| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Überall WerbungWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
06.03.2014, 12:02
| #1 |
| |  Überall Werbung Guten Tag Zusammen, seit einiger zeit habe ich enorme Geschwindigkeitsverluste und egal auf was ich in meinen Browsern klicke es öffnet sich ein POPup mit Werbung. Selbst der Virenscanner findet nichts bin im Moment einfach Ratlos was ich noch machen kann. Deshalb bitte ich euch hier um Hilfe. Gruß NoS |
|
06.03.2014, 12:21
| #2 |
| Ruhe in Frieden † 2019     | Überall Werbung Mein Name ist Sandra und ich werde Dir bei Deinem Problem behilflich sein.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean bist. Bitte füge die Logs immer in Code-Tags ein. Wenn Du das nicht machst, erschwert es mir sehr das Auswerten. Danke. Dazu:
Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
06.03.2014, 15:59
| #3 |
| | Überall Werbung Vielen danke für die Hilfe schoneinmal hier sind die logs.
__________________FRST.txt FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-03-2014
Ran by Administrator1 (administrator) on SEBI-PC on 06-03-2014 12:39:47
Running from C:\Users\Administrator1\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
() C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Spotify Ltd) C:\Users\Administrator1\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(QIP.ru) C:\Users\Administrator1\AppData\Roaming\QipGuard\QipGuard.exe
() C:\Program Files (x86)\Re-markit\Re-markit155.exe
(Realtek) C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtlService.exe
(Sitecom Corp.) C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtWlan.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Acer Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Oracle Corporation) C:\Program Files (x86)\JDownloader\jre\bin\javaw.exe
() C:\Program Files (x86)\Re-markit\Re-markit_wd.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winamp.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.68\opera.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-09-10] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8312352 2009-10-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-08-12] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Hotkey Utility] - C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-18] ()
HKLM-x32\...\Run: [EgisTecLiveUpdate] - C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-13] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] - C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [128296 2009-12-22] (CyberLink Corp.)
HKLM-x32\...\Run: [PlayMovie] - C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480 2009-12-22] (Acer Corp.)
HKLM-x32\...\Run: [AVMWlanClient] - C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [Spotify] - C:\Users\Administrator1\AppData\Roaming\Spotify\Spotify.exe [6118400 2014-01-16] (Spotify Ltd)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [Spotify Web Helper] - C:\Users\Administrator1\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-16] (Spotify Ltd)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [QIP Internet Guardian] - C:\Users\Administrator1\AppData\Roaming\QipGuard\QipGuard.exe [435696 2014-01-13] (QIP.ru)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3598680 2014-02-19] (Electronic Arts)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [Infium] - C:\Program Files (x86)\QIP 2012\qip.exe [8502256 2014-01-13] (QIP)
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Run: [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [134648 2013-10-28] ()
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\MountPoints2: {bbef76e2-412f-11e3-aaee-90fba64d2499} - K:\pushinst.exe
HKU\S-1-5-21-1169701839-121830568-4173168510-1003\...\MountPoints2: {caac24e6-5cf6-11e3-afd2-246511c201c1} - K:\Setup.exe
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL => C:\Program Files (x86)\Optimizer Pro\OptProCrash_x64.dll [2603312 2014-02-20] ()
AppInit_DLLs-x32: c:\progra~2\optimi~1\optpro~1.dll => C:\Program Files (x86)\Optimizer Pro\OptProCrash.dll [2869720 2013-10-29] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:13828
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&m=aspire_m5811&r=17361010m316pe4c5v1l5w5561u658
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
URLSearchHook: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
SearchScopes: HKLM - {709CFD09-BBB3-4FA8-0A5A-47D611B72C22} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=113&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
SearchScopes: HKLM-x32 - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
SearchScopes: HKLM-x32 - {5848BCFA-F569-D759-D31A-200A7D1872FA} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=113&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {709CFD09-BBB3-4FA8-0A5A-47D611B72C22} URL =
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1QzuzytD0F0B0AyCyE0DtByEzyzyyC0DyDyEtN0D0Tzu0CyCyByCtN1L2XzutBtFtBtFzztFtCtByEyBtN1L1Czu1L1C1H1B1QtCtDtA&cr=2097015228&ir=
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO-x32: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Administrator1\AppData\Roaming\Mozilla\Firefox\Profiles\8i1trhaf.default
FF user.js: detected! => C:\Users\Administrator1\AppData\Roaming\Mozilla\Firefox\Profiles\8i1trhaf.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Amazon-Icon - C:\Users\Administrator1\AppData\Roaming\Mozilla\Firefox\Profiles\8i1trhaf.default\Extensions\amazon-icon@giga.de [2014-02-20]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha7438.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha7438\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha7438\ff [2014-02-11]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha1856.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1856\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1856\ff [2014-02-24]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha1778.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1778\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1778\ff [2014-02-28]
FF HKCU\...\Firefox\Extensions: [{13b2a6cd-c8be-4191-a05b-b843a6b780cb}] - C:\Program Files (x86)\Re-markit\155.xpi
FF Extension: Re-markit - C:\Program Files (x86)\Re-markit\155.xpi [2014-02-18]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [haglgfgjcopkcdbienjdldjkfjhicbop] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha1856\ch\MediaViewerV1alpha1856.crx [2014-02-23]
CHR HKLM-x32\...\Chrome\Extension: [loegokomflajkhoiboediooliiipplod] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1778\ch\MediaViewV1alpha1778.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Administrator1\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx [2014-02-20]
==================== Services (Whitelisted) =================
R2 70e6ca8c; C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe [143488 2014-02-20] ()
R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-25] ()
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-10-30] ()
R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)
R2 Re-markit; C:\Program Files (x86)\Re-markit\Re-markit155.exe [182272 2014-02-18] ()
R2 Realtek11nSU; C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek)
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-04] (AVM Berlin)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-07] (Disc Soft Ltd)
R3 fwlanusb4; C:\Windows\System32\DRIVERS\fwlanusb4.sys [1293824 2010-10-04] (AVM GmbH)
S3 Logi_Headset_DFU; C:\Windows\System32\Drivers\lhusbdfuamd64.sys [44136 2013-09-30] (CSR plc.)
S3 PCDSRVC{D1725DDC-B10B1ADB-06020101}_0; \??\c:\users\sebi\appdata\local\temp\6s2yr08s8tsv\pcdrdiag\bin\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-06 12:39 - 2014-03-06 12:41 - 00019632 _____ () C:\Users\Administrator1\Desktop\FRST.txt
2014-03-06 12:39 - 2014-03-06 12:39 - 00000000 ____D () C:\FRST
2014-03-06 12:38 - 2014-03-06 12:38 - 02156544 _____ (Farbar) C:\Users\Administrator1\Desktop\FRST64.exe
2014-03-06 12:20 - 2014-03-06 12:28 - 524288000 _____ () C:\Users\Administrator1\Downloads\1EFI.part2.rar
2014-03-06 12:20 - 2014-03-06 12:28 - 524288000 _____ () C:\Users\Administrator1\Downloads\1EFI.part1.rar
2014-03-06 12:20 - 2014-03-06 12:28 - 513835340 _____ () C:\Users\Administrator1\Downloads\1EFI.part3.rar
2014-03-04 21:23 - 2014-03-04 21:25 - 74637872 _____ (Logitech, Inc.) C:\Users\Administrator1\Downloads\lws251.exe
2014-03-04 18:43 - 2014-03-04 18:43 - 00015818 _____ () C:\Users\Administrator1\Downloads\asm_save-1.zip
2014-03-04 16:53 - 2014-03-04 16:55 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\TeamViewer
2014-03-04 16:49 - 2014-03-04 16:49 - 00001166 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-03-04 16:49 - 2014-03-04 16:49 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-03-04 16:48 - 2014-03-04 16:48 - 05852336 _____ (TeamViewer GmbH) C:\Users\Administrator1\Downloads\TeamViewer_Setup_de-ckc.exe
2014-03-01 10:40 - 2014-03-01 10:40 - 00000000 ____D () C:\Users\Administrator1\Downloads\German Top 50 ODC Official Dance Charts vom 03.03.2014
2014-03-01 10:39 - 2014-03-01 10:39 - 00000000 ____D () C:\Users\Administrator1\Downloads\VA-Future_Trance_Vol.67-3CD-2014-VOiCE
2014-03-01 10:31 - 2014-03-01 10:34 - 742066518 _____ () C:\Users\Administrator1\Downloads\German Top 100 Single Charts 03.02.2014.rar
2014-03-01 10:29 - 2014-03-01 10:32 - 483620766 _____ () C:\Users\Administrator1\Downloads\German Top 50 ODC Official Dance Charts vom 03.03.2014.rar
2014-03-01 10:28 - 2014-03-01 10:30 - 409176000 _____ () C:\Users\Administrator1\Downloads\VA-Future_Trance_Vol.67-3CD-2014-VOiCE.rar
2014-02-28 11:56 - 2014-02-28 11:56 - 00000000 ____D () C:\Program Files (x86)\MediaViewV1
2014-02-24 12:18 - 2014-02-24 12:24 - 1649897029 _____ () C:\Users\Administrator1\Downloads\WWE.Elimination.Chamber.23rd.Feb.2014.HDTV.x264-Sir.Paul.mp4
2014-02-24 11:56 - 2014-02-24 11:56 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-20 15:05 - 2014-02-20 15:05 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-20 10:27 - 2014-02-20 10:27 - 00000000 ____D () C:\Users\Administrator1\Documents\Optimizer Pro
2014-02-20 10:27 - 2014-02-20 10:27 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Optimizer Pro
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\Downloads\Slapshot---Underground-Streethockey
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\ChromeExtensions
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Tempe64bee8277429c77b0ec29bd46d5f0c6
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Temp316e638547b628261497901cd40425d8
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-02-20 10:14 - 2014-02-20 10:14 - 01060568 _____ () C:\Users\Administrator1\Downloads\Slapshot---Underground-Streethockey-Setup.exe
2014-02-19 21:59 - 2014-02-19 21:59 - 00000000 ____D () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13
2014-02-19 21:49 - 2014-02-19 21:49 - 00000000 ____D () C:\Users\Administrator1\Documents\Activision
2014-02-19 21:46 - 2014-02-19 21:51 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part4.rar
2014-02-19 21:46 - 2014-02-19 21:51 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part3.rar
2014-02-19 21:46 - 2014-02-19 21:50 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part2.rar
2014-02-19 21:46 - 2014-02-19 21:50 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part1.rar
2014-02-19 21:46 - 2014-02-19 21:49 - 174792302 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part5.rar
2014-02-19 21:44 - 2014-02-19 21:52 - 1029809262 _____ () C:\Users\Administrator1\Downloads\Sonic All Stars Racing Transformed v1.3-weip.ipa
2014-02-19 21:37 - 2014-02-19 21:37 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Activision
2014-02-19 21:33 - 2014-02-19 21:33 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\SKIDROW
2014-02-19 21:25 - 2014-02-19 21:26 - 204963734 _____ () C:\Users\Administrator1\Downloads\Millionaire-v1.4.17-Locophone-ICPDA-iOS5.0-(Clutch-1.4.1).ipa
2014-02-19 21:21 - 2014-02-19 21:21 - 00342632 _____ () C:\Users\Administrator1\Downloads\Player Setup.exe
2014-02-19 21:19 - 2014-02-19 21:19 - 00002203 _____ () C:\Users\Public\Desktop\The Amazing Spider-Man.lnk
2014-02-19 21:07 - 2014-02-19 21:07 - 00000000 ____D () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad
2014-02-19 21:05 - 2014-02-19 21:05 - 00000000 ____D () C:\Program Files (x86)\Activision
2014-02-19 20:58 - 2012-08-21 16:07 - 00000000 ____D () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW
2014-02-19 20:52 - 2014-02-19 20:55 - 447884598 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part8.rar
2014-02-19 20:51 - 2014-02-19 20:57 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part7.rar
2014-02-19 20:44 - 2014-02-19 20:51 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part6.rar
2014-02-19 20:44 - 2014-02-19 20:50 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part5.rar
2014-02-19 20:37 - 2014-02-19 20:44 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part4.rar
2014-02-19 20:36 - 2014-02-19 20:43 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part3.rar
2014-02-19 20:29 - 2014-02-19 20:36 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part2.rar
2014-02-19 20:29 - 2014-02-19 20:36 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part1.rar
2014-02-19 18:37 - 2014-02-19 21:11 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\WindSolutions
2014-02-19 18:37 - 2014-02-19 21:10 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-02-19 18:37 - 2014-02-19 18:37 - 04279392 _____ (WindSolutions) C:\Users\Administrator1\Downloads\Install_CopyTrans_Suite.exe
2014-02-19 18:37 - 2014-02-19 18:37 - 00001442 _____ () C:\Users\Administrator1\Desktop\CopyTrans Control Center.lnk
2014-02-19 18:37 - 2014-02-19 18:37 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2014-02-19 09:42 - 2014-02-19 10:59 - 2179134596 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part08.rar
2014-02-19 09:42 - 2014-02-19 10:59 - 2177040860 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part12.rar
2014-02-19 09:42 - 2014-02-19 10:59 - 2172154240 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part07.rar
2014-02-19 09:42 - 2014-02-19 10:58 - 2165375536 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part09.rar
2014-02-19 09:42 - 2014-02-19 10:58 - 2165169368 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part06.rar
2014-02-19 09:42 - 2014-02-19 10:53 - 2157899472 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part05.rar
2014-02-19 09:42 - 2014-02-19 10:52 - 2155097752 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part11.rar
2014-02-19 09:42 - 2014-02-19 10:51 - 2155349288 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part10.rar
2014-02-19 09:42 - 2014-02-19 09:56 - 403071514 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part13.rar
2014-02-19 09:41 - 2014-02-19 10:58 - 2160642892 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part02.rar
2014-02-19 09:41 - 2014-02-19 10:58 - 2160500940 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part04.rar
2014-02-19 09:41 - 2014-02-19 10:53 - 2157535300 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part03.rar
2014-02-19 09:41 - 2014-02-19 10:47 - 2156152808 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part01.rar
2014-02-18 21:03 - 2014-02-18 21:03 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Avira
2014-02-18 21:02 - 2014-02-18 21:02 - 00002070 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-18 21:02 - 2014-02-18 21:02 - 00000000 ____D () C:\ProgramData\Avira
2014-02-18 21:02 - 2014-02-18 21:02 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-18 21:02 - 2014-02-14 11:00 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-18 21:02 - 2014-02-14 11:00 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-18 21:02 - 2014-02-14 11:00 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-18 21:00 - 2014-02-18 21:01 - 137004504 _____ () C:\Users\Administrator1\Downloads\avira_free_antivirus_de.exe
2014-02-18 01:58 - 2014-03-06 01:59 - 00000388 _____ () C:\Windows\Tasks\Re-markit_wd.job
2014-02-18 01:58 - 2014-02-18 01:58 - 00002994 _____ () C:\Windows\System32\Tasks\Re-markit_wd
2014-02-18 01:58 - 2014-02-18 01:58 - 00000000 ____D () C:\Program Files (x86)\Re-markit
2014-02-17 08:33 - 2014-02-17 08:34 - 00002728 _____ () C:\Users\Administrator1\Desktop\index.php
2014-02-17 08:33 - 2014-02-17 08:33 - 00001680 _____ () C:\Users\Administrator1\Downloads\password-protect.zip
2014-02-17 08:33 - 2006-05-12 11:36 - 00001104 _____ () C:\Users\Administrator1\Desktop\readme.txt
2014-02-15 13:58 - 2013-02-07 15:23 - 00000000 ____D () C:\Users\Administrator1\Downloads\DiChvoNaTr.2010.720
2014-02-15 13:56 - 2014-02-17 08:32 - 00000514 _____ () C:\Users\Administrator1\Documents\index.html
2014-02-15 13:37 - 2012-07-11 12:11 - 00000000 ____D () C:\Users\Administrator1\Downloads\DiChvoNaTr.2008.720
2014-02-15 13:13 - 2010-01-05 14:44 - 00000000 ____D () C:\Users\Administrator1\Downloads\DiChvoNaTr.2005.720
2014-02-15 11:16 - 2014-02-15 11:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-13 08:31 - 2014-02-13 10:17 - 1605415289 _____ () C:\Users\Administrator1\Downloads\CABAL_Online_Europe_Installer.zip
2014-02-13 08:27 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 08:27 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-13 08:26 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 08:26 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 08:26 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 08:26 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 08:26 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 08:26 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-13 08:26 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 08:26 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 08:26 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-13 08:26 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-13 08:26 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-13 08:26 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-13 08:26 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 08:26 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 08:26 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 08:26 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 08:26 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 08:26 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-13 08:26 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 08:26 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 08:26 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 08:26 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 08:26 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-13 08:26 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-13 08:26 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-13 08:26 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-13 08:26 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 08:26 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 08:26 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 08:26 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 08:26 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-13 08:26 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 08:26 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 08:26 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 08:26 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-13 08:26 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 08:26 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-13 08:25 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 08:25 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 07:55 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 07:55 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 07:55 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 07:55 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 07:55 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 07:55 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 07:55 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 07:55 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-11 06:56 - 2014-02-28 11:56 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-02-11 06:56 - 2014-02-11 06:56 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-02-08 17:35 - 2014-02-20 09:59 - 00000000 ____D () C:\Users\Administrator1\Documents\ManiaPlanet
2014-02-08 17:34 - 2014-02-08 17:53 - 00001087 _____ () C:\Users\Public\Desktop\ManiaPlanet.lnk
2014-02-08 17:34 - 2014-02-08 17:34 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-02-08 17:33 - 2014-02-20 09:12 - 00000000 ____D () C:\ProgramData\ManiaPlanet
2014-02-08 17:33 - 2014-02-08 17:53 - 00000000 ____D () C:\Program Files (x86)\ManiaPlanet
2014-02-08 17:27 - 2014-02-08 17:31 - 1067975112 _____ () C:\Users\Administrator1\Downloads\trackmania-valley-setup.exe
2014-02-08 17:22 - 2014-01-31 19:21 - 00000000 ____D () C:\Users\Administrator1\Downloads\Thor.2.The Dark.Kingdom.2013.HDRip.AC3LD.German.XviD-LoC
2014-02-08 17:21 - 2014-02-08 17:22 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part09.rar
2014-02-08 17:21 - 2014-02-08 17:22 - 138078807 _____ () C:\Users\Administrator1\Downloads\Thrloc.part10.rar
2014-02-08 17:20 - 2014-02-08 17:21 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part08.rar
2014-02-08 17:20 - 2014-02-08 17:21 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part07.rar
2014-02-08 17:19 - 2014-02-08 17:20 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part06.rar
2014-02-08 17:19 - 2014-02-08 17:20 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part05.rar
2014-02-08 17:18 - 2014-02-08 17:19 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part04.rar
2014-02-08 17:18 - 2014-02-08 17:19 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part03.rar
2014-02-08 17:17 - 2014-02-08 17:18 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part02.rar
2014-02-08 17:17 - 2014-02-08 17:18 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part01.rar
2014-02-05 23:06 - 2013-01-03 15:05 - 00000000 ____D () C:\Users\Administrator1\Downloads\RoboCop.1-3.German.AC3.HDRip.x264-FuN
==================== One Month Modified Files and Folders =======
2014-03-06 12:41 - 2014-03-06 12:39 - 00019632 _____ () C:\Users\Administrator1\Desktop\FRST.txt
2014-03-06 12:39 - 2014-03-06 12:39 - 00000000 ____D () C:\FRST
2014-03-06 12:38 - 2014-03-06 12:38 - 02156544 _____ (Farbar) C:\Users\Administrator1\Desktop\FRST64.exe
2014-03-06 12:38 - 2013-11-06 18:28 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Skype
2014-03-06 12:28 - 2014-03-06 12:20 - 524288000 _____ () C:\Users\Administrator1\Downloads\1EFI.part2.rar
2014-03-06 12:28 - 2014-03-06 12:20 - 524288000 _____ () C:\Users\Administrator1\Downloads\1EFI.part1.rar
2014-03-06 12:28 - 2014-03-06 12:20 - 513835340 _____ () C:\Users\Administrator1\Downloads\1EFI.part3.rar
2014-03-06 12:17 - 2014-01-27 22:12 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-03-06 12:15 - 2013-10-31 07:10 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-06 12:14 - 2014-01-27 22:10 - 00000000 ____D () C:\ProgramData\Origin
2014-03-06 12:10 - 2014-01-27 22:09 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-03-06 12:07 - 2013-11-07 07:07 - 00000316 _____ () C:\Windows\Tasks\MySearchDial.job
2014-03-06 11:56 - 2014-01-27 02:08 - 00000392 _____ () C:\Windows\Tasks\AmiUpdXp.job
2014-03-06 11:09 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-06 11:09 - 2009-07-14 05:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-06 08:31 - 2010-09-29 09:30 - 01236019 _____ () C:\Windows\WindowsUpdate.log
2014-03-06 01:59 - 2014-02-18 01:58 - 00000388 _____ () C:\Windows\Tasks\Re-markit_wd.job
2014-03-06 01:48 - 2014-01-27 02:08 - 00000402 _____ () C:\Windows\Tasks\Re-markit Update.job
2014-03-05 14:28 - 2013-12-25 12:28 - 00000302 _____ () C:\Windows\Tasks\DLL-Files FixerASKUSER.job
2014-03-05 12:33 - 2013-12-25 12:27 - 00000294 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2014-03-05 12:32 - 2013-12-25 12:27 - 00003112 _____ () C:\Windows\System32\Tasks\RDReminder
2014-03-04 21:36 - 2013-10-28 20:15 - 00079920 _____ () C:\Users\Administrator1\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-04 21:25 - 2014-03-04 21:23 - 74637872 _____ (Logitech, Inc.) C:\Users\Administrator1\Downloads\lws251.exe
2014-03-04 21:05 - 2013-11-06 18:50 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\NoNameScript
2014-03-04 18:43 - 2014-03-04 18:43 - 00015818 _____ () C:\Users\Administrator1\Downloads\asm_save-1.zip
2014-03-04 18:35 - 2009-07-14 05:51 - 00080280 _____ () C:\Windows\setupact.log
2014-03-04 16:55 - 2014-03-04 16:53 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\TeamViewer
2014-03-04 16:49 - 2014-03-04 16:49 - 00001166 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-03-04 16:49 - 2014-03-04 16:49 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-03-04 16:48 - 2014-03-04 16:48 - 05852336 _____ (TeamViewer GmbH) C:\Users\Administrator1\Downloads\TeamViewer_Setup_de-ckc.exe
2014-03-01 12:32 - 2013-12-25 12:27 - 00000310 _____ () C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2014-03-01 10:40 - 2014-03-01 10:40 - 00000000 ____D () C:\Users\Administrator1\Downloads\German Top 50 ODC Official Dance Charts vom 03.03.2014
2014-03-01 10:39 - 2014-03-01 10:39 - 00000000 ____D () C:\Users\Administrator1\Downloads\VA-Future_Trance_Vol.67-3CD-2014-VOiCE
2014-03-01 10:34 - 2014-03-01 10:31 - 742066518 _____ () C:\Users\Administrator1\Downloads\German Top 100 Single Charts 03.02.2014.rar
2014-03-01 10:32 - 2014-03-01 10:29 - 483620766 _____ () C:\Users\Administrator1\Downloads\German Top 50 ODC Official Dance Charts vom 03.03.2014.rar
2014-03-01 10:30 - 2014-03-01 10:28 - 409176000 _____ () C:\Users\Administrator1\Downloads\VA-Future_Trance_Vol.67-3CD-2014-VOiCE.rar
2014-02-28 11:56 - 2014-02-28 11:56 - 00000000 ____D () C:\Program Files (x86)\MediaViewV1
2014-02-28 11:56 - 2014-02-11 06:56 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-02-24 12:48 - 2013-11-07 07:53 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\vlc
2014-02-24 12:48 - 2010-09-29 19:21 - 00696620 _____ () C:\Windows\system32\perfh007.dat
2014-02-24 12:48 - 2010-09-29 19:21 - 00147916 _____ () C:\Windows\system32\perfc007.dat
2014-02-24 12:48 - 2009-07-14 06:13 - 01612484 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-24 12:24 - 2014-02-24 12:18 - 1649897029 _____ () C:\Users\Administrator1\Downloads\WWE.Elimination.Chamber.23rd.Feb.2014.HDTV.x264-Sir.Paul.mp4
2014-02-24 11:56 - 2014-02-24 11:56 - 00000000 ____D () C:\Program Files (x86)\MediaViewerV1
2014-02-24 11:56 - 2014-01-27 02:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-20 23:15 - 2013-10-31 07:10 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-20 23:15 - 2013-10-31 07:10 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 23:15 - 2012-02-06 20:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-20 15:05 - 2014-02-20 15:05 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-20 10:27 - 2014-02-20 10:27 - 00000000 ____D () C:\Users\Administrator1\Documents\Optimizer Pro
2014-02-20 10:27 - 2014-02-20 10:27 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Optimizer Pro
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\Downloads\Slapshot---Underground-Streethockey
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\ChromeExtensions
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Tempe64bee8277429c77b0ec29bd46d5f0c6
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Temp316e638547b628261497901cd40425d8
2014-02-20 10:16 - 2014-02-20 10:16 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-02-20 10:16 - 2013-10-28 20:13 - 00000000 ____D () C:\Users\Administrator1
2014-02-20 10:14 - 2014-02-20 10:14 - 01060568 _____ () C:\Users\Administrator1\Downloads\Slapshot---Underground-Streethockey-Setup.exe
2014-02-20 09:59 - 2014-02-08 17:35 - 00000000 ____D () C:\Users\Administrator1\Documents\ManiaPlanet
2014-02-20 09:12 - 2014-02-08 17:33 - 00000000 ____D () C:\ProgramData\ManiaPlanet
2014-02-20 09:11 - 2014-01-05 00:12 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Spotify
2014-02-20 09:08 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 21:59 - 2014-02-19 21:59 - 00000000 ____D () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13
2014-02-19 21:52 - 2014-02-19 21:44 - 1029809262 _____ () C:\Users\Administrator1\Downloads\Sonic All Stars Racing Transformed v1.3-weip.ipa
2014-02-19 21:51 - 2014-02-19 21:46 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part4.rar
2014-02-19 21:51 - 2014-02-19 21:46 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part3.rar
2014-02-19 21:50 - 2014-02-19 21:46 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part2.rar
2014-02-19 21:50 - 2014-02-19 21:46 - 262144000 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part1.rar
2014-02-19 21:49 - 2014-02-19 21:49 - 00000000 ____D () C:\Users\Administrator1\Documents\Activision
2014-02-19 21:49 - 2014-02-19 21:46 - 174792302 _____ () C:\Users\Administrator1\Downloads\Games.n.Appz.Pack-13.part5.rar
2014-02-19 21:37 - 2014-02-19 21:37 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Activision
2014-02-19 21:33 - 2014-02-19 21:33 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\SKIDROW
2014-02-19 21:26 - 2014-02-19 21:25 - 204963734 _____ () C:\Users\Administrator1\Downloads\Millionaire-v1.4.17-Locophone-ICPDA-iOS5.0-(Clutch-1.4.1).ipa
2014-02-19 21:21 - 2014-02-19 21:21 - 00342632 _____ () C:\Users\Administrator1\Downloads\Player Setup.exe
2014-02-19 21:19 - 2014-02-19 21:19 - 00002203 _____ () C:\Users\Public\Desktop\The Amazing Spider-Man.lnk
2014-02-19 21:11 - 2014-02-19 18:37 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\WindSolutions
2014-02-19 21:10 - 2014-02-19 18:37 - 00000000 ____D () C:\ProgramData\WindSolutions
2014-02-19 21:07 - 2014-02-19 21:07 - 00000000 ____D () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad
2014-02-19 21:05 - 2014-02-19 21:05 - 00000000 ____D () C:\Program Files (x86)\Activision
2014-02-19 20:57 - 2014-02-19 20:51 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part7.rar
2014-02-19 20:55 - 2014-02-19 20:52 - 447884598 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part8.rar
2014-02-19 20:51 - 2014-02-19 20:44 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part6.rar
2014-02-19 20:50 - 2014-02-19 20:44 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part5.rar
2014-02-19 20:44 - 2014-02-19 20:37 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part4.rar
2014-02-19 20:43 - 2014-02-19 20:36 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part3.rar
2014-02-19 20:36 - 2014-02-19 20:29 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part2.rar
2014-02-19 20:36 - 2014-02-19 20:29 - 1047527426 _____ () C:\Users\Administrator1\Downloads\The.Amazing.Spider-Man-SKIDROW.part1.rar
2014-02-19 19:20 - 2010-09-29 09:25 - 00901528 _____ () C:\Windows\PFRO.log
2014-02-19 18:37 - 2014-02-19 18:37 - 04279392 _____ (WindSolutions) C:\Users\Administrator1\Downloads\Install_CopyTrans_Suite.exe
2014-02-19 18:37 - 2014-02-19 18:37 - 00001442 _____ () C:\Users\Administrator1\Desktop\CopyTrans Control Center.lnk
2014-02-19 18:37 - 2014-02-19 18:37 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2014-02-19 10:59 - 2014-02-19 09:42 - 2179134596 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part08.rar
2014-02-19 10:59 - 2014-02-19 09:42 - 2177040860 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part12.rar
2014-02-19 10:59 - 2014-02-19 09:42 - 2172154240 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part07.rar
2014-02-19 10:58 - 2014-02-19 09:42 - 2165375536 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part09.rar
2014-02-19 10:58 - 2014-02-19 09:42 - 2165169368 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part06.rar
2014-02-19 10:58 - 2014-02-19 09:41 - 2160642892 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part02.rar
2014-02-19 10:58 - 2014-02-19 09:41 - 2160500940 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part04.rar
2014-02-19 10:53 - 2014-02-19 09:42 - 2157899472 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part05.rar
2014-02-19 10:53 - 2014-02-19 09:41 - 2157535300 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part03.rar
2014-02-19 10:52 - 2014-02-19 09:42 - 2155097752 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part11.rar
2014-02-19 10:51 - 2014-02-19 09:42 - 2155349288 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part10.rar
2014-02-19 10:47 - 2014-02-19 09:41 - 2156152808 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part01.rar
2014-02-19 09:56 - 2014-02-19 09:42 - 403071514 _____ () C:\Users\Administrator1\Downloads\300.APPS-Games.iPhone.iPodTouch.iPad.part13.rar
2014-02-18 22:15 - 2013-12-07 15:36 - 00000000 ____D () C:\Program Files (x86)\Need for Speed (TM) Rivals
2014-02-18 22:08 - 2012-04-06 17:30 - 00000000 ____D () C:\Program Files (x86)\iLivid
2014-02-18 21:03 - 2014-02-18 21:03 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Avira
2014-02-18 21:02 - 2014-02-18 21:02 - 00002070 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-18 21:02 - 2014-02-18 21:02 - 00000000 ____D () C:\ProgramData\Avira
2014-02-18 21:02 - 2014-02-18 21:02 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-18 21:01 - 2014-02-18 21:00 - 137004504 _____ () C:\Users\Administrator1\Downloads\avira_free_antivirus_de.exe
2014-02-18 01:58 - 2014-02-18 01:58 - 00002994 _____ () C:\Windows\System32\Tasks\Re-markit_wd
2014-02-18 01:58 - 2014-02-18 01:58 - 00000000 ____D () C:\Program Files (x86)\Re-markit
2014-02-18 01:58 - 2014-01-27 02:08 - 00003068 _____ () C:\Windows\System32\Tasks\Re-markit Update
2014-02-17 08:34 - 2014-02-17 08:33 - 00002728 _____ () C:\Users\Administrator1\Desktop\index.php
2014-02-17 08:33 - 2014-02-17 08:33 - 00001680 _____ () C:\Users\Administrator1\Downloads\password-protect.zip
2014-02-17 08:32 - 2014-02-15 13:56 - 00000514 _____ () C:\Users\Administrator1\Documents\index.html
2014-02-17 03:03 - 2013-09-25 17:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 03:00 - 2012-04-14 11:55 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 13:19 - 2013-11-25 21:59 - 00000600 _____ () C:\Users\Administrator1\AppData\Roaming\winscp.rnd
2014-02-15 11:16 - 2014-02-15 11:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-14 11:00 - 2014-02-18 21:02 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-14 11:00 - 2014-02-18 21:02 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-14 11:00 - 2014-02-18 21:02 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-13 10:17 - 2014-02-13 08:31 - 1605415289 _____ () C:\Users\Administrator1\Downloads\CABAL_Online_Europe_Installer.zip
2014-02-13 08:37 - 2012-04-14 13:00 - 01589442 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-13 08:21 - 2014-01-05 00:13 - 00000000 ____D () C:\Users\Administrator1\AppData\Local\Spotify
2014-02-12 21:45 - 2014-01-29 06:39 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-11 06:56 - 2014-02-11 06:56 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-02-11 06:56 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-11 06:56 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-08 17:53 - 2014-02-08 17:34 - 00001087 _____ () C:\Users\Public\Desktop\ManiaPlanet.lnk
2014-02-08 17:53 - 2014-02-08 17:33 - 00000000 ____D () C:\Program Files (x86)\ManiaPlanet
2014-02-08 17:34 - 2014-02-08 17:34 - 00000000 ____D () C:\Users\Administrator1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-02-08 17:31 - 2014-02-08 17:27 - 1067975112 _____ () C:\Users\Administrator1\Downloads\trackmania-valley-setup.exe
2014-02-08 17:22 - 2014-02-08 17:21 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part09.rar
2014-02-08 17:22 - 2014-02-08 17:21 - 138078807 _____ () C:\Users\Administrator1\Downloads\Thrloc.part10.rar
2014-02-08 17:21 - 2014-02-08 17:20 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part08.rar
2014-02-08 17:21 - 2014-02-08 17:20 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part07.rar
2014-02-08 17:20 - 2014-02-08 17:19 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part06.rar
2014-02-08 17:20 - 2014-02-08 17:19 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part05.rar
2014-02-08 17:19 - 2014-02-08 17:18 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part04.rar
2014-02-08 17:19 - 2014-02-08 17:18 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part03.rar
2014-02-08 17:18 - 2014-02-08 17:17 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part02.rar
2014-02-08 17:18 - 2014-02-08 17:17 - 157286400 _____ () C:\Users\Administrator1\Downloads\Thrloc.part01.rar
2014-02-07 08:18 - 2013-11-25 20:08 - 00000600 _____ () C:\Users\Administrator1\AppData\Local\PUTTY.RND
2014-02-06 13:16 - 2014-02-13 08:26 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-13 08:26 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-13 08:26 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-13 08:26 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-13 08:26 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-13 08:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-13 08:26 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-13 08:26 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-13 08:26 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-13 08:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-13 08:26 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-13 08:26 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-13 08:26 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-13 08:26 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-13 08:26 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-13 08:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-13 08:25 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-13 08:26 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-13 08:26 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 08:26 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-13 08:26 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-13 08:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-13 08:26 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-13 08:26 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-13 08:26 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-13 08:26 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-13 08:26 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-13 08:26 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:25 - 2014-02-13 08:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:24 - 2014-02-13 08:26 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-13 08:26 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-13 08:26 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-13 08:26 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-13 08:26 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-13 08:26 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-13 08:26 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-13 08:26 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-13 08:26 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-13 08:26 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
Some content of TEMP:
====================
C:\Users\Administrator1\AppData\Local\Temp\48964uninstall.exe
C:\Users\Administrator1\AppData\Local\Temp\amazonicon_v4.exe
C:\Users\Administrator1\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\Administrator1\AppData\Local\Temp\avgnt.exe
C:\Users\Administrator1\AppData\Local\Temp\BackupSetup.exe
C:\Users\Administrator1\AppData\Local\Temp\mirc634.exe
C:\Users\Administrator1\AppData\Local\Temp\OptimizerPro_20140120.exe
C:\Users\Administrator1\AppData\Local\Temp\Re-markit_2040-4031.exe
C:\Users\Administrator1\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Administrator1\AppData\Local\Temp\sdapskill.exe
C:\Users\Administrator1\AppData\Local\Temp\sdaspwn.exe
C:\Users\Administrator1\AppData\Local\Temp\setapp.exe
C:\Users\Administrator1\AppData\Local\Temp\Setup-a.exe
C:\Users\Administrator1\AppData\Local\Temp\SkidRow.exe
C:\Users\Administrator1\AppData\Local\Temp\Sqlite3.dll
C:\Users\Administrator1\AppData\Local\Temp\UninstallRC-8876480.dll
C:\Users\Administrator1\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Administrator1\AppData\Local\Temp\_is4790.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-28 20:13
==================== End Of Log ============================
--- --- --- Und hier einmal von der Addition.txt Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-03-2014
Ran by Administrator1 at 2014-03-06 12:41:54
Running from C:\Users\Administrator1\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
AAVUpdateManager (HKLM-x32\...\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}) (Version: 12.00.0000 - Akademische Arbeitsgemeinschaft)
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.2.7222 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.2.7222 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.2.19 - NewTech Infosystems)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3005 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1) (Version: 6.1.0.2 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3006 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.02.0722 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3017 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
AMD DnD V1.0.19 (x32 Version: 1.0.19 - AMD) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ARMA 2 Operation Arrowhead Uninstall (HKLM-x32\...\ARMA 2 Operation Arrowhead) (Version: - )
ArmA 2 Uninstall (HKLM-x32\...\ArmA 2) (Version: - )
Ashampoo Burning Studio 2013 v.11.0.6 (HKLM-x32\...\{91B33C97-0FBA-74AE-E802-D782F5C8AA89}_is1) (Version: 11.0.6 - Ashampoo GmbH & Co. KG)
ATI AVIVO64 Codecs (Version: 10.12.0.00113 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{C42B7876-FA88-4F4A-9A5F-E175AD143F2A}) (Version: 3.0.762.0 - ATI Technologies, Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: - AVM Berlin)
Backup Manager Advance (x32 Version: 2.0.2.19 - NewTech Infosystems) Hidden
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Car Mechanic Simulator 2014 (HKLM-x32\...\Steam App 270850) (Version: - PlayWay S.A.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0113.2208.39662 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0113.2208.39662 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help English (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help French (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help German (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0113.2207.39662 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0113.2208.39662 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2010.0113.2208.39662 - ATI) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Chicken Invaders 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}) (Version: - Oberon Media)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Dairy Dash (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}) (Version: - Oberon Media)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
DVDVideoSoftTB Toolbar (HKLM-x32\...\DVDVideoSoftTB Toolbar) (Version: - )
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
F1 2013 (HKLM-x32\...\Steam App 223670) (Version: - Codemasters Birmingham)
Farm Frenzy 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version: - Oberon Media)
Flughafen Simulator 2014 (HKLM-x32\...\Airport Simulator 2014) (Version: - )
Free iPad Video Converter 3.7.2.1 (HKLM-x32\...\Free iPad Video Converter_is1) (Version: - FreeAudioVideoSoftTech, Inc.)
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Granny In Paradise (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}) (Version: - Oberon Media)
Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version: - Oberon Media)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 1.00.3004 - Acer Incorporated)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3002 - Acer Incorporated)
iLivid (HKLM-x32\...\iLivid) (Version: 1.92 - Bandoo Media Inc) <==== ATTENTION
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version: - Nadeo)
Media Player (HKLM-x32\...\MediaPlayerV1alpha7438) (Version: 1.1 - Media Player)
Media View (HKLM-x32\...\MediaViewV1alpha1778) (Version: 1.1 - Media View)
Media Viewer (HKLM-x32\...\MediaViewerV1alpha1856) (Version: 1.1 - Media Viewer)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Works (HKLM-x32\...\{62F7DA7E-CCCB-439C-A760-00C3926E761F}) (Version: 9.7.0621 - Microsoft Corporation)
mIRC (HKLM-x32\...\mIRC) (Version: 6.34 - mIRC Co. Ltd.)
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.76.0 - Egis Technology Inc.)
Need for Speed (TM) Rivals German Edition 1.2.0.0 (HKLM-x32\...\Need for Speed (TM) Rivals German Edition 1.2.0.0) (Version: - )
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts)
Nero 9 Essentials (HKLM-x32\...\{f174fe50-f02d-4952-a49d-bae9bf7d488a}) (Version: - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.7.201 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.7.201 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.4.9.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.7.201 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.8.1 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.11.209 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.11.208 - Nero AG) Hidden
Nero StartSmart OEM (x32 Version: 9.16.0.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.10.505 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NNScript (HKCU\...\NoNameScript) (Version: 4.22 - ESNation)
Nur Entfernen der CopyTrans Suite möglich (HKCU\...\CopyTrans Suite) (Version: 2.37 - WindSolutions)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
Opera Stable 18.0.1284.68 (HKLM-x32\...\Opera 18.0.1284.68) (Version: 18.0.1284.68 - Opera Software ASA)
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: - PC Utilities Software Limited) <==== ATTENTION
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
PixiePack Codec Pack (HKLM-x32\...\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}) (Version: 1.1.1200.0 - None)
QIP 2012 4.0.9354 (HKCU\...\QIP 2012) (Version: 4.0.9354 - )
QIP Internet Guardian (HKCU\...\QipGuard) (Version: - )
Radiotracker (HKLM-x32\...\{1E863F44-2D2D-4BD7-B25B-EDA9FF622267}) (Version: 6.2.13700.0 - RapidSolution Software AG)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5969 - Realtek Semiconductor Corp.)
Re-markit (HKLM-x32\...\d3d35679-b737-410b-b7b7-f11c6d1a8fe8) (Version: - Re-markit Software) <==== ATTENTION
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
SHOUTcast Source DSP 1.9.0 (remove only) (HKLM-x32\...\SHOUTcastDSP) (Version: - )
Sitecom 300N USB Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0154 - Sitecom Corp.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.3.8 - ) <==== ATTENTION
Spin & Win (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}) (Version: - Oberon Media)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Stadtbahn Simulator Düsseldorf (HKLM-x32\...\{83CD9117-D772-437B-8B18-6D00BCFE9E01}) (Version: 1.0.0 - Rondomedia)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer)
The Amazing Spider-Man (HKLM-x32\...\The Amazing Spider-Man_is1) (Version: - )
UE BOOM Update-Assistent (HKLM-x32\...\{4B0FC26F-8C59-4DB5-B045-90A8FD8E36AD}) (Version: 1.2.5 - Logitech, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
VirtualDJ PRO Full (HKLM-x32\...\{C515E2A3-4878-4C85-A519-52630C7AB08B}) (Version: 7.3 - Atomix Productions)
VL Sound 5.1 (HKLM-x32\...\VL Sound 5.1) (Version: - Valera Lavrov)
VLC media player 2.1.0 (HKLM-x32\...\VLC media player) (Version: 2.1.0 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.1.0.2 - VSO Software)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3008 - Acer Incorporated)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Call (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Writer (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinSCP 5.1.7 (HKLM-x32\...\winscp3_is1) (Version: 5.1.7 - Martin Prikryl)
==================== Restore Points =========================
23-02-2014 18:00:23 Windows-Sicherung
02-03-2014 18:00:25 Windows-Sicherung
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {31A01FDD-4FB8-40CF-B683-D5201F75D3D5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {39B1BF62-5556-485A-B289-B3E0CC0FC07B} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-11-25] (Dll-FIles.Com)
Task: {4742E11E-A777-44DF-9E4F-E58EFA5ABD54} - System32\Tasks\Re-markit_wd => C:\Program Files (x86)\Re-markit\Re-markit_wd.exe [2014-02-18] () <==== ATTENTION
Task: {65A13A4B-4FAE-4A46-8D38-5780B078DF75} - System32\Tasks\AmiUpdXp => C:\Users\Administrator1\AppData\Local\SwvUpdater\Updater.exe [2014-01-27] (Amonetizé Ltd) <==== ATTENTION
Task: {763DA13A-80DF-4773-B5BA-9170140AC350} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {A1F4BDC9-7CBE-4ADF-898C-38EAE088612C} - System32\Tasks\McQcModifier-5c47-a7b0 => C:\ProgramData\McQcModifier-5c47-a7b0\McQcModifier-5c47-a7b0.cmd [2009-08-29] ()
Task: {ADB52168-2556-441A-9737-BE20D888C12A} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe [2014-02-18] () <==== ATTENTION
Task: {B87B828B-D29A-423F-81C3-6FAEBB89194A} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-11-25] (Dll-FIles.Com)
Task: {CA2C8FB8-7813-4A37-AEAB-0254F5A4C1D7} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-11-25] (Dll-FIles.Com)
Task: {CDB5CDC9-4D4C-4DA8-8C54-5B4FFFC5EEF9} - System32\Tasks\MySearchDial => C:\Users\ADMINI~1\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {D84D988B-AA9B-42C9-BB8E-1B99336491FA} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {FACFE35A-FD55-46D2-9D82-A07E7A6B0750} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2013-11-25] (Dll-FIles.Com)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Administrator1\AppData\Local\SwvUpdater\Updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\MySearchDial.job => C:\Users\ADMINI~1\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== ATTENTION
Task: C:\Windows\Tasks\Re-markit_wd.job => C:\Program Files (x86)\Re-markit\Re-markit_wd.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2008-10-25 00:35 - 2008-10-25 00:35 - 00128296 _____ () C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
2014-02-18 01:58 - 2014-02-18 01:58 - 00182272 _____ () C:\Program Files (x86)\Re-markit\Re-markit155.exe
2009-12-14 03:19 - 2009-12-09 10:24 - 00076320 _____ () C:\OEM\USBDECTION\USBS3S4Detection.exe
2009-08-18 08:27 - 2009-08-18 08:27 - 00629280 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
2009-08-14 09:55 - 2009-08-14 09:55 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-09-29 09:29 - 2010-09-29 09:29 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-20 10:16 - 2014-02-20 10:16 - 00143488 _____ () C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe
2013-12-28 22:08 - 2013-12-12 10:15 - 01392480 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\opera_crashreporter.exe
2014-02-18 01:58 - 2014-02-18 01:58 - 00093184 _____ () C:\Program Files (x86)\Re-markit\Re-markit_wd.exe
2014-02-18 21:02 - 2014-02-14 11:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-02-03 01:33 - 2009-02-03 01:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-29 01:55 - 2008-09-29 01:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2014-01-22 19:41 - 2014-01-13 15:06 - 00378864 _____ () C:\Users\Administrator1\AppData\Roaming\QipGuard\chrome.dll
2010-10-22 07:16 - 2009-12-09 20:20 - 00126976 _____ () C:\Program Files (x86)\SITECOM\300N USB Wireless LAN Utility\EnumDevLib.dll
2009-08-18 08:31 - 2009-08-18 08:31 - 00163840 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
2014-02-20 10:16 - 2013-10-29 14:08 - 02869720 _____ () C:\Program Files (x86)\Optimizer Pro\OptProCrash.dll
2013-12-28 22:08 - 2013-12-12 10:15 - 00886624 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libglesv2.dll
2013-12-28 22:08 - 2013-12-12 10:15 - 00108896 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\libegl.dll
2013-12-28 22:08 - 2013-12-12 10:15 - 00879968 _____ () C:\Program Files (x86)\Opera\18.0.1284.68\ffmpegsumo.dll
2014-02-20 23:15 - 2014-02-20 23:15 - 16265096 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll
2014-03-06 10:26 - 2014-03-06 10:26 - 00037888 _____ () C:\Users\Administrator1\AppData\Local\Temp\WDE83FA.tmp\ombrowser.lng
2001-07-24 05:33 - 2001-07-24 05:33 - 00020480 _____ () C:\Program Files (x86)\Winamp\Plugins\out_null.dll
2001-07-24 05:33 - 2001-07-24 05:33 - 00020480 _____ () C:\Program Files (x86)\Winamp\Plugins\out_xf.dll
2005-07-25 17:14 - 2005-07-25 17:14 - 00135168 _____ () C:\Program Files (x86)\Winamp\Plugins\dsp_sc.dll
2001-08-10 07:01 - 2001-08-10 07:01 - 00270336 _____ () C:\Program Files (x86)\Winamp\Plugins\lamedll.dll
2013-11-26 16:40 - 2013-11-26 16:40 - 00333824 _____ () C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2014-02-13 13:00 - 2014-02-19 19:23 - 00962560 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00024064 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00025088 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00217088 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00261632 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00019968 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00302592 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2014-02-13 13:00 - 2014-02-19 19:23 - 00018944 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/05/2014 06:10:15 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Game.exe, Version: 1.0.0.0, Zeitstempel: 0x5019428d
Name des fehlerhaften Moduls: Game.exe, Version: 1.0.0.0, Zeitstempel: 0x5019428d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000f6660
ID des fehlerhaften Prozesses: 0x9dfb4
Startzeit der fehlerhaften Anwendung: 0xGame.exe0
Pfad der fehlerhaften Anwendung: Game.exe1
Pfad des fehlerhaften Moduls: Game.exe2
Berichtskennung: Game.exe3
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 21
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 20
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 19
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 18
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 17
Error: (03/04/2014 09:47:44 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 16
System errors:
=============
Error: (02/20/2014 09:08:12 AM) (Source: fwlanusb4) (User: )
Description: \Device\NDMP12FRITZ!WLAN USB Stick v2
Error: (02/13/2014 08:38:14 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800f0902 fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 3.5.1 unter Windows 7 und Windows Server 2008 R2 SP1 für x64-basierte Systeme (KB2898857)
Error: (02/13/2014 08:30:31 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800f0902 fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 3.5.1 unter Windows 7 und Windows Server 2008 R2 SP1 für x64-basierte Systeme (KB2911501)
Error: (02/13/2014 08:20:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/13/2014 08:20:46 AM) (Source: DCOM) (User: )
Description: 1053WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (02/13/2014 08:20:44 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht.
Error: (02/12/2014 11:08:50 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (01/30/2014 08:15:07 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 80. Der interne Fehlerstatus lautet: 301.
Error: (01/30/2014 08:14:35 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 80. Der interne Fehlerstatus lautet: 301.
Error: (01/30/2014 08:14:05 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 80. Der interne Fehlerstatus lautet: 301.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 67%
Total physical RAM: 6071.06 MB
Available physical RAM: 1971.3 MB
Total Pagefile: 12140.3 MB
Available Pagefile: 3629.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:455.95 GB) (Free:125 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.46 GB) (Free:0 GB) NTFS
Drive k: (TASM) (CDROM) (Total:7.25 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 60F957B3)
Partition 1: (Not Active) - (Size=19 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=456 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Gruß NoS |
|
06.03.2014, 20:38
| #4 |
| Ruhe in Frieden † 2019 | Überall Werbung Supportunterbrechung  Lesestoff:Die Logfiles deuten stark darauf hin, dass du nicht legal erworbene Software einsetzt. Zudem sind Cracks und Patches aus dubioser Quelle sehr oft mit Schädlingen versehen, womit man sich also fast vorsätzlich infiziert. Wir haben uns hier auf dem Board darauf geeinigt, dass wir an dieser Stelle solange nicht weiter bereinigen, bis die Software entfernt wurde. Hinzu kommt, dass wir dich in unserer Anleitung und auch in diesem Wichtig-Thema unmissverständlich darauf hingewiesen haben, wie wir damit umgehen werden. Saubere, gute Software hat seinen Preis und die Softwarefirmen leben von diesen Einnahmen. Bitte entscheide Dich also, wie Du weiter vorgehen möchtest und teile mir dieses hier in Deinem Thread mit. Unsere Hilfe beschränkt sich, wenn Du diese Software nicht entfernst, nur auf das Neuaufsetzen und Absichern deines Systems. Fragen dazu beantworten wir dir aber weiterhin gerne und zwar in unserem Forum. |
|
10.03.2014, 10:32
| #5 |
| Ruhe in Frieden † 2019 | Überall Werbung Hallo, ich habe schon länger keine Antwort mehr von Dir erhalten. Benötigst Du weiterhin noch Hilfe? Wenn ich in den nächsten 24 Stunden nichts von Dir höre, gehe ich davon aus, dass sich das Thema erledigt hat. Hinweis: Wir sind noch nicht fertig! Auch wenn die Symptome verschwunden sein sollten, kann dein System weiterhin infiziert sein und über Sicherheitslücken verfügen, welche eine erneute Infektion möglich machen. |
|
| Themen zu Überall Werbung |
| browser, browsern, einfach, einiger, guten, klicke, nichts, popup, ratlos, scan, scanner, virenscan, virenscanner, werbun, werbung, zusammen, öffnet |
Linear-Darstellung
