
04.02.2014, 18:36
| #7 |
| | werbung in skype deaktivieren ist aktuelste version ^^ und die habe ich auch beim anderen drauf ^^ |
|
04.02.2014, 20:04
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.02.2014, 20:12
| #9 |
| | werbung in skype deaktivierenCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.02.05.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Daniel :: MEDION [administrator]
05.02.2014 15:23:19
mbar-log-2014-02-05 (15-23-19).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 310041
Time elapsed: 2 hour(s), 39 minute(s), 44 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
06.02.2014, 03:22
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Adware/Junkware/Toolbars entfernen 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2014, 13:38
| #11 |
| | werbung in skype deaktivierenFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014
Ran by Daniel (administrator) on MEDION on 06-02-2014 13:32:15
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Macrovision Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\Wbutton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-23] (AVAST Software)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [AdobeBridge] - [X]
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [ISUSPM] - C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-05-16] (Macrovision Corporation)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-490725143-3289892566-3385816065-1000\...\MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\start.exe
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
==================== Internet (Whitelisted) ====================
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://search.reimageplus.com/?sp=reimb&q={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Chrome:
=======
CHR HomePage:
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-11]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-11]
CHR Extension: (Turn Off the Lights) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-11]
CHR Extension: (Cake Mania Main Street) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohogdkongdgejlnndnnhamjgfnbfoon [2013-11-13]
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bolmkphclbnmjlbmibfcnfggbakghpck [2013-11-13]
CHR Extension: (Mangas und Comics auf Deutsch) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\chmidfbpiiicmkfimcbcoagpmchgmkpl [2013-11-13]
CHR Extension: (Monster Dash) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknghehebaconkajgiobncfleofebcog [2013-11-13]
CHR Extension: (Google-Suche) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-11]
CHR Extension: (Search by Image (by Google)) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2013-11-13]
CHR Extension: (avast! Online Security) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-09]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2013-11-13]
CHR Extension: (Cake Mania) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kckjnbilaljpiclmpmnomoapakjmoapj [2013-11-13]
CHR Extension: (SparkChess 6) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\khgabmflimjjbclkmljlpmgaleanedem [2013-11-13]
CHR Extension: (Sand 2) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\klicmgamjpclmbhppmdeamffedflmkcn [2013-11-13]
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-11]
CHR Extension: (Google Mail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-09]
==================== Services (Whitelisted) =================
S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [5101928 2014-01-23] (Reimage®)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-23] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-23] (AVAST Software)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2009-11-07] (X10)
==================== Drivers (Whitelisted) ====================
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2013-12-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-23] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [440672 2014-01-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-09] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-23] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-21] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-02-05] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
U3 DfSdkS;
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-06 13:29 - 2014-02-06 13:29 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Mozilla
2014-02-06 13:18 - 2014-02-06 13:18 - 00000626 ____C () C:\Users\Daniel\Desktop\JRT.txt
2014-02-06 13:01 - 2014-02-06 13:01 - 02082304 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2014-02-06 13:00 - 2014-02-06 13:01 - 01037530 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2014-02-06 07:41 - 2014-02-06 07:43 - 00000000 ___DC () C:\AdwCleaner
2014-02-06 07:40 - 2014-02-06 07:40 - 01166132 ____C () C:\Users\Daniel\Desktop\adwcleaner.exe
2014-02-05 13:43 - 2014-02-05 20:11 - 00000000 ___DC () C:\Users\Daniel\Desktop\mbar
2014-02-05 13:43 - 2014-02-05 13:43 - 00091352 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-05 13:38 - 2014-02-05 13:38 - 12589848 ____C (Malwarebytes Corp.) C:\Users\Daniel\Desktop\mbar-1.07.0.1009.exe
2014-02-04 18:47 - 2009-01-08 00:44 - 00000000 ___DC () C:\Users\Daniel\Desktop\RSVP
2014-02-04 17:58 - 2014-02-04 17:58 - 00061923 ____C () C:\Users\Daniel\Desktop\Addition.txt
2014-02-04 17:57 - 2014-02-06 13:32 - 00017663 ____C () C:\Users\Daniel\Desktop\FRST.txt
2014-02-04 17:57 - 2014-02-06 13:32 - 00000000 ___DC () C:\FRST
2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype
2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk
2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype
2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667}
2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm
2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works
2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip
2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip
2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485}
2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF}
2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker
2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup
2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee
2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-16 14:29 - 2014-01-16 14:28 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-16 14:29 - 2014-01-16 14:28 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java
2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC
2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\ProgramData\Screaming Bee
2014-01-16 14:17 - 2014-01-16 14:50 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee
2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk
2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini
2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk
2014-01-15 08:15 - 2014-01-15 13:45 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 08:15 - 2014-01-15 13:44 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 08:15 - 2013-11-27 02:41 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design
2014-01-12 22:25 - 2014-01-12 22:29 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8
2014-01-12 22:25 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design
2014-01-12 22:25 - 2012-03-01 11:08 - 00966144 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00877568 ____C (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00634880 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00522752 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00467968 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2014-01-12 22:25 - 2012-03-01 11:08 - 00467456 ____C (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2014-01-12 22:25 - 2012-02-11 21:07 - 00413696 ____C (Gabest) C:\Windows\SysWOW64\flvsplitter.ax
2014-01-12 22:25 - 2011-03-29 12:52 - 00962560 ____C (East Wind Software) C:\Windows\SysWOW64\advdaudio.ocx
2014-01-12 22:25 - 2011-03-29 12:52 - 00110080 ____C () C:\Windows\SysWOW64\advd.dll
2014-01-12 22:25 - 2011-03-29 12:52 - 00023040 ____C () C:\Windows\SysWOW64\auth.dll
2014-01-12 22:25 - 2003-08-07 14:01 - 00237568 ____C () C:\Windows\SysWOW64\lame_enc.dll
2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk
2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games
2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ
2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone
2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk
==================== One Month Modified Files and Folders =======
2014-02-06 13:32 - 2014-02-04 17:57 - 00017663 ____C () C:\Users\Daniel\Desktop\FRST.txt
2014-02-06 13:32 - 2014-02-04 17:57 - 00000000 ___DC () C:\FRST
2014-02-06 13:32 - 2013-08-01 16:23 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Skype
2014-02-06 13:29 - 2014-02-06 13:29 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Mozilla
2014-02-06 13:29 - 2013-11-07 14:54 - 00000000 ___DC () C:\Program Files\AntiToolbar
2014-02-06 13:28 - 2013-11-07 14:55 - 00001734 ____C () C:\Users\Public\Desktop\AntiToolbar.lnk
2014-02-06 13:28 - 2013-11-07 14:55 - 00000000 ___DC () C:\ProgramData\AntiToolbar
2014-02-06 13:21 - 2013-11-18 10:37 - 00009563 ____C () C:\Windows\setupact.log
2014-02-06 13:21 - 2013-11-11 16:47 - 00001106 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-06 13:21 - 2009-07-14 06:08 - 00000006 ___HC () C:\Windows\Tasks\SA.DAT
2014-02-06 13:20 - 2013-08-14 08:41 - 02029335 ____C () C:\Windows\WindowsUpdate.log
2014-02-06 13:18 - 2014-02-06 13:18 - 00000626 ____C () C:\Users\Daniel\Desktop\JRT.txt
2014-02-06 13:08 - 2013-07-31 21:11 - 00000884 ____C () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-06 13:05 - 2013-11-21 00:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\bilder
2014-02-06 13:01 - 2014-02-06 13:01 - 02082304 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2014-02-06 13:01 - 2014-02-06 13:00 - 01037530 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2014-02-06 12:57 - 2013-11-11 16:47 - 00001110 ____C () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-06 07:55 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-06 07:55 - 2009-07-14 05:45 - 00009888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 07:43 - 2014-02-06 07:41 - 00000000 ___DC () C:\AdwCleaner
2014-02-06 07:40 - 2014-02-06 07:40 - 01166132 ____C () C:\Users\Daniel\Desktop\adwcleaner.exe
2014-02-05 20:11 - 2014-02-05 13:43 - 00000000 ___DC () C:\Users\Daniel\Desktop\mbar
2014-02-05 20:11 - 2013-10-06 12:38 - 00000000 ___DC () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-05 14:29 - 2013-08-13 17:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\SecondLife
2014-02-05 13:43 - 2014-02-05 13:43 - 00091352 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-05 13:43 - 2013-08-02 16:40 - 00000000 ___DC () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-05 13:38 - 2014-02-05 13:38 - 12589848 ____C (Malwarebytes Corp.) C:\Users\Daniel\Desktop\mbar-1.07.0.1009.exe
2014-02-05 10:08 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 10:08 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 10:08 - 2013-07-31 21:11 - 00003822 ____C () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 09:58 - 2013-11-11 16:48 - 00002139 ____C () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-04 18:16 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\system32\NDF
2014-02-04 17:58 - 2014-02-04 17:58 - 00061923 ____C () C:\Users\Daniel\Desktop\Addition.txt
2014-02-04 00:29 - 2010-05-12 09:18 - 00699340 ____C () C:\Windows\system32\perfh007.dat
2014-02-04 00:29 - 2010-05-12 09:18 - 00149448 ____C () C:\Windows\system32\perfc007.dat
2014-02-04 00:29 - 2009-07-14 06:13 - 01619272 ____C () C:\Windows\system32\PerfStringBackup.INI
2014-02-03 18:33 - 2014-02-03 18:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Skype
2014-02-03 18:33 - 2013-08-01 16:23 - 00000000 ___DC () C:\ProgramData\Skype
2014-02-03 18:32 - 2014-02-03 18:32 - 00002699 ____C () C:\Users\Public\Desktop\Skype.lnk
2014-02-03 18:32 - 2014-02-03 18:32 - 00000000 __RDC () C:\Program Files (x86)\Skype
2014-02-03 18:24 - 2014-02-03 18:24 - 00003122 ____C () C:\Windows\System32\Tasks\{48B512DB-FFB4-4403-83ED-2F9407027667}
2014-02-03 17:19 - 2013-08-01 16:06 - 00000000 ___DC () C:\Users\Daniel\Documents\Youcam
2014-02-02 19:51 - 2013-08-19 06:16 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\vlc
2014-01-30 08:37 - 2013-12-09 01:49 - 00004182 ____C () C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-30 08:33 - 2013-11-18 10:37 - 03268424 ____C () C:\Windows\system32\FNTCACHE.DAT
2014-01-29 23:11 - 2013-11-19 16:01 - 00217648 ____C () C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-29 14:07 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\TS3Client
2014-01-28 20:27 - 2014-01-28 20:27 - 00004096 ___HC () C:\Users\Daniel\AppData\Local\keyfile3.drm
2014-01-28 17:13 - 2014-01-28 17:13 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Works
2014-01-28 17:13 - 2013-08-02 18:31 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Office
2014-01-28 17:12 - 2009-07-14 04:20 - 00000000 ___DC () C:\Windows\Help
2014-01-26 20:20 - 2014-01-26 20:20 - 00019369 ____C () C:\Users\Daniel\Downloads\klingon regular.zip
2014-01-26 20:06 - 2014-01-26 20:06 - 00117067 ____C () C:\Users\Daniel\Downloads\Fonts.zip
2014-01-26 17:24 - 2014-01-26 17:24 - 00003000 ____C () C:\Windows\System32\Tasks\{3E45EE9D-B270-4FAD-879C-F9D694DA3485}
2014-01-26 17:24 - 2013-08-03 19:09 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\CrashDumps
2014-01-25 16:55 - 2013-07-31 20:43 - 00000000 __RDC () C:\Users\Daniel\Desktop\Dj Musik
2014-01-24 17:14 - 2013-09-06 12:54 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\.minecraft
2014-01-23 14:11 - 2013-12-09 01:50 - 00002036 ____C () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-01-23 14:11 - 2013-12-09 01:50 - 00001976 ____C () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-01-23 14:10 - 2013-12-21 23:19 - 00080184 ____C (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 01038072 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00421704 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00334136 ____C (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-23 14:10 - 2013-12-09 01:49 - 00078648 ____C (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-23 14:10 - 2013-12-09 01:49 - 00043152 ____C (AVAST Software) C:\Windows\avastSS.scr
2014-01-23 14:09 - 2013-12-09 01:48 - 00440672 ____C (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-01-23 12:59 - 2013-11-01 16:13 - 00000000 ___DC () C:\Users\Daniel\Downloads\programe
2014-01-23 12:58 - 2013-11-01 16:12 - 00000000 ___DC () C:\Users\Daniel\Downloads\rar verzeichnisse
2014-01-23 12:55 - 2014-01-23 12:55 - 00002972 ____C () C:\Windows\System32\Tasks\{E83DE898-B285-4986-B5BE-9B943BC04BEF}
2014-01-21 22:30 - 2013-08-06 00:06 - 00000000 ___DC () C:\ProgramData\firebird
2014-01-21 15:56 - 2014-01-21 15:56 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\StarTrekOnlineServerChecker
2014-01-21 15:22 - 2013-08-01 16:05 - 00000000 ___DC () C:\Users\Daniel\Documents\Manfred
2014-01-20 21:40 - 2013-08-01 22:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Utherverse
2014-01-16 15:16 - 2013-12-08 20:28 - 00000000 ___DC () C:\Users\Daniel\Desktop\programme
2014-01-16 15:03 - 2014-01-16 15:03 - 00215188 ____C () C:\Users\Daniel\Documents\backup.mvbackup
2014-01-16 14:50 - 2014-01-16 14:50 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Screaming Bee
2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\ProgramData\Screaming Bee
2014-01-16 14:50 - 2014-01-16 14:17 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee
2014-01-16 14:38 - 2013-07-31 21:10 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\Adobe
2014-01-16 14:37 - 2014-01-16 14:37 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-16 14:37 - 2014-01-16 14:37 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-16 14:37 - 2013-10-20 00:56 - 00000000 ___DC () C:\ProgramData\Oracle
2014-01-16 14:37 - 2013-07-31 21:11 - 00000000 ___DC () C:\Program Files (x86)\Java
2014-01-16 14:28 - 2014-01-16 14:29 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-16 14:28 - 2014-01-16 14:29 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-16 14:28 - 2014-01-16 14:28 - 00000000 ___DC () C:\Program Files\Java
2014-01-16 14:27 - 2013-12-16 02:22 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\BitTorrent
2014-01-16 14:20 - 2014-01-16 14:20 - 00000000 ___DC () C:\Program Files (x86)\Screaming Bee LLC
2014-01-16 14:17 - 2014-01-16 14:17 - 00002074 ____C () C:\Users\Public\Desktop\MorphVOX Pro.lnk
2014-01-16 13:45 - 2014-01-16 13:45 - 00000269 ____C () C:\Users\Daniel\ts3.ini
2014-01-16 13:45 - 2013-07-31 18:47 - 00000000 ___DC () C:\Users\Daniel
2014-01-16 13:43 - 2014-01-16 13:43 - 00001212 ____C () C:\Users\Daniel\Desktop\TeamSpeak 3 Client.lnk
2014-01-16 13:42 - 2013-10-13 04:45 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2014-01-16 13:38 - 2013-11-19 18:45 - 00000000 ___DC () C:\Users\Daniel\Desktop\sims
2014-01-16 13:38 - 2013-08-21 22:22 - 00000000 ___DC () C:\Users\Daniel\Desktop\spiele
2014-01-15 13:45 - 2014-01-15 08:15 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 13:44 - 2014-01-15 08:15 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 13:44 - 2009-07-14 03:34 - 00000634 ____C () C:\Windows\win.ini
2014-01-15 13:43 - 2013-08-01 10:11 - 00000000 ___DC () C:\Windows\system32\MRT
2014-01-15 13:38 - 2013-07-31 22:46 - 86054176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-12 22:29 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\Documents\onlineTV 8
2014-01-12 22:27 - 2014-01-12 22:27 - 00000000 ___DC () C:\Users\Daniel\Documents\Podcast Studio
2014-01-12 22:27 - 2014-01-12 22:25 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2014-01-12 22:26 - 2014-01-12 22:26 - 00000000 ___DC () C:\Program Files (x86)\concept design
2014-01-12 22:25 - 2013-11-30 14:03 - 00000000 ___DC () C:\Program Files (x86)\Franzis
2014-01-12 00:00 - 2013-11-20 00:00 - 00198156 ____C () C:\Windows\PFRO.log
2014-01-11 09:50 - 2013-09-20 20:07 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-01-11 09:49 - 2014-01-11 09:49 - 00001261 ____C () C:\Users\Daniel\Desktop\Star Trek Online.lnk
2014-01-11 09:49 - 2014-01-11 09:49 - 00000000 ___DC () C:\Users\Public\Games
2014-01-11 09:48 - 2013-07-31 18:53 - 00000000 __HDC () C:\Program Files (x86)\InstallShield Installation Information
2014-01-10 14:42 - 2014-01-10 14:42 - 00000000 ___DC () C:\Users\Daniel\.SquashOccurrences
2014-01-10 07:10 - 2013-10-16 09:23 - 00000000 ___DC () C:\Users\Daniel\Documents\Mama 2013
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\Documents\DayZ
2014-01-09 02:33 - 2014-01-09 02:33 - 00000000 ___DC () C:\Users\Daniel\AppData\Local\DayZ
2014-01-09 02:28 - 2013-08-03 15:10 - 00000000 __RDC () C:\Users\Daniel\Dropbox
2014-01-08 22:30 - 2014-01-08 22:30 - 00000000 ___DC () C:\Users\Daniel\Downloads\DayZ StandAlone
2014-01-08 21:46 - 2013-08-19 06:16 - 00000919 ____C () C:\Users\Public\Desktop\VLC media player.lnk
2014-01-08 15:34 - 2013-08-03 15:06 - 00000000 ___DC () C:\Users\Daniel\AppData\Roaming\Dropbox
2014-01-08 06:43 - 2014-01-08 06:43 - 00001026 ____C () C:\Users\Public\Desktop\DivX Player.lnk
2014-01-08 06:43 - 2013-07-31 21:36 - 00001612 ____C () C:\Users\Daniel\Desktop\DivX Movies.lnk
2014-01-08 06:43 - 2013-07-31 21:31 - 00000000 ___DC () C:\Program Files (x86)\DivX
2014-01-08 06:43 - 2013-07-31 21:29 - 00000000 ___DC () C:\ProgramData\DivX
2014-01-08 06:42 - 2013-09-10 00:46 - 00001091 ____C () C:\Users\Public\Desktop\DivX Converter.lnk
Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\ginstall.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe
C:\Users\Daniel\AppData\Local\Temp\Second_Life_3_6_13_284995_i686_Setup.exe
C:\Users\Daniel\AppData\Local\Temp\vlc-2.1.2-win64.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-29 00:09
==================== End Of Log ============================
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 7 Home Premium x64
Ran by Daniel on 06.02.2014 at 13:11:12,04
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.02.2014 at 13:18:28,92
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 06/02/2014 um 07:43:37
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Daniel - MEDION
# Gestartet von : C:\Users\Daniel\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Users\Daniel\AppData\LocalLow\boost_interprocess
Datei Gelöscht : C:\END
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKCU\Software\Conduit
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Google Chrome v32.0.1700.107
[ Datei : C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1546 octets] - [06/02/2014 07:41:55]
AdwCleaner[S0].txt - [1411 octets] - [06/02/2014 07:43:37]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1471 octets] ##########
|
|
06.02.2014, 13:48
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivieren Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM) Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2014, 21:06
| #13 |
| | werbung in skype deaktivierenCode:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=a37a664c38115042b1a74b6c25e14e5a
# engine=16964
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-06 08:02:07
# local_time=2014-02-06 09:02:07 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=772 16777213 66 82 1237166 5170364 0 0
# compatibility_mode=5893 16776573 100 94 30607 143346777 0 0
# scanned=647095
# found=3
# cleaned=0
# scan_time=22824
sh=C513DDE65EE06D8741EE7093623DD1264810A39F ft=0 fh=0000000000000000 vn="JS/Exploit.Pdfka.PNY trojan" ac=I fn="C:\Users\Daniel\Documents\My 3D Models\Deep Exploration 5 Example Files\Feature Examples\Example PDF Output\Transmission with Steps, Realited and Compressed.pdf"
sh=D8E3B8B8FDAA7E194A8858150EDAF28C389CBFA5 ft=0 fh=0000000000000000 vn="Win32/AdWare.Linkular.AH application" ac=I fn="C:\Users\Daniel\Dropbox\programme\Light Image Resizer v4.4.1.0 with Key [TorDigger].zip"
sh=7C1AA1A980D6CA3E5C3B609426C6C45AA358CE79 ft=0 fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Users\Daniel\Dropbox\programme\studio.rar"
Code:
ATTFilter Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.06.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Daniel :: MEDION [Administrator] Schutz: Aktiviert 06.02.2014 14:16:10 mbam-log-2014-02-06 (14-16-10).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 259914 Laufzeit: 12 Minute(n), 27 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
07.02.2014, 00:33
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | werbung in skype deaktivierenZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.02.2014, 09:33
| #15 |
| | werbung in skype deaktivieren eine ist light image resizer als exe mit meinen key gepackt das andere ist deep exploration studio als iso von einer cd erste von website runter geladen von ligfht image resizer 2 von meiner cd die ich gekauft habe ein abbild |
|
| Themen zu werbung in skype deaktivieren |
| banner, chats, dauerhaft, deaktivieren, deaktiviert, eingefangen, erhalte, erscheint, folge, folgende, gefangen, home, kurzem, latein, medion, möglichkeit, premium, samstag, skype, version, virus, werbung, windows, windows 7, würde |
