Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: spyware und malwarebytes lassen sich nicht öffnen

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 26.05.2014, 11:08   #1
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



wir hatten vor einiger zeit das problem, dass wir plötzlich auf das CD-Rom-Laufwerk nicht mehr zugreifen konnten. "Öffnen mit..." wurde nicht angezeigt. Habe dann Super Antispyware und Malwarebytes durchgejagt und alle Schädlinge die angezeigt wurde, gelöscht. Alles war wieder chic. Nun spinnt mein Laufwerk schon wieder. Es erkennt zwar die CDs. Aber bei den Sims z.B. lädt er das spiel und irgendwann blinkt das laufwerk wie verrückt und das spiel bricht ab. Wollte nun wieder Antispyware und Malwarebytes durchjagen. Hab beide Programme bei Chip runtergeladen, aber sie lassen sich nicht öffnen. Nach dem Klicken auf das Desktopsymbol passiert gar nichts.
Hab soeben festgestellt, dass Avira Antivir deaktiviert ist. lässt sich auch nicht aktivieren.

Windows 7 Home Premium
SP1
AMD A8-3870 APU with Radeon HD Graph. 3,00 GHz
64 Bit System

Geändert von tweety665 (26.05.2014 um 11:12 Uhr) Grund: Daten vergessen

Alt 26.05.2014, 11:14   #2
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen





Mein Name ist Sandra und ich werde Dir bei Deinem Problem behilflich sein.
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lese die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem
  • Führe bitte nur Scans durch zu denen Du von mir aufgefordert wirst.
  • Bitte kein Crossposting ( posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, ausser Du wurdest dazu aufgefordert.
  • Poste die Logfiles direkt in deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 2 Tagen nichts von mir hörst, dann schreibe mir bitte eine PM.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der schnellere und bei einem Befall durch Malware immer der sicherste Weg. Adware lässt sich in den allermeisten Fällen problemlos entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean bist.

Posten in Code Tags
Bitte füge die Logs immer in Code-Tags ein. Wenn Du das nicht machst, erschwert es mir sehr das Auswerten. Danke.
Dazu:
  • Klicke über dem Antwortfenster auf die Raute #, dann steht dort in eckigen Klammern [] CODE /CODE.
  • Zwischen den beiden code-Bausteinen fügst Du dann deine Logfiles ein. Also CODE Logfile /CODE
  • Wenn die Logs zu lang sein sollten, dann teile sie bitte auf und poste sie dann hier in Deinem Thread, notfalls in mehreren Antworten.

Bitte poste mir die Funde von Malwarebytes

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 26.05.2014, 11:47   #3
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Vielen lieben Dank für die schnelle Antwort. Zwischenzeitlich ließ sich Malwarebytes öffnen, fand aber nichts.
Ich kann jedoch keine Logfiles erstellen. Weder mit 7Zip - funktioniert nicht, noch mit Hijackthis. Ich konnte HijackThis runterladen und öffnen. Schon erscheint "keine Rückmeldung". Auch Farbar Recovery Scan toll hängt nach einen Sekunden Scan.
__________________

Alt 26.05.2014, 11:51   #4
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Funktioniert der abgesicherte Modus noch? Falls ja, mach bitte da einen Scan.

Alt 26.05.2014, 12:03   #5
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



ja, der funktioniert.

hxxp://www.fotos-hochladen.net/thumbnail/abgesichertermogolp2n1uf5_thumb.jpg


Geändert von tweety665 (26.05.2014 um 12:04 Uhr) Grund: link eingefügt, foto nicht erkennbar

Alt 26.05.2014, 12:05   #6
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Ok, dann mach bitte im abgesicherten Modus einen Scan mit FRST.
__________________
--> spyware und malwarebytes lassen sich nicht öffnen

Alt 26.05.2014, 12:26   #7
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 02
Ran by User (administrator) on USER-PC on 26-05-2014 12:08:43
Running from C:\Users\User\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Safe Mode (with Networking)



==================== Processes (Whitelisted) =================

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\User\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613024 2010-09-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-09-27] (Atheros Commnucations)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2439072 2010-05-24] (VIA)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2012-11-10] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-14] (DivX, LLC)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [296520 2014-05-03] (RealNetworks, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\Run: [AppsHat] => C:\Users\User\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\Run: [Apps Hat] => C:\Users\User\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\MountPoints2: {ead6e2a1-8037-11e2-b5c3-806e6f6e6963} - D:\ASRSetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetycrt.dll
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetycrt.dll

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D0369294A15CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {438CB363-A94D-4AE3-8F99-E93393D46036} URL = hxxp://www.bing.com/?cc=de
SearchScopes: HKLM - {6821768E-EC81-3874-994F-0883CF6C09DE} URL = 
SearchScopes: HKLM-x32 - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=DE&userid=7e1a6ac5-faaf-40b4-8f7b-7b4cf572394b&searchtype=ds&q={searchTerms}&installDate=11/07/2013
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10061&barid={9A0BB529-0267-11E3-BD77-BC5FF461CC28}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321902&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SP33B54967-2A26-47A1-A37E-141994707C76&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = 
SearchScopes: HKCU - {7D076A2C-E6B7-4F71-A76A-6B5DF859734E} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=6cae971d000000000000bc5ff461cc28&r=957
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = 
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: No Name - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -  No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Winsock: Catalog9 01 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 02 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 03 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 04 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9 15 C:\Windows\SysWOW64\PCProtect.dll [293984] (Objectify Media Inc)
Winsock: Catalog9-x64 01 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 02 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 03 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 04 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Winsock: Catalog9-x64 15 C:\Windows\system32\PCProtect64.dll [330624] (Objectify Media Inc)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default
FF DefaultSearchEngine: Conduit Search
FF SelectedSearchEngine: Conduit Search
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF user.js: detected! => C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer Cloud)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-05-03]
FF HKLM-x32\...\Firefox\Extensions: [{53D8DD28-1C83-41F3-B171-C2ED5B3E5DE8}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKCU\...\Firefox\Extensions: [{8c9ee4c1-6fb6-4773-afd6-23f4398777ac}] - C:\Program Files (x86)\LyricsPal\130.xpi

Chrome: 
=======
CHR Extension: (RealPlayer Downloader) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-05-03]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-04-06]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] ()
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] ()
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
S2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-04-06] ()
S2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-05-03] (RealNetworks, Inc.)
S2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-04-07] ()

==================== Drivers (Whitelisted) ====================

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
S3 L1C; C:\Windows\System32\DRIVERS\L1C60x64.sys [99440 2011-08-11] (Atheros Communications, Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-05-26] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 RTL85n64; C:\Windows\System32\DRIVERS\RTL85n64.sys [378368 2009-06-10] (Realtek)
S3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [104448 2012-11-10] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [221184 2012-11-10] (Renesas Electronics Corporation)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-03-21] ()
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [137728 2011-02-25] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [195584 2011-02-25] (VIA Technologies, Inc.)
S3 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:43 - 2014-05-26 12:09 - 00019246 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-26 11:43 - 2014-05-26 12:08 - 00000000 ____D () C:\FRST
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-26 11:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-26 11:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:52 - 2014-05-26 11:16 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-21 08:00 - 2014-05-21 08:01 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:49 - 2014-05-21 07:55 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-20 21:19 - 2014-05-20 21:19 - 00000379 _____ () C:\Windows\DirectX.log
2014-05-18 17:03 - 2014-05-20 10:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:24 - 2014-05-26 11:17 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-18 16:21 - 2014-05-26 11:54 - 00069918 _____ () C:\Windows\IE11_main.log
2014-05-16 16:23 - 2014-05-21 07:42 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-16 16:22 - 2014-05-26 11:57 - 00004194 _____ () C:\Windows\PFRO.log
2014-05-16 16:22 - 2014-05-26 10:50 - 00000448 _____ () C:\Windows\setupact.log
2014-05-16 16:22 - 2014-05-16 16:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-14 23:18 - 2014-05-26 10:33 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-14 23:06 - 2014-05-06 02:46 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 23:06 - 2014-05-06 02:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 02:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 23:06 - 2014-05-06 01:32 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 23:06 - 2014-05-06 01:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 01:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 05:56 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 05:56 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 05:56 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 05:56 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 05:56 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 05:56 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 05:56 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 05:56 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 05:56 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-08 23:51 - 2014-05-09 00:05 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:46 - 2014-05-08 23:48 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:25 - 2014-05-08 23:26 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-06 22:55 - 2012-11-23 11:16 - 00000000 ____D () C:\Users\User\Downloads\1998 -  Oceans Of Time
2014-05-06 22:43 - 2014-05-06 22:54 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:34 - 2014-05-06 22:35 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:19 - 2014-05-06 22:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2010-07-04 22:36 - 00000000 ____D () C:\Users\User\Downloads\1998 - Oceans Of Time
2014-05-06 21:27 - 2014-05-06 22:06 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 12:41 - 2014-05-06 12:45 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:35 - 2014-05-06 12:44 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:38 - 2014-05-06 10:39 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:37 - 2014-05-06 10:38 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:35 - 2014-05-06 10:36 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:18 - 2011-10-08 12:30 - 00000000 ____D () C:\Users\User\Downloads\Die Gluecksbaerchis - Abenteuer im Wunderland
2014-05-06 10:11 - 2014-05-06 10:16 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:04 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:03 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 00:51 - 2014-05-06 00:57 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:25 - 2014-05-06 00:36 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:13 - 2014-05-06 00:24 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:48 - 2014-05-05 23:54 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-05 23:47 - 2014-05-05 23:58 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 21:38 - 2009-09-19 08:33 - 00000000 ____D () C:\Users\User\Downloads\Gluecksbaerchis.Die.Reise.ins.Land.Scherze.-.Viel.German.2004.DVDRiP.XViD-GXBG
2014-05-03 21:33 - 2014-05-03 21:34 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:34 - 2014-05-03 20:51 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:01 - 2014-05-03 20:19 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:00 - 2014-05-03 20:06 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:21 - 2014-05-03 15:38 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:31 - 2014-05-03 11:41 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:04 - 2014-05-03 11:36 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:25 - 2014-05-02 23:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 23:23 - 2014-05-02 23:50 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:20 - 2014-05-02 23:54 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-04-30 00:24 - 2014-04-30 03:26 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:04 - 2014-01-25 09:35 - 00000000 ____D () C:\Users\User\Downloads\atlnts
2014-04-29 21:32 - 2014-04-29 22:01 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 19:26 - 2014-04-29 20:01 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 13:27 - 2014-04-29 14:02 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 08:52 - 2014-04-29 09:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 22:19 - 2014-04-28 22:54 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar
2014-04-26 12:00 - 2013-06-28 13:07 - 00002242 _____ () C:\Users\Public\Desktop\Die Sims™ 3 Inselparadies.lnk

==================== One Month Modified Files and Folders =======

2014-05-26 12:09 - 2014-05-26 11:43 - 00019246 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 12:08 - 2014-05-26 11:43 - 00000000 ____D () C:\FRST
2014-05-26 11:57 - 2014-05-16 16:22 - 00004194 _____ () C:\Windows\PFRO.log
2014-05-26 11:54 - 2014-05-18 16:21 - 00069918 _____ () C:\Windows\IE11_main.log
2014-05-26 11:54 - 2011-05-07 01:46 - 01959599 _____ () C:\Windows\WindowsUpdate.log
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:51 - 2013-04-03 15:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-26 11:45 - 2013-07-30 23:45 - 00000282 _____ () C:\Windows\Tasks\DSite.job
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:33 - 2013-07-24 19:03 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-26 11:19 - 2013-02-28 02:26 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job
2014-05-26 11:17 - 2014-05-18 16:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-26 11:16 - 2014-05-26 10:52 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 11:16 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-26 11:16 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:59 - 2013-12-13 15:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-26 10:50 - 2014-05-16 16:22 - 00000448 _____ () C:\Windows\setupact.log
2014-05-26 10:50 - 2013-07-24 19:03 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-26 10:50 - 2011-06-25 22:53 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-05-26 10:50 - 2011-05-16 01:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-26 10:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-26 10:33 - 2014-05-14 23:18 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 10:33 - 2013-05-04 21:54 - 00003200 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 10:30 - 2014-02-20 15:47 - 00000000 ____D () C:\Users\fbwuser.User-PC
2014-05-26 10:30 - 2013-04-26 11:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Applian FLV and Media Player
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-05-26 10:29 - 2013-05-04 21:53 - 00000000 ____D () C:\ProgramData\Real
2014-05-22 11:38 - 2013-02-27 14:41 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-05-21 08:01 - 2014-05-21 08:00 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:55 - 2014-05-21 07:49 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-21 07:42 - 2014-05-16 16:23 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-21 07:42 - 2013-07-19 15:22 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-21 00:18 - 2013-03-08 14:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\SoftGrid Client
2014-05-20 23:48 - 2010-11-21 08:50 - 00714410 _____ () C:\Windows\system32\perfh007.dat
2014-05-20 23:48 - 2010-11-21 08:50 - 00154268 _____ () C:\Windows\system32\perfc007.dat
2014-05-20 23:48 - 2009-07-14 07:13 - 01650208 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 23:19 - 2013-02-28 02:26 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-20 21:21 - 2013-09-26 12:10 - 00001382 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-05-20 21:20 - 2013-09-26 12:09 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-20 21:19 - 2014-05-20 21:19 - 00000379 _____ () C:\Windows\DirectX.log
2014-05-20 16:45 - 2013-07-21 13:19 - 00022016 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 10:50 - 2014-05-18 17:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-19 10:00 - 2013-03-05 10:56 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-18 16:24 - 2013-03-03 23:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-18 16:11 - 2013-09-30 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\Program Files\iTunes
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-18 16:11 - 2013-03-27 15:20 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-18 16:11 - 2013-03-27 15:19 - 00000000 ____D () C:\ProgramData\Apple
2014-05-16 16:22 - 2014-05-16 16:22 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-16 16:22 - 2014-02-18 15:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-15 11:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 22:03 - 2013-09-07 03:50 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 22:01 - 2013-02-28 12:16 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 18:51 - 2014-03-12 03:51 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 18:51 - 2013-04-03 15:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-12 07:26 - 2014-05-26 11:03 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-26 11:03 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-26 11:03 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-09 00:05 - 2014-05-08 23:51 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:48 - 2014-05-08 23:46 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:26 - 2014-05-08 23:25 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-08 21:12 - 2013-03-13 12:43 - 00000000 ____D () C:\Users\User\Documents\Bewerbungen Mandy
2014-05-07 23:14 - 2013-02-28 02:26 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA
2014-05-07 23:14 - 2013-02-28 02:26 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core
2014-05-06 22:54 - 2014-05-06 22:43 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:35 - 2014-05-06 22:34 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:26 - 2014-05-06 22:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\Users\User\AppData\Roaming\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-06 22:19 - 2013-10-10 10:19 - 00000004 _____ () C:\END
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2014-05-06 21:27 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 17:28 - 2013-07-24 19:03 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 17:28 - 2013-07-24 19:03 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 12:45 - 2014-05-06 12:41 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:44 - 2014-05-06 12:35 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:39 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:38 - 2014-05-06 10:37 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:36 - 2014-05-06 10:35 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:16 - 2014-05-06 10:11 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:10 - 2014-05-06 10:04 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:10 - 2014-05-06 10:03 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 02:46 - 2014-05-14 23:06 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 02:21 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 02:21 - 2014-05-14 23:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 01:32 - 2014-05-14 23:06 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 01:14 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 01:14 - 2014-05-14 23:06 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 00:57 - 2014-05-06 00:51 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:36 - 2014-05-06 00:25 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:24 - 2014-05-06 00:13 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:58 - 2014-05-05 23:47 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-05 23:54 - 2014-05-05 23:48 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-03 22:27 - 2013-05-04 21:54 - 00000000 ____D () C:\Users\User\AppData\Roaming\Real
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\Program Files (x86)\Real
2014-05-03 22:17 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-03 21:34 - 2014-05-03 21:33 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:51 - 2014-05-03 20:34 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:19 - 2014-05-03 20:01 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:06 - 2014-05-03 20:00 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:38 - 2014-05-03 15:21 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:41 - 2014-05-03 11:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:36 - 2014-05-03 11:04 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:54 - 2014-05-02 23:20 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-05-02 23:50 - 2014-05-02 23:23 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:31 - 2014-05-02 23:25 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 14:27 - 2013-08-27 21:26 - 00000000 ____D () C:\Users\User\Documents\VirtualDJ
2014-04-30 03:26 - 2014-04-30 00:24 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:01 - 2014-04-29 21:32 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 21:29 - 2014-04-21 20:26 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-04-29 20:01 - 2014-04-29 19:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 14:02 - 2014-04-29 13:27 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 09:26 - 2014-04-29 08:52 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 23:13 - 2012-03-13 11:15 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-04-28 22:54 - 2014-04-28 22:19 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar
2014-04-28 09:14 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-27 18:27 - 2014-04-06 12:43 - 00000000 ____D () C:\Users\User\Documents\Kelly Praktikum

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================
         
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-05-2014 02
Ran by User at 2014-05-26 12:09:46
Running from C:\Users\User\Downloads
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AbiWord 2.9.4 (HKLM-x32\...\AbiWord2) (Version: 2.9.4 - AbiSource Developers)
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9AFAAEAF-7256-793D-AE2B-B4B2C5B3A807}) (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Applian FLV and Media Player 3.1.1.12 (HKLM-x32\...\Applian FLV and Media Player) (Version: 3.1.1.12 - Applian Technologies)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
Avi to Mpeg 3.5 (HKLM-x32\...\{14BF164E-80A4-422E-BE43-39FB759666C2}_is1) (Version: 3.5 - Avi to Mpeg)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.34 - Atheros Communications)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BRATZ - Rock Angelz (HKLM-x32\...\{651A4E2C-C0B2-4A1F-86BC-6820C38A1139}) (Version: 1.0 - )
Catalyst Control Center InstallProxy (x32 Version: 2011.0728.1756.30366 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 70er, 80er & 90er Accessoires (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.3.2 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Inselparadies (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)
DomaIQ (HKLM-x32\...\DomaIQ Uninstaller) (Version:  - Tuguu SLU)
Ein Königreich für ein Lama-Action Game (HKLM-x32\...\Emperors New Groove) (Version:  - )
EPSON-Drucker-Software (HKLM\...\EPSON Printer and Utilities) (Version:  - )
Express Burn (HKLM-x32\...\ExpressBurn) (Version:  - NCH Software)
Firefox Packages (HKCU\...\Firefox Packages) (Version:  - ) <==== ATTENTION
FLV Player (HKCU\...\FLV Player) (Version: 1.0 - Somoto Ltd.) <==== ATTENTION
FLV Player 2.0 (build 25) (HKLM-x32\...\FLV Player) (Version: 2.0 (build 25) - Martijn de Visser)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fragen-Lern-CD 4.3 (HKLM-x32\...\de.3m5.wendel.flcd.FLCDB.FC622282278C06838B5CD08883589F2C8AB9EEDC.1) (Version: 4.3.5 - Wendel-Verlag GmbH)
Fragen-Lern-CD 4.3 (x32 Version: 4.3.5 - Wendel-Verlag GmbH) Hidden
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Hugo Troll Race Version 1.0 (HKLM-x32\...\{6C7A36BE-140B-42EC-A674-5DE0BFC0ADB2}_is1) (Version: 1.0 - KreaMedia)
Ice Age(TM) 4 - Voll Verschoben! Die arktischen Spiele demo (HKLM-x32\...\InstallShield_{F7A7D9B3-A142-4957-AC8E-530D1DE1A91A}) (Version: 1.00.0000 - Activision)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2266 - Intel Corporation)
Internet Explorer Toolbar 4.9 by SweetPacks (HKLM-x32\...\{F4E33CE5-A7AB-4F68-A7E7-F0AA84EF2D9E}) (Version: 4.9.0000 - SweetIM Technologies Ltd.) <==== ATTENTION
ITE Infrared Transceiver (HKLM-x32\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE)
iTunes (HKLM\...\{F73A118B-8271-47E2-8790-0C636B2539C5}) (Version: 11.1.0.126 - Apple Inc.)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Laura geht in die Schule (HKLM-x32\...\Laura geht in die Schule) (Version:  - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mein bester Freund - I love dogs (HKLM-x32\...\Mein bester Freund - I love dogs_is1) (Version:  - )
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
NVIDIA 3D Vision Treiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 275.33 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 275.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.2.22.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.22.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.275.80.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.7533 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 275.33 (Version: 275.33 - NVIDIA Corporation) Hidden
NVIDIA Update 1.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.3.5 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.3.5 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.1.15.109 - Electronic Arts, Inc.)
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PIF DESIGNER (HKLM-x32\...\{B90450DF-E781-46FD-B1F1-0C86DA40E443}) (Version:  - )
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
RealDownloader (x32 Version: 17.0.9 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.9 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
SolveigMM Video Splitter (HKLM-x32\...\SolveigMM Video Splitter 3.6.1305.24) (Version: 3.6.1305.24 - Solveig Multimedia)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Traumjob Babysitter (HKLM-x32\...\Traumjob Babysitter) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Virtual DJ - Atomix Productions (HKLM-x32\...\Virtual DJ - Atomix Productions) (Version:  - )
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
Wendy (HKLM-x32\...\{1B4E3046-4982-4436-8B6F-2EE4F63326C9}) (Version: 1.0.0 - Astragon)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 4.1.1 - Shark007)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
Wizard101(DE) (HKCU\...\Wizard101(DE)_is1) (Version:  - Gameforge 4D GmbH)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden

==================== Restore Points  =========================

21-05-2014 20:00:12 Windows Update
21-05-2014 22:17:50 Windows Update
22-05-2014 10:22:40 Windows Update
22-05-2014 20:00:12 Windows Update
22-05-2014 21:48:08 Windows Update
23-05-2014 20:00:12 Windows Update
23-05-2014 22:32:47 Windows Update
24-05-2014 12:18:57 Windows Update
25-05-2014 17:00:03 Windows-Sicherung
26-05-2014 08:26:35 Wiederherstellungsvorgang
26-05-2014 09:17:05 Windows Update
26-05-2014 09:53:48 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {08AE53F2-E319-4763-959C-438C1ADCF093} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {1CB00B1D-9840-41B1-8133-90449FF7F363} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {1FCA4F68-0F8D-424D-A4D1-E8E12275075A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {202CD6C2-B6E4-47EE-8113-C3955217C154} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {3506D00A-1BAA-4437-8AEE-F6DC5EF4E37D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {36F35EA7-DE3A-4C98-A062-1E3D8D722BDC} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {38383FD8-DC8D-4642-A39B-93961882C8F6} - System32\Tasks\{7D73784B-FC55-4BA1-930A-0E03F8CF140B} => C:\Program Files (x86)\iTunes\iTunes.exe [2013-09-17] (Apple Inc.)
Task: {3A70FD45-FF37-45C0-A11A-1C42828A8883} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {482DCB8B-9CB6-40C0-A71A-5733A142CF30} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {5271CEA6-99A7-4038-8751-78986D143545} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} - System32\Tasks\DSite => C:\Users\User\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {7FC54586-E0E0-487F-8E02-706A965540E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {8AF47484-2B77-4565-9876-5A83C1A6AC9B} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {94C6EF07-1808-497C-AAA3-6ED3DF822C58} - System32\Tasks\{E235FD23-3A7E-4D34-BA01-A589044B5E63} => C:\Program Files (x86)\BoontyGames\Taxi Racer New York 2\NYT2.exe
Task: {959922E7-C2E9-47AF-8408-7DC05A3280D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {9AF0EA1F-2F63-4990-8A32-C72DF1BFF160} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-06-09] ()
Task: {9C5EA9A6-90D9-4A45-8B97-2FE2A2CB9B70} - System32\Tasks\{8AA0076B-4DFB-4B33-9B49-A554F97997EA} => C:\Program Files (x86)\iTunes\iTunes.exe [2013-09-17] (Apple Inc.)
Task: {B7D93733-C33D-483D-A435-870E496ECD30} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B896FF88-A6B8-4753-9E06-07191072948A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-04-06] (RealNetworks, Inc.)
Task: {C9034D79-C32B-4125-B524-29706769856B} - System32\Tasks\Asrsetup => D:\ASRSetup.exe
Task: {C9CD063C-35E5-42E2-BDE8-C2785FEB2AC8} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {E059F788-ABB1-416E-93E9-F5873BF5A99E} - System32\Tasks\{8479F984-2E97-4890-9888-00CD11956EFD} => D:\Setup.EXE
Task: {F9A870E7-117E-4F7C-A661-F5D83C845F19} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DSite.job => C:\Users\User\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-04 09:11 - 2014-03-02 04:35 - 00051016 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 04061000 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00394568 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 01647432 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\User\Downloads\ccsetup400.exe:BDU
AlternateDataStreams: C:\Users\User\Downloads\FLVPlayerSetupStubMDV (1).exe:BDU

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EPSON Stylus DX4800 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIADE.EXE /F "C:\Windows\TEMP\E_SCBF5.tmp" /EF "HKLM"
MSCONFIG\startupreg: FLV Player => C:\Users\User\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
MSCONFIG\startupreg: Google Update => "C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Anwenderinfrarotgeräte
Description: Anwenderinfrarotgeräte
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: circlass
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (05/26/2014 11:58:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 11:53:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HijackThis.exe, Version 2.0.0.5 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b78

Startzeit: 01cf78c82e1d0a38

Endzeit: 0

Anwendungspfad: C:\Users\User\Downloads\HijackThis.exe

Berichts-ID: 9530ddd6-e4bb-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HijackThis.exe, Version 2.0.0.5 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 19c4

Startzeit: 01cf78c6888662e0

Endzeit: 60000

Anwendungspfad: C:\Users\User\Downloads\HijackThis.exe

Berichts-ID: bba66934-e4ba-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 25.5.2014.2 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c0c

Startzeit: 01cf78c70013e01e

Endzeit: 4

Anwendungspfad: C:\Users\User\Downloads\FRST64.exe

Berichts-ID: df15f989-e4ba-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:40:06 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HijackThis.exe, Version 2.0.0.5 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1958

Startzeit: 01cf78c6577c432e

Endzeit: 7

Anwendungspfad: C:\Users\User\Downloads\HijackThis.exe

Berichts-ID: a3e0ef34-e4b9-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:09:33 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!

Error: (05/26/2014 10:52:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 10:50:45 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!

Error: (05/26/2014 10:35:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 10:33:42 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: Die Lizenzdatei enthält keine gültige Lizenz. Der Dienst wird beendet!


System errors:
=============
Error: (05/26/2014 00:05:14 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1068BITS{4991D34B-80A1-4291-83B6-3328366B9097}

Error: (05/26/2014 11:57:58 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1068stisvc{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:33 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:32 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (05/26/2014 11:57:31 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


Microsoft Office Sessions:
=========================
Error: (05/26/2014 11:58:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 11:53:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HijackThis.exe2.0.0.51b7801cf78c82e1d0a380C:\Users\User\Downloads\HijackThis.exe9530ddd6-e4bb-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HijackThis.exe2.0.0.519c401cf78c6888662e060000C:\Users\User\Downloads\HijackThis.exebba66934-e4ba-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: FRST64.exe25.5.2014.2c0c01cf78c70013e01e4C:\Users\User\Downloads\FRST64.exedf15f989-e4ba-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:40:06 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HijackThis.exe2.0.0.5195801cf78c6577c432e7C:\Users\User\Downloads\HijackThis.exea3e0ef34-e4b9-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:09:33 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (05/26/2014 10:52:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 10:50:45 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (05/26/2014 10:35:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 10:33:42 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0


==================== Memory info =========================== 

Percentage of memory in use: 14%
Total physical RAM: 7915.77 MB
Available physical RAM: 6762.6 MB
Total Pagefile: 15829.71 MB
Available Pagefile: 14714.21 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows7) (Fixed) (Total:698.54 GB) (Free:460.75 GB) NTFS
Drive d: (Sims3EP10) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 3EAE5DE7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
--- --- ---

Alt 27.05.2014, 00:48   #8
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Hallo tweety665,

hast du auch mit anderen Programmen, Anwendungen Probleme, wenn du diese öffnest?
Hast du TuneUp verwendet?

Schritt 1
Bitte deinstalliere folgende Programme (falls vorhanden) :

Firefox Packages
FLV Player
Internet Explorer Toolbar 4.9 by SweetPacks
Java 7 Update 25

Dazu gehe auf:
den Windowsbutton in der Taskleiste --> Systemsteuerung --> Programme (Unterpunkt Programme deinstallieren) --> Programm auswählen --> entfernen

Falls du ein Programm nicht deinstallieren kannst, lade dir von hier den Revo-uninstaller herunter und deinstalliere es damit, wähle dabei den moderaten Modus.

Schritt 2
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 3
Starte noch einmal FRST.
  • Setze den Haken bei addition.txt und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und addition.txt erstellt und auf dem Desktop (oder in dem Verzeichnis in dem FRST liegt) gespeichert.
  • Poste den Inhalt dieser Logfiles bitte hier in deinen Thread.
q

Alt 27.05.2014, 20:58   #9
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Ne, Tune up hab ich nicht benutzt. Und mit anderen Programmen habe ich auch keine Probleme.
Hab jetzt Schritt 1-2 gemacht. Poste erstmal den Logfile von AdwCleaner und anschließend noch von FRST.
Code:
ATTFilter
# AdwCleaner v3.211 - Bericht erstellt am 27/05/2014 um 20:25:15
# Aktualisiert 26/05/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : User - USER-PC
# Gestartet von : C:\Users\User\Downloads\adwcleaner_3.211.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Browser Manager
Ordner Gelöscht : C:\ProgramData\Registry Helper
Ordner Gelöscht : C:\ProgramData\Trymedia
Ordner Gelöscht : C:\ProgramData\wincert
Ordner Gelöscht : C:\Program Files (x86)\goforfiles
Ordner Gelöscht : C:\Program Files (x86)\Movies Toolbar
Ordner Gelöscht : C:\Program Files (x86)\Optimizer Pro
Ordner Gelöscht : C:\Program Files (x86)\SweetIM
Ordner Gelöscht : C:\Program Files (x86)\Web Protect
Ordner Gelöscht : C:\Program Files\DomaIQ Uninstaller
Ordner Gelöscht : C:\Users\User\AppData\Local\AppsHat Mobile Apps
Ordner Gelöscht : C:\Users\User\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\User\AppData\Local\somotomoviestoolbar1
Ordner Gelöscht : C:\Users\User\AppData\Local\webplayer
Ordner Gelöscht : C:\Users\User\AppData\LocalLow\Minibar
Ordner Gelöscht : C:\Users\User\AppData\LocalLow\Softonic
Ordner Gelöscht : C:\Users\User\AppData\LocalLow\somotomoviestoolbar1
Ordner Gelöscht : C:\Users\User\AppData\LocalLow\SweetIM
Ordner Gelöscht : C:\Users\User\AppData\Roaming\DSite
Ordner Gelöscht : C:\Users\User\AppData\Roaming\goforfiles
Ordner Gelöscht : C:\Users\User\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\User\AppData\LocalLow\SkwConfig.bin
Datei Gelöscht : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default\user.js
Datei Gelöscht : C:\Windows\Tasks\DSite.job
Datei Gelöscht : C:\Windows\System32\Tasks\DSite
Datei Gelöscht : C:\Windows\System32\Tasks\GoforFilesUpdate

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat\Uninstall.lnk

***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Apps Hat]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [AppsHat]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BabMaint_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\biclient_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Lyrics_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Lyrics_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyDeltaTB_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyDeltaTB_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MYSEAR~1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MYSEAR~1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASMANCS
Wert Gelöscht : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Wert Gelöscht : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Wert Gelöscht : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64]
Wert Gelöscht : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86]
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\webcakeupdater
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_3d-fahrschule_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_3d-fahrschule_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E4A994B0-5550-4680-A4C6-B9470B888069}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F9EB11AB-9384-4736-9B33-993940F88895}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\anchorfree
Schlüssel Gelöscht : HKCU\Software\APN DTX
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\dsiteproducts
Schlüssel Gelöscht : HKCU\Software\GoforFiles
Schlüssel Gelöscht : HKCU\Software\IM
Schlüssel Gelöscht : HKCU\Software\ImInstaller
Schlüssel Gelöscht : HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gelöscht : HKCU\Software\Myfree Codec
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\SafetyNut
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\Webplayer
Schlüssel Gelöscht : HKCU\Software\WebProtect
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\GoforFiles
Schlüssel Gelöscht : HKLM\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\Software\Registry Helper
Schlüssel Gelöscht : HKLM\Software\WebProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DomaIQ Uninstaller
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16545


-\\ Mozilla Firefox v29.0.1 (de)

[ Datei : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultenginename", "Conduit Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Conduit Search");

-\\ Google Chrome v

[ Datei : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Extension] : blbkdnmdcafmfhinpmnlhhddbepgkeaa

*************************

AdwCleaner[R0].txt - [12574 octets] - [27/05/2014 20:19:12]
AdwCleaner[R1].txt - [12635 octets] - [27/05/2014 20:24:23]
AdwCleaner[S0].txt - [11187 octets] - [27/05/2014 20:25:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11248 octets] ##########
         

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 02
Ran by User (administrator) on USER-PC on 27-05-2014 20:34:43
Running from C:\Users\User\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
() C:\monitor.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613024 2010-09-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-09-27] (Atheros Commnucations)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2439072 2010-05-24] (VIA)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2012-11-10] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-14] (DivX, LLC)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [296520 2014-05-03] (RealNetworks, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\MountPoints2: {ead6e2a1-8037-11e2-b5c3-806e6f6e6963} - D:\ASRSetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D0369294A15CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {438CB363-A94D-4AE3-8F99-E93393D46036} URL = hxxp://www.bing.com/?cc=de
SearchScopes: HKLM - {6821768E-EC81-3874-994F-0883CF6C09DE} URL = 
SearchScopes: HKLM-x32 - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10061&barid={9A0BB529-0267-11E3-BD77-BC5FF461CC28}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321902&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SP33B54967-2A26-47A1-A37E-141994707C76&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = 
SearchScopes: HKCU - {7D076A2C-E6B7-4F71-A76A-6B5DF859734E} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=6cae971d000000000000bc5ff461cc28&r=957
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer Cloud)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-05-03]
FF HKLM-x32\...\Firefox\Extensions: [{53D8DD28-1C83-41F3-B171-C2ED5B3E5DE8}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-05-26]
FF HKCU\...\Firefox\Extensions: [{8c9ee4c1-6fb6-4773-afd6-23f4398777ac}] - C:\Program Files (x86)\LyricsPal\130.xpi

Chrome: 
=======
CHR HomePage: 
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-27]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-05-27]
CHR Extension: (Modul zum Sperren von gefährlichen Webseiten) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-27]
CHR Extension: (RealPlayer Downloader) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-05-03]
CHR Extension: (Virtual Keyboard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-27]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Anti-Banner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-04-06]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] ()
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] ()
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-04-06] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-05-03] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-04-07] ()

==================== Drivers (Whitelisted) ====================

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-05-26] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-05-26] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625248 2014-05-26] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-05-26] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2014-05-26] (Kaspersky Lab ZAO)
S3 L1C; C:\Windows\System32\DRIVERS\L1C60x64.sys [99440 2011-08-11] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-05-27] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 RTL85n64; C:\Windows\System32\DRIVERS\RTL85n64.sys [378368 2009-06-10] (Realtek)
S3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [104448 2012-11-10] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [221184 2012-11-10] (Renesas Electronics Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-03-21] ()
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [137728 2011-02-25] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [195584 2011-02-25] (VIA Technologies, Inc.)
S3 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-27 20:28 - 2014-05-27 20:28 - 00011369 _____ () C:\Users\User\Desktop\AdwCleaner[S0].txt
2014-05-27 20:19 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-27 20:18 - 2014-05-27 20:25 - 00000000 ____D () C:\AdwCleaner
2014-05-27 20:18 - 2014-05-27 20:18 - 01327971 _____ () C:\Users\User\Downloads\adwcleaner_3.211.exe
2014-05-27 20:13 - 2014-05-27 20:13 - 00001276 _____ () C:\Users\User\Desktop\Revo Uninstaller.lnk
2014-05-27 20:13 - 2014-05-27 20:13 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-27 20:12 - 2014-05-27 20:12 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\User\Downloads\revosetup95.exe
2014-05-26 22:58 - 2014-05-27 20:28 - 00002342 _____ () C:\Users\User\Desktop\Sicherer Zahlungsverkehr.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00001132 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2014-05-26 22:57 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-05-26 22:56 - 2014-05-27 20:28 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-26 22:56 - 2014-05-26 23:04 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-05-26 22:56 - 2014-05-26 23:04 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-05-26 22:26 - 2014-05-26 22:26 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:25 - 2014-05-27 20:26 - 00000112 _____ () C:\Windows\setupact.log
2014-05-26 22:25 - 2014-05-26 22:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-26 22:24 - 2014-05-27 20:26 - 00001650 _____ () C:\Windows\PFRO.log
2014-05-26 22:00 - 2014-05-26 22:01 - 00008727 _____ () C:\Windows\IE11_main.log
2014-05-26 12:20 - 2014-05-26 12:20 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (2).exe
2014-05-26 12:09 - 2014-05-26 12:09 - 00034164 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:43 - 2014-05-27 20:34 - 00024019 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-26 11:43 - 2014-05-27 20:34 - 00000000 ____D () C:\FRST
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-26 11:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-26 11:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:52 - 2014-05-26 11:16 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-21 08:00 - 2014-05-21 08:01 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:49 - 2014-05-21 07:55 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-18 17:03 - 2014-05-20 10:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:24 - 2014-05-27 20:28 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-14 23:18 - 2014-05-27 20:27 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-14 23:06 - 2014-05-06 02:46 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 23:06 - 2014-05-06 02:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 02:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 23:06 - 2014-05-06 01:32 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 23:06 - 2014-05-06 01:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 01:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 05:56 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 05:56 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 05:56 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 05:56 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 05:56 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 05:56 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 05:56 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 05:56 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 05:56 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-08 23:51 - 2014-05-09 00:05 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:46 - 2014-05-08 23:48 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:25 - 2014-05-08 23:26 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-06 22:55 - 2012-11-23 11:16 - 00000000 ____D () C:\Users\User\Downloads\1998 -  Oceans Of Time
2014-05-06 22:43 - 2014-05-06 22:54 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:34 - 2014-05-06 22:35 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:19 - 2014-05-06 22:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2010-07-04 22:36 - 00000000 ____D () C:\Users\User\Downloads\1998 - Oceans Of Time
2014-05-06 21:27 - 2014-05-06 22:06 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 12:41 - 2014-05-06 12:45 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:35 - 2014-05-06 12:44 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:38 - 2014-05-06 10:39 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:37 - 2014-05-06 10:38 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:35 - 2014-05-06 10:36 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:18 - 2011-10-08 12:30 - 00000000 ____D () C:\Users\User\Downloads\Die Gluecksbaerchis - Abenteuer im Wunderland
2014-05-06 10:11 - 2014-05-06 10:16 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:04 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:03 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 00:51 - 2014-05-06 00:57 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:25 - 2014-05-06 00:36 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:13 - 2014-05-06 00:24 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:48 - 2014-05-05 23:54 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-05 23:47 - 2014-05-05 23:58 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 21:38 - 2009-09-19 08:33 - 00000000 ____D () C:\Users\User\Downloads\Gluecksbaerchis.Die.Reise.ins.Land.Scherze.-.Viel.German.2004.DVDRiP.XViD-GXBG
2014-05-03 21:33 - 2014-05-03 21:34 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:34 - 2014-05-03 20:51 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:01 - 2014-05-03 20:19 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:00 - 2014-05-03 20:06 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:21 - 2014-05-03 15:38 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:31 - 2014-05-03 11:41 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:04 - 2014-05-03 11:36 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:25 - 2014-05-02 23:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 23:23 - 2014-05-02 23:50 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:20 - 2014-05-02 23:54 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-04-30 00:24 - 2014-04-30 03:26 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:04 - 2014-01-25 09:35 - 00000000 ____D () C:\Users\User\Downloads\atlnts
2014-04-29 21:32 - 2014-04-29 22:01 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 19:26 - 2014-04-29 20:01 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 13:27 - 2014-04-29 14:02 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 08:52 - 2014-04-29 09:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 22:19 - 2014-04-28 22:54 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar

==================== One Month Modified Files and Folders =======

2014-05-27 20:34 - 2014-05-26 11:43 - 00024019 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-27 20:34 - 2014-05-26 11:43 - 00000000 ____D () C:\FRST
2014-05-27 20:34 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-27 20:34 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-27 20:33 - 2013-07-24 19:03 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-27 20:30 - 2011-05-07 01:46 - 02039137 _____ () C:\Windows\WindowsUpdate.log
2014-05-27 20:28 - 2014-05-27 20:28 - 00011369 _____ () C:\Users\User\Desktop\AdwCleaner[S0].txt
2014-05-27 20:28 - 2014-05-26 22:58 - 00002342 _____ () C:\Users\User\Desktop\Sicherer Zahlungsverkehr.lnk
2014-05-27 20:28 - 2014-05-26 22:56 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-27 20:28 - 2014-05-18 16:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-27 20:27 - 2014-05-14 23:18 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-27 20:27 - 2013-07-24 19:03 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-27 20:27 - 2013-05-04 21:54 - 00003200 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-27 20:27 - 2011-06-25 22:53 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-05-27 20:26 - 2014-05-26 22:25 - 00000112 _____ () C:\Windows\setupact.log
2014-05-27 20:26 - 2014-05-26 22:24 - 00001650 _____ () C:\Windows\PFRO.log
2014-05-27 20:26 - 2011-05-16 01:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-27 20:26 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-27 20:25 - 2014-05-27 20:18 - 00000000 ____D () C:\AdwCleaner
2014-05-27 20:25 - 2013-09-21 20:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2014-05-27 20:19 - 2013-02-28 02:26 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job
2014-05-27 20:18 - 2014-05-27 20:18 - 01327971 _____ () C:\Users\User\Downloads\adwcleaner_3.211.exe
2014-05-27 20:13 - 2014-05-27 20:13 - 00001276 _____ () C:\Users\User\Desktop\Revo Uninstaller.lnk
2014-05-27 20:13 - 2014-05-27 20:13 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-27 20:12 - 2014-05-27 20:12 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\User\Downloads\revosetup95.exe
2014-05-27 19:51 - 2013-04-03 15:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-26 23:19 - 2013-02-28 02:26 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job
2014-05-26 23:04 - 2014-05-26 22:56 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-05-26 23:04 - 2014-05-26 22:56 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-05-26 23:04 - 2013-10-17 15:47 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2014-05-26 23:04 - 2013-10-17 15:47 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2014-05-26 23:04 - 2013-06-06 17:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2014-05-26 22:57 - 2014-05-26 22:57 - 00001132 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-05-26 22:26 - 2014-05-26 22:26 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:26 - 2013-07-19 15:22 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:25 - 2014-05-26 22:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-26 22:24 - 2013-03-08 14:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\SoftGrid Client
2014-05-26 22:01 - 2014-05-26 22:00 - 00008727 _____ () C:\Windows\IE11_main.log
2014-05-26 19:12 - 2013-03-13 12:43 - 00000000 ____D () C:\Users\User\Documents\Bewerbungen Mandy
2014-05-26 12:20 - 2014-05-26 12:20 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (2).exe
2014-05-26 12:09 - 2014-05-26 12:09 - 00034164 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:16 - 2014-05-26 10:52 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:59 - 2013-12-13 15:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-26 10:30 - 2014-02-20 15:47 - 00000000 ____D () C:\Users\fbwuser.User-PC
2014-05-26 10:30 - 2013-04-26 11:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Applian FLV and Media Player
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-05-26 10:29 - 2013-05-04 21:53 - 00000000 ____D () C:\ProgramData\Real
2014-05-22 11:38 - 2013-02-27 14:41 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-05-21 08:01 - 2014-05-21 08:00 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:55 - 2014-05-21 07:49 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-20 23:48 - 2010-11-21 08:50 - 00714410 _____ () C:\Windows\system32\perfh007.dat
2014-05-20 23:48 - 2010-11-21 08:50 - 00154268 _____ () C:\Windows\system32\perfc007.dat
2014-05-20 23:48 - 2009-07-14 07:13 - 01650208 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-20 21:21 - 2013-09-26 12:10 - 00001382 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-05-20 21:20 - 2013-09-26 12:09 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-20 16:45 - 2013-07-21 13:19 - 00022016 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 10:50 - 2014-05-18 17:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-19 10:00 - 2013-03-05 10:56 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-18 16:24 - 2013-03-03 23:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-18 16:11 - 2013-09-30 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\Program Files\iTunes
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-18 16:11 - 2013-03-27 15:20 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-18 16:11 - 2013-03-27 15:19 - 00000000 ____D () C:\ProgramData\Apple
2014-05-16 16:22 - 2014-02-18 15:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-15 11:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 22:03 - 2013-09-07 03:50 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 22:01 - 2013-02-28 12:16 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 18:51 - 2014-03-12 03:51 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 18:51 - 2013-04-03 15:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-12 07:26 - 2014-05-26 11:03 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-26 11:03 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-26 11:03 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-09 00:05 - 2014-05-08 23:51 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:48 - 2014-05-08 23:46 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:26 - 2014-05-08 23:25 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-07 23:14 - 2013-02-28 02:26 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA
2014-05-07 23:14 - 2013-02-28 02:26 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core
2014-05-06 22:54 - 2014-05-06 22:43 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:35 - 2014-05-06 22:34 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:26 - 2014-05-06 22:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\Users\User\AppData\Roaming\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2014-05-06 21:27 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 17:28 - 2013-07-24 19:03 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 17:28 - 2013-07-24 19:03 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 12:45 - 2014-05-06 12:41 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:44 - 2014-05-06 12:35 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:39 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:38 - 2014-05-06 10:37 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:36 - 2014-05-06 10:35 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:16 - 2014-05-06 10:11 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:10 - 2014-05-06 10:04 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:10 - 2014-05-06 10:03 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 02:46 - 2014-05-14 23:06 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 02:21 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 02:21 - 2014-05-14 23:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 01:32 - 2014-05-14 23:06 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 01:14 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 01:14 - 2014-05-14 23:06 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 00:57 - 2014-05-06 00:51 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:36 - 2014-05-06 00:25 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:24 - 2014-05-06 00:13 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:58 - 2014-05-05 23:47 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-05 23:54 - 2014-05-05 23:48 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-03 22:27 - 2013-05-04 21:54 - 00000000 ____D () C:\Users\User\AppData\Roaming\Real
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\Program Files (x86)\Real
2014-05-03 22:17 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-03 21:34 - 2014-05-03 21:33 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:51 - 2014-05-03 20:34 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:19 - 2014-05-03 20:01 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:06 - 2014-05-03 20:00 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:38 - 2014-05-03 15:21 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:41 - 2014-05-03 11:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:36 - 2014-05-03 11:04 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:54 - 2014-05-02 23:20 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-05-02 23:50 - 2014-05-02 23:23 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:31 - 2014-05-02 23:25 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 14:27 - 2013-08-27 21:26 - 00000000 ____D () C:\Users\User\Documents\VirtualDJ
2014-04-30 03:26 - 2014-04-30 00:24 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:01 - 2014-04-29 21:32 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 21:29 - 2014-04-21 20:26 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-04-29 20:01 - 2014-04-29 19:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 14:02 - 2014-04-29 13:27 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 09:26 - 2014-04-29 08:52 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 23:13 - 2012-03-13 11:15 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-04-28 22:54 - 2014-04-28 22:19 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar
2014-04-28 09:14 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-27 18:27 - 2014-04-06 12:43 - 00000000 ____D () C:\Users\User\Documents\Kelly Praktikum

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\avgnt.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-19 00:39

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-05-2014 02
Ran by User at 2014-05-27 20:35:12
Running from C:\Users\User\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AbiWord 2.9.4 (HKLM-x32\...\AbiWord2) (Version: 2.9.4 - AbiSource Developers)
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9AFAAEAF-7256-793D-AE2B-B4B2C5B3A807}) (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Applian FLV and Media Player 3.1.1.12 (HKLM-x32\...\Applian FLV and Media Player) (Version: 3.1.1.12 - Applian Technologies)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
Avi to Mpeg 3.5 (HKLM-x32\...\{14BF164E-80A4-422E-BE43-39FB759666C2}_is1) (Version: 3.5 - Avi to Mpeg)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.34 - Atheros Communications)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BRATZ - Rock Angelz (HKLM-x32\...\{651A4E2C-C0B2-4A1F-86BC-6820C38A1139}) (Version: 1.0 - )
Catalyst Control Center InstallProxy (x32 Version: 2011.0728.1756.30366 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 70er, 80er & 90er Accessoires (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.3.2 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Inselparadies (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)
Ein Königreich für ein Lama-Action Game (HKLM-x32\...\Emperors New Groove) (Version:  - )
EPSON-Drucker-Software (HKLM\...\EPSON Printer and Utilities) (Version:  - )
Express Burn (HKLM-x32\...\ExpressBurn) (Version:  - NCH Software)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fragen-Lern-CD 4.3 (HKLM-x32\...\de.3m5.wendel.flcd.FLCDB.FC622282278C06838B5CD08883589F2C8AB9EEDC.1) (Version: 4.3.5 - Wendel-Verlag GmbH)
Fragen-Lern-CD 4.3 (x32 Version: 4.3.5 - Wendel-Verlag GmbH) Hidden
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Hugo Troll Race Version 1.0 (HKLM-x32\...\{6C7A36BE-140B-42EC-A674-5DE0BFC0ADB2}_is1) (Version: 1.0 - KreaMedia)
Ice Age(TM) 4 - Voll Verschoben! Die arktischen Spiele demo (HKLM-x32\...\InstallShield_{F7A7D9B3-A142-4957-AC8E-530D1DE1A91A}) (Version: 1.00.0000 - Activision)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2266 - Intel Corporation)
ITE Infrared Transceiver (HKLM-x32\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE)
iTunes (HKLM\...\{F73A118B-8271-47E2-8790-0C636B2539C5}) (Version: 11.1.0.126 - Apple Inc.)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Laura geht in die Schule (HKLM-x32\...\Laura geht in die Schule) (Version:  - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mein bester Freund - I love dogs (HKLM-x32\...\Mein bester Freund - I love dogs_is1) (Version:  - )
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
NVIDIA 3D Vision Treiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 275.33 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 275.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.2.22.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.22.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.275.80.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.7533 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 275.33 (Version: 275.33 - NVIDIA Corporation) Hidden
NVIDIA Update 1.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.3.5 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.3.5 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.1.15.109 - Electronic Arts, Inc.)
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PIF DESIGNER (HKLM-x32\...\{B90450DF-E781-46FD-B1F1-0C86DA40E443}) (Version:  - )
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
RealDownloader (x32 Version: 17.0.9 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.9 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
SolveigMM Video Splitter (HKLM-x32\...\SolveigMM Video Splitter 3.6.1305.24) (Version: 3.6.1305.24 - Solveig Multimedia)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Traumjob Babysitter (HKLM-x32\...\Traumjob Babysitter) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Virtual DJ - Atomix Productions (HKLM-x32\...\Virtual DJ - Atomix Productions) (Version:  - )
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
Wendy (HKLM-x32\...\{1B4E3046-4982-4436-8B6F-2EE4F63326C9}) (Version: 1.0.0 - Astragon)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 4.1.1 - Shark007)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
Wizard101(DE) (HKCU\...\Wizard101(DE)_is1) (Version:  - Gameforge 4D GmbH)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden

==================== Restore Points  =========================

22-05-2014 20:00:12 Windows Update
22-05-2014 21:48:08 Windows Update
23-05-2014 20:00:12 Windows Update
23-05-2014 22:32:47 Windows Update
24-05-2014 12:18:57 Windows Update
25-05-2014 17:00:03 Windows-Sicherung
26-05-2014 08:26:35 Wiederherstellungsvorgang
26-05-2014 09:17:05 Windows Update
26-05-2014 09:53:48 Windows Update
26-05-2014 20:00:14 Windows Update
27-05-2014 18:10:49 Removed Java 7 Update 25
27-05-2014 18:13:54 Revo Uninstaller's restore point - Internet Explorer Toolbar 4.9 by SweetPacks

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {08AE53F2-E319-4763-959C-438C1ADCF093} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {1CB00B1D-9840-41B1-8133-90449FF7F363} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {1FCA4F68-0F8D-424D-A4D1-E8E12275075A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {202CD6C2-B6E4-47EE-8113-C3955217C154} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {3506D00A-1BAA-4437-8AEE-F6DC5EF4E37D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {36F35EA7-DE3A-4C98-A062-1E3D8D722BDC} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {38383FD8-DC8D-4642-A39B-93961882C8F6} - System32\Tasks\{7D73784B-FC55-4BA1-930A-0E03F8CF140B} => C:\Program Files (x86)\iTunes\iTunes.exe [2013-09-17] (Apple Inc.)
Task: {482DCB8B-9CB6-40C0-A71A-5733A142CF30} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {6BBBFC55-8D44-42C6-8391-ABB18C13A999} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} - \DSite No Task File <==== ATTENTION
Task: {7FC54586-E0E0-487F-8E02-706A965540E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {91B1BD14-3B68-4212-8A2C-6DC4E88A7116} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {9295AD71-DC52-45F4-9EEC-D061DB29D9A1} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {94C6EF07-1808-497C-AAA3-6ED3DF822C58} - System32\Tasks\{E235FD23-3A7E-4D34-BA01-A589044B5E63} => C:\Program Files (x86)\BoontyGames\Taxi Racer New York 2\NYT2.exe
Task: {959922E7-C2E9-47AF-8408-7DC05A3280D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {9AF0EA1F-2F63-4990-8A32-C72DF1BFF160} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-06-09] ()
Task: {9C5EA9A6-90D9-4A45-8B97-2FE2A2CB9B70} - System32\Tasks\{8AA0076B-4DFB-4B33-9B49-A554F97997EA} => C:\Program Files (x86)\iTunes\iTunes.exe [2013-09-17] (Apple Inc.)
Task: {B7D93733-C33D-483D-A435-870E496ECD30} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B896FF88-A6B8-4753-9E06-07191072948A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-04-06] (RealNetworks, Inc.)
Task: {C9034D79-C32B-4125-B524-29706769856B} - System32\Tasks\Asrsetup => D:\ASRSetup.exe
Task: {CA4E26E7-B930-4956-B77A-2A2C7D597C5D} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {E059F788-ABB1-416E-93E9-F5873BF5A99E} - System32\Tasks\{8479F984-2E97-4890-9888-00CD11956EFD} => D:\Setup.EXE
Task: {F9A870E7-117E-4F7C-A661-F5D83C845F19} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-02-13 16:12 - 2014-02-13 16:12 - 00487517 _____ () C:\monitor.exe
2014-04-06 23:00 - 2014-04-06 23:00 - 00039568 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2014-04-07 03:06 - 2014-04-07 03:06 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-07 02:07 - 2010-01-21 01:53 - 00496232 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
2011-05-07 02:07 - 2010-01-21 01:52 - 00076392 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
2011-05-07 02:07 - 2010-01-21 01:53 - 00731752 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
2011-05-07 02:07 - 2010-01-21 01:53 - 00209000 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
2014-04-23 16:05 - 2013-01-28 14:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2013-01-28 14:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00859224 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00051016 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00716616 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00100168 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\libegl.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 04061000 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00394568 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 01647432 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\User\Downloads\ccsetup400.exe:BDU
AlternateDataStreams: C:\Users\User\Downloads\FLVPlayerSetupStubMDV (1).exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EPSON Stylus DX4800 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIADE.EXE /F "C:\Windows\TEMP\E_SCBF5.tmp" /EF "HKLM"
MSCONFIG\startupreg: FLV Player => C:\Users\User\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
MSCONFIG\startupreg: Google Update => "C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/27/2014 08:28:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:25:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: accept: 10022 (Ein ungültiges Argument wurde angegeben.)

Error: (05/27/2014 00:58:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (05/26/2014 10:26:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 04:18:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (05/26/2014 01:05:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 01:04:26 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (05/26/2014 11:58:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 11:53:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HijackThis.exe, Version 2.0.0.5 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b78

Startzeit: 01cf78c82e1d0a38

Endzeit: 0

Anwendungspfad: C:\Users\User\Downloads\HijackThis.exe

Berichts-ID: 9530ddd6-e4bb-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm HijackThis.exe, Version 2.0.0.5 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 19c4

Startzeit: 01cf78c6888662e0

Endzeit: 60000

Anwendungspfad: C:\Users\User\Downloads\HijackThis.exe

Berichts-ID: bba66934-e4ba-11e3-90ad-bc5ff461cc28


System errors:
=============
Error: (05/27/2014 08:27:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Protect Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/27/2014 08:27:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Protect Monitor erreicht.

Error: (05/27/2014 08:25:36 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (05/26/2014 11:05:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen: 
%%5

Error: (05/26/2014 10:25:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Protect Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/26/2014 10:25:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Protect Monitor erreicht.

Error: (05/26/2014 10:24:16 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (05/26/2014 10:01:32 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 11 für Windows 7 für x64-basierte Systeme

Error: (05/26/2014 01:04:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Protect Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/26/2014 01:04:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Protect Monitor erreicht.


Microsoft Office Sessions:
=========================
Error: (05/27/2014 08:28:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:25:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: accept: 10022 (Ein ungültiges Argument wurde angegeben.)

Error: (05/27/2014 00:58:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe

Error: (05/26/2014 10:26:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 04:18:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe

Error: (05/26/2014 01:05:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 01:04:26 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0

Error: (05/26/2014 11:58:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 11:53:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HijackThis.exe2.0.0.51b7801cf78c82e1d0a380C:\Users\User\Downloads\HijackThis.exe9530ddd6-e4bb-11e3-90ad-bc5ff461cc28

Error: (05/26/2014 11:48:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: HijackThis.exe2.0.0.519c401cf78c6888662e060000C:\Users\User\Downloads\HijackThis.exebba66934-e4ba-11e3-90ad-bc5ff461cc28


==================== Memory info =========================== 

Percentage of memory in use: 30%
Total physical RAM: 7915.77 MB
Available physical RAM: 5464.2 MB
Total Pagefile: 15829.71 MB
Available Pagefile: 12993.78 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (Windows7) (Fixed) (Total:698.54 GB) (Free:460.74 GB) NTFS
Drive d: (Sims3EP10) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 3EAE5DE7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         

Alt 29.05.2014, 01:22   #10
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Hallo tweety,

Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
() C:\monitor.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM-x32 - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10061&barid={9A0BB529-0267-11E3-BD77-BC5FF461CC28}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321902&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SP33B54967-2A26-47A1-A37E-141994707C76&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = 
SearchScopes: HKCU - {7D076A2C-E6B7-4F71-A76A-6B5DF859734E} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=6cae971d000000000000bc5ff461cc28&r=957
FF HKCU\...\Firefox\Extensions: [{8c9ee4c1-6fb6-4773-afd6-23f4398777ac}] - C:\Program Files (x86)\LyricsPal\130.xpi
CHR Extension: (Anti-Banner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-27]
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Task: {482DCB8B-9CB6-40C0-A71A-5733A142CF30} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} - \DSite No Task File <==== ATTENTION
C:\Program Files (x86)\LyricsPal
C:\Windows\SysWOW64\PCProtect.dll
C:\Windows\system32\PCProtect64.dll 
C:\monitorsvc.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe
cmd: netsh winsock reset
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 2
Starte noch einmal FRST.
  • Setze den Haken bei addition.txt und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und addition.txt erstellt und auf dem Desktop (oder in dem Verzeichnis in dem FRST liegt) gespeichert.
  • Poste den Inhalt dieser Logfiles bitte hier in deinen Thread.

Alt 29.05.2014, 18:32   #11
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-05-2014 02
Ran by User at 2014-05-29 18:27:31 Run:1
Running from C:\Users\User\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
() C:\monitor.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM-x32 - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10061&barid={9A0BB529-0267-11E3-BD77-BC5FF461CC28}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321902&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SP33B54967-2A26-47A1-A37E-141994707C76&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = 
SearchScopes: HKCU - {7D076A2C-E6B7-4F71-A76A-6B5DF859734E} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=6cae971d000000000000bc5ff461cc28&r=957
FF HKCU\...\Firefox\Extensions: [{8c9ee4c1-6fb6-4773-afd6-23f4398777ac}] - C:\Program Files (x86)\LyricsPal\130.xpi
CHR Extension: (Anti-Banner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-27]
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Task: {482DCB8B-9CB6-40C0-A71A-5733A142CF30} - \GoforFilesUpdate No Task File <==== ATTENTION
Task: {6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} - \DSite No Task File <==== ATTENTION
C:\Program Files (x86)\LyricsPal
C:\Windows\SysWOW64\PCProtect.dll
C:\Windows\system32\PCProtect64.dll 
C:\monitorsvc.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe
cmd: netsh winsock reset
*****************

[3588] C:\monitor.exe => Process closed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\URL => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} => Key deleted successfully.
HKCR\CLSID\{0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7D076A2C-E6B7-4F71-A76A-6B5DF859734E} => Key deleted successfully.
HKCR\CLSID\{7D076A2C-E6B7-4F71-A76A-6B5DF859734E} => Key not found.
HKCU\Software\Mozilla\Firefox\Extensions\\{8c9ee4c1-6fb6-4773-afd6-23f4398777ac} => Value deleted successfully.
C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman => Moved successfully.
ProtectMonitor => Service deleted successfully.
esgiguard => Service deleted successfully.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
HKCU\SOFTWARE\Policies\Google => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{482DCB8B-9CB6-40C0-A71A-5733A142CF30} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{482DCB8B-9CB6-40C0-A71A-5733A142CF30} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E72BC88-BD78-4BBA-A6B2-2E7ACF3726EA} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DSite => Key deleted successfully.
"C:\Program Files (x86)\LyricsPal" => File/Directory not found.
C:\Windows\SysWOW64\PCProtect.dll => Moved successfully.
C:\Windows\system32\PCProtect64.dll => Moved successfully.
C:\monitorsvc.exe => Moved successfully.
C:\Users\User\AppData\Local\Temp\Quarantine.exe => Moved successfully.

=========  netsh winsock reset =========


Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.


========= End of CMD: =========


==== End of Fixlog ====
         



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 02
Ran by User (administrator) on USER-PC on 29-05-2014 18:28:55
Running from C:\Users\User\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================
         
FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-05-2014 02
Ran by User at 2014-05-29 18:29:44
Running from C:\Users\User\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AbiWord 2.9.4 (HKLM-x32\...\AbiWord2) (Version: 2.9.4 - AbiSource Developers)
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9AFAAEAF-7256-793D-AE2B-B4B2C5B3A807}) (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Applian FLV and Media Player 3.1.1.12 (HKLM-x32\...\Applian FLV and Media Player) (Version: 3.1.1.12 - Applian Technologies)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
Avi to Mpeg 3.5 (HKLM-x32\...\{14BF164E-80A4-422E-BE43-39FB759666C2}_is1) (Version: 3.5 - Avi to Mpeg)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.34 - Atheros Communications)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BRATZ - Rock Angelz (HKLM-x32\...\{651A4E2C-C0B2-4A1F-86BC-6820C38A1139}) (Version: 1.0 - )
Catalyst Control Center InstallProxy (x32 Version: 2011.0728.1756.30366 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 70er, 80er & 90er Accessoires (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.3.2 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Inselparadies (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)
Ein Königreich für ein Lama-Action Game (HKLM-x32\...\Emperors New Groove) (Version:  - )
EPSON-Drucker-Software (HKLM\...\EPSON Printer and Utilities) (Version:  - )
Express Burn (HKLM-x32\...\ExpressBurn) (Version:  - NCH Software)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fragen-Lern-CD 4.3 (HKLM-x32\...\de.3m5.wendel.flcd.FLCDB.FC622282278C06838B5CD08883589F2C8AB9EEDC.1) (Version: 4.3.5 - Wendel-Verlag GmbH)
Fragen-Lern-CD 4.3 (x32 Version: 4.3.5 - Wendel-Verlag GmbH) Hidden
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Hugo Troll Race Version 1.0 (HKLM-x32\...\{6C7A36BE-140B-42EC-A674-5DE0BFC0ADB2}_is1) (Version: 1.0 - KreaMedia)
Ice Age(TM) 4 - Voll Verschoben! Die arktischen Spiele demo (HKLM-x32\...\InstallShield_{F7A7D9B3-A142-4957-AC8E-530D1DE1A91A}) (Version: 1.00.0000 - Activision)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2266 - Intel Corporation)
ITE Infrared Transceiver (HKLM-x32\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Laura geht in die Schule (HKLM-x32\...\Laura geht in die Schule) (Version:  - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mein bester Freund - I love dogs (HKLM-x32\...\Mein bester Freund - I love dogs_is1) (Version:  - )
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
NVIDIA 3D Vision Treiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 275.33 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 275.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 275.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.2.22.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.22.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.275.80.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.7533 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 275.33 (Version: 275.33 - NVIDIA Corporation) Hidden
NVIDIA Update 1.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.3.5 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.3.5 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.1.15.109 - Electronic Arts, Inc.)
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PIF DESIGNER (HKLM-x32\...\{B90450DF-E781-46FD-B1F1-0C86DA40E443}) (Version:  - )
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
RealDownloader (x32 Version: 17.0.9 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.9 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
SolveigMM Video Splitter (HKLM-x32\...\SolveigMM Video Splitter 3.6.1305.24) (Version: 3.6.1305.24 - Solveig Multimedia)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Traumjob Babysitter (HKLM-x32\...\Traumjob Babysitter) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Virtual DJ - Atomix Productions (HKLM-x32\...\Virtual DJ - Atomix Productions) (Version:  - )
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
Wendy (HKLM-x32\...\{1B4E3046-4982-4436-8B6F-2EE4F63326C9}) (Version: 1.0.0 - Astragon)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 4.1.1 - Shark007)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
Wizard101(DE) (HKCU\...\Wizard101(DE)_is1) (Version:  - Gameforge 4D GmbH)
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden

==================== Restore Points  =========================

26-05-2014 20:00:14 Windows Update
27-05-2014 18:10:49 Removed Java 7 Update 25
27-05-2014 18:13:54 Revo Uninstaller's restore point - Internet Explorer Toolbar 4.9 by SweetPacks
27-05-2014 20:00:17 Windows Update
27-05-2014 21:03:13 Windows Update
28-05-2014 20:00:13 Windows Update
28-05-2014 22:49:41 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {08AE53F2-E319-4763-959C-438C1ADCF093} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {1CB00B1D-9840-41B1-8133-90449FF7F363} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {1FCA4F68-0F8D-424D-A4D1-E8E12275075A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {202CD6C2-B6E4-47EE-8113-C3955217C154} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {3506D00A-1BAA-4437-8AEE-F6DC5EF4E37D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {36F35EA7-DE3A-4C98-A062-1E3D8D722BDC} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {38383FD8-DC8D-4642-A39B-93961882C8F6} - System32\Tasks\{7D73784B-FC55-4BA1-930A-0E03F8CF140B} => C:\Program Files (x86)\iTunes\iTunes.exe [2014-05-26] (Apple Inc.)
Task: {62D0D8BC-FF55-4772-AF8D-0A3ED8CAD5EB} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {6FADF933-3580-4127-A028-FA4C9B1ED6A3} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {7FC54586-E0E0-487F-8E02-706A965540E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {94C6EF07-1808-497C-AAA3-6ED3DF822C58} - System32\Tasks\{E235FD23-3A7E-4D34-BA01-A589044B5E63} => C:\Program Files (x86)\BoontyGames\Taxi Racer New York 2\NYT2.exe
Task: {959922E7-C2E9-47AF-8408-7DC05A3280D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-24] (Google Inc.)
Task: {9AF0EA1F-2F63-4990-8A32-C72DF1BFF160} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-06-09] ()
Task: {9BD1FB57-EF82-4D22-8B78-1B6E4D74FAB2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: {9C5EA9A6-90D9-4A45-8B97-2FE2A2CB9B70} - System32\Tasks\{8AA0076B-4DFB-4B33-9B49-A554F97997EA} => C:\Program Files (x86)\iTunes\iTunes.exe [2014-05-26] (Apple Inc.)
Task: {B7D93733-C33D-483D-A435-870E496ECD30} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {B896FF88-A6B8-4753-9E06-07191072948A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-04-06] (RealNetworks, Inc.)
Task: {C9034D79-C32B-4125-B524-29706769856B} - System32\Tasks\Asrsetup => D:\ASRSetup.exe
Task: {E059F788-ABB1-416E-93E9-F5873BF5A99E} - System32\Tasks\{8479F984-2E97-4890-9888-00CD11956EFD} => D:\Setup.EXE
Task: {F9A870E7-117E-4F7C-A661-F5D83C845F19} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {FABA10CE-7162-4437-9791-EF86FC47295A} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-04-07] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-05-07 02:08 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2014-04-06 23:00 - 2014-04-06 23:00 - 00039568 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2014-04-07 03:06 - 2014-04-07 03:06 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
2011-05-07 02:07 - 2010-01-21 01:53 - 00496232 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
2011-05-07 02:07 - 2010-01-21 01:52 - 00076392 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nv_common.dll
2011-05-07 02:07 - 2010-01-21 01:53 - 00731752 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\SpecialCase.dll
2011-05-07 02:07 - 2010-01-21 01:53 - 00209000 _____ () C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00859224 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00051016 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00716616 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00100168 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\libegl.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 04061000 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 00394568 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 09:11 - 2014-03-02 04:35 - 01647432 _____ () C:\Users\User\AppData\Local\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\User\Downloads\ccsetup400.exe:BDU
AlternateDataStreams: C:\Users\User\Downloads\FLVPlayerSetupStubMDV (1).exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EPSON Stylus DX4800 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIADE.EXE /F "C:\Windows\TEMP\E_SCBF5.tmp" /EF "HKLM"
MSCONFIG\startupreg: FLV Player => C:\Users\User\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
MSCONFIG\startupreg: Google Update => "C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/29/2014 00:54:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (05/29/2014 00:22:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SyncServer.exe, Version: 17.669.22.23, Zeitstempel: 0x52fa24ee
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001804f
ID des fehlerhaften Prozesses: 0x1bf0
Startzeit der fehlerhaften Anwendung: 0xSyncServer.exe0
Pfad der fehlerhaften Anwendung: SyncServer.exe1
Pfad des fehlerhaften Moduls: SyncServer.exe2
Berichtskennung: SyncServer.exe3

Error: (05/29/2014 00:08:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/28/2014 01:17:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (05/28/2014 00:32:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:28:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:25:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: accept: 10022 (Ein ungültiges Argument wurde angegeben.)

Error: (05/27/2014 00:58:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (05/26/2014 10:26:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 04:18:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (05/29/2014 00:07:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Protect Monitor" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/29/2014 00:07:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Protect Monitor erreicht.

Error: (05/29/2014 00:07:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎29.‎05.‎2014 um 12:03:07 unerwartet heruntergefahren.

Error: (05/29/2014 00:06:46 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.

Error: (05/29/2014 00:03:42 PM) (Source: cdrom) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.


Microsoft Office Sessions:
=========================
Error: (05/29/2014 00:54:50 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe

Error: (05/29/2014 00:22:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SyncServer.exe17.669.22.2352fa24eeMSVCR100.dll10.0.40219.3254df2be1ec00000050001804f1bf001cf7b27eb7f624dC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exeC:\Windows\system32\MSVCR100.dll2b0d6e12-e71b-11e3-9b34-bc5ff461cc28

Error: (05/29/2014 00:08:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/28/2014 01:17:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe

Error: (05/28/2014 00:32:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:28:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 08:25:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: ERROR: accept: 10022 (Ein ungültiges Argument wurde angegeben.)

Error: (05/27/2014 00:58:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe

Error: (05/26/2014 10:26:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 04:18:25 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{2259DBC1-EFFB-42B5-BA35-DFC0AAB2B3FB}\recordingmanager.exe


==================== Memory info =========================== 

Percentage of memory in use: 28%
Total physical RAM: 7915.77 MB
Available physical RAM: 5646.51 MB
Total Pagefile: 15829.71 MB
Available Pagefile: 13116.92 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows7) (Fixed) (Total:698.54 GB) (Free:461.04 GB) NTFS
Drive d: (Sims3EP10) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 3EAE5DE7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 29.05.2014, 23:39   #12
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Hallo tweety665,

die FRST.txt ist unvollständig, stand da nicht mehr drin?

Bitte lasse FRST nochmals laufen und poste mir das neue Log.

Alt 29.05.2014, 23:54   #13
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Das würd ich gern. Aber inzwischen spinnt mein PC komplett. Er startet FRST. Hängt sich aber nach ca. 30 Sekunden auf. Auch andere Programme, wie Virenscanner hängen nach kurzer Zeit. Ich kann auch keine Programme normal deinstallieren. Weil ich lediglich die Systemsteuerung öffnen kann. Gehe ich dann auf Programme, hängts wieder. Das gleiche beim Revo uninstaller. Klappt nur manchmal nach etlichen Versuchen und Neustarts. Ich kann auf dem Desktop keine neuen Ordner anlegen. Hab auch versucht, screens vom handy in die eigenen Bilder zu kopieren......es passiert nichts.

Alt 30.05.2014, 00:12   #14
Bootsektor
/// TB-Ausbilder
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



Kannst du bitte schauen, ob die die alten Logs zu den Funden noch hast? Malwarebytes / SuperAntiSpyware? Bestehen die Probleme auch im abgesicherten Modus?

Alt 30.05.2014, 00:40   #15
tweety665
 
spyware und malwarebytes lassen sich nicht öffnen - Standard

spyware und malwarebytes lassen sich nicht öffnen



ich hab leider nur einen ganz alten frst log vom 25.05. gefunden. malwarebytes und superantispy hab ich zwischenzeitlich runtergeworfen.

ich hab eben festgestellt, dass nun nach langer zeit plötzlich die fotos, die ich verschieben wollte, doch aufm desktop sind. aber offenbar mit ner gehörigen zeitverzögerung. ich starte jetzt mal neu im abgesicherten modus und versuche, frst dann zu starten.

im abgesicherten modus genau das gleiche. FRST scannt kurz bis zu einer Datei NTIOLib_1_0_C und bleibt hängen.


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-05-2014 02
Ran by User (administrator) on USER-PC on 27-05-2014 20:34:43
Running from C:\Users\User\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
() C:\monitor.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613024 2010-09-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-09-27] (Atheros Commnucations)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2439072 2010-05-24] (VIA)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2012-11-10] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-14] (DivX, LLC)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [TkBellExe] => c:\program files (x86)\real\realplayer\Update\realsched.exe [296520 2014-05-03] (RealNetworks, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2260964575-2753946872-1401531445-1001\...\MountPoints2: {ead6e2a1-8037-11e2-b5c3-806e6f6e6963} - D:\ASRSetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2D0369294A15CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tightmsd&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyEyCtC0C0CtBzzzyyBtC0DtN0D0Tzu0CyCyDtAtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu2Z1L1N1M2Z1H1B1Q&cr=630047793&ir=
SearchScopes: HKLM - {438CB363-A94D-4AE3-8F99-E93393D46036} URL = hxxp://www.bing.com/?cc=de
SearchScopes: HKLM - {6821768E-EC81-3874-994F-0883CF6C09DE} URL = 
SearchScopes: HKLM-x32 - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = hxxp://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10061&barid={9A0BB529-0267-11E3-BD77-BC5FF461CC28}
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3321902&octid=EB_ORIGINAL_CTID&ISID=ISID_ID&SearchSource=58&CUI=&UM=5&UP=SP33B54967-2A26-47A1-A37E-141994707C76&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0B4D8BA7-A38C-EB61-4E31-0F60A175B7A7} URL = 
SearchScopes: HKCU - {7D076A2C-E6B7-4F71-A76A-6B5DF859734E} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=6cae971d000000000000bc5ff461cc28&r=957
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\jm33fhkk.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.9 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.9.17 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\User\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer Cloud)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-05-03]
FF HKLM-x32\...\Firefox\Extensions: [{53D8DD28-1C83-41F3-B171-C2ED5B3E5DE8}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-05-26]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-05-26]
FF HKCU\...\Firefox\Extensions: [{8c9ee4c1-6fb6-4773-afd6-23f4398777ac}] - C:\Program Files (x86)\LyricsPal\130.xpi

Chrome: 
=======
CHR HomePage: 
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-27]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-05-27]
CHR Extension: (Modul zum Sperren von gefährlichen Webseiten) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-27]
CHR Extension: (RealPlayer Downloader) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-05-03]
CHR Extension: (Virtual Keyboard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-27]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Anti-Banner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-04-06]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] ()
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] ()
S2 ProtectMonitor; C:\monitorsvc.exe [34244 2014-02-13] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-04-06] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-05-03] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-04-07] ()

==================== Drivers (Whitelisted) ====================

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-05-26] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-05-26] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625248 2014-05-26] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-05-26] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2014-05-26] (Kaspersky Lab ZAO)
S3 L1C; C:\Windows\System32\DRIVERS\L1C60x64.sys [99440 2011-08-11] (Atheros Communications, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-05-27] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 RTL85n64; C:\Windows\System32\DRIVERS\RTL85n64.sys [378368 2009-06-10] (Realtek)
S3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [104448 2012-11-10] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [221184 2012-11-10] (Renesas Electronics Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-03-21] ()
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [137728 2011-02-25] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [195584 2011-02-25] (VIA Technologies, Inc.)
S3 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-27 20:28 - 2014-05-27 20:28 - 00011369 _____ () C:\Users\User\Desktop\AdwCleaner[S0].txt
2014-05-27 20:19 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-27 20:18 - 2014-05-27 20:25 - 00000000 ____D () C:\AdwCleaner
2014-05-27 20:18 - 2014-05-27 20:18 - 01327971 _____ () C:\Users\User\Downloads\adwcleaner_3.211.exe
2014-05-27 20:13 - 2014-05-27 20:13 - 00001276 _____ () C:\Users\User\Desktop\Revo Uninstaller.lnk
2014-05-27 20:13 - 2014-05-27 20:13 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-27 20:12 - 2014-05-27 20:12 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\User\Downloads\revosetup95.exe
2014-05-26 22:58 - 2014-05-27 20:28 - 00002342 _____ () C:\Users\User\Desktop\Sicherer Zahlungsverkehr.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00001132 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2014-05-26 22:57 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-05-26 22:56 - 2014-05-27 20:28 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-26 22:56 - 2014-05-26 23:04 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-05-26 22:56 - 2014-05-26 23:04 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-05-26 22:26 - 2014-05-26 22:26 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:25 - 2014-05-27 20:26 - 00000112 _____ () C:\Windows\setupact.log
2014-05-26 22:25 - 2014-05-26 22:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-26 22:24 - 2014-05-27 20:26 - 00001650 _____ () C:\Windows\PFRO.log
2014-05-26 22:00 - 2014-05-26 22:01 - 00008727 _____ () C:\Windows\IE11_main.log
2014-05-26 12:20 - 2014-05-26 12:20 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (2).exe
2014-05-26 12:09 - 2014-05-26 12:09 - 00034164 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:43 - 2014-05-27 20:34 - 00024019 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-26 11:43 - 2014-05-27 20:34 - 00000000 ____D () C:\FRST
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-26 11:03 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-26 11:03 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:52 - 2014-05-26 11:16 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-21 08:00 - 2014-05-21 08:01 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:49 - 2014-05-21 07:55 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-18 17:03 - 2014-05-20 10:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:24 - 2014-05-27 20:28 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-14 23:18 - 2014-05-27 20:27 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-14 23:06 - 2014-05-06 02:46 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 23:06 - 2014-05-06 02:21 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 02:21 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 23:06 - 2014-05-06 01:32 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 23:06 - 2014-05-06 01:14 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 23:06 - 2014-05-06 01:14 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 05:56 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 05:56 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 05:56 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 05:56 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 05:56 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 05:56 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 05:56 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 05:56 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 05:56 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 05:56 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 05:56 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 05:56 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 05:56 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 05:56 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:53 - 2014-05-10 11:57 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:53 - 2014-05-10 11:56 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-08 23:51 - 2014-05-09 00:05 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:46 - 2014-05-08 23:48 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:25 - 2014-05-08 23:26 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-06 22:55 - 2012-11-23 11:16 - 00000000 ____D () C:\Users\User\Downloads\1998 -  Oceans Of Time
2014-05-06 22:43 - 2014-05-06 22:54 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:34 - 2014-05-06 22:35 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:19 - 2014-05-06 22:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2010-07-04 22:36 - 00000000 ____D () C:\Users\User\Downloads\1998 - Oceans Of Time
2014-05-06 21:27 - 2014-05-06 22:06 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 12:41 - 2014-05-06 12:45 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:35 - 2014-05-06 12:44 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:38 - 2014-05-06 10:39 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:37 - 2014-05-06 10:38 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:35 - 2014-05-06 10:36 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:18 - 2011-10-08 12:30 - 00000000 ____D () C:\Users\User\Downloads\Die Gluecksbaerchis - Abenteuer im Wunderland
2014-05-06 10:11 - 2014-05-06 10:16 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:04 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:03 - 2014-05-06 10:10 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 00:51 - 2014-05-06 00:57 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:25 - 2014-05-06 00:36 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:13 - 2014-05-06 00:24 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:48 - 2014-05-05 23:54 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-05 23:47 - 2014-05-05 23:58 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 21:38 - 2009-09-19 08:33 - 00000000 ____D () C:\Users\User\Downloads\Gluecksbaerchis.Die.Reise.ins.Land.Scherze.-.Viel.German.2004.DVDRiP.XViD-GXBG
2014-05-03 21:33 - 2014-05-03 21:34 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:34 - 2014-05-03 20:51 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:01 - 2014-05-03 20:19 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:00 - 2014-05-03 20:06 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:21 - 2014-05-03 15:38 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:31 - 2014-05-03 11:41 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:04 - 2014-05-03 11:36 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:25 - 2014-05-02 23:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 23:23 - 2014-05-02 23:50 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:20 - 2014-05-02 23:54 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-04-30 00:24 - 2014-04-30 03:26 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:04 - 2014-01-25 09:35 - 00000000 ____D () C:\Users\User\Downloads\atlnts
2014-04-29 21:32 - 2014-04-29 22:01 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 19:26 - 2014-04-29 20:01 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 13:27 - 2014-04-29 14:02 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 08:52 - 2014-04-29 09:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 22:19 - 2014-04-28 22:54 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar

==================== One Month Modified Files and Folders =======

2014-05-27 20:34 - 2014-05-26 11:43 - 00024019 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-27 20:34 - 2014-05-26 11:43 - 00000000 ____D () C:\FRST
2014-05-27 20:34 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-27 20:34 - 2009-07-14 06:45 - 00026464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-27 20:33 - 2013-07-24 19:03 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-27 20:30 - 2011-05-07 01:46 - 02039137 _____ () C:\Windows\WindowsUpdate.log
2014-05-27 20:28 - 2014-05-27 20:28 - 00011369 _____ () C:\Users\User\Desktop\AdwCleaner[S0].txt
2014-05-27 20:28 - 2014-05-26 22:58 - 00002342 _____ () C:\Users\User\Desktop\Sicherer Zahlungsverkehr.lnk
2014-05-27 20:28 - 2014-05-26 22:56 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-27 20:28 - 2014-05-18 16:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-27 20:27 - 2014-05-14 23:18 - 00003336 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-27 20:27 - 2013-07-24 19:03 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-27 20:27 - 2013-05-04 21:54 - 00003200 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-27 20:27 - 2011-06-25 22:53 - 00000035 _____ () C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-05-27 20:26 - 2014-05-26 22:25 - 00000112 _____ () C:\Windows\setupact.log
2014-05-27 20:26 - 2014-05-26 22:24 - 00001650 _____ () C:\Windows\PFRO.log
2014-05-27 20:26 - 2011-05-16 01:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-27 20:26 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-27 20:25 - 2014-05-27 20:18 - 00000000 ____D () C:\AdwCleaner
2014-05-27 20:25 - 2013-09-21 20:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat
2014-05-27 20:19 - 2013-02-28 02:26 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA.job
2014-05-27 20:18 - 2014-05-27 20:18 - 01327971 _____ () C:\Users\User\Downloads\adwcleaner_3.211.exe
2014-05-27 20:13 - 2014-05-27 20:13 - 00001276 _____ () C:\Users\User\Desktop\Revo Uninstaller.lnk
2014-05-27 20:13 - 2014-05-27 20:13 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-27 20:12 - 2014-05-27 20:12 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\User\Downloads\revosetup95.exe
2014-05-27 19:51 - 2013-04-03 15:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-26 23:19 - 2013-02-28 02:26 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core.job
2014-05-26 23:04 - 2014-05-26 22:56 - 00625248 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-05-26 23:04 - 2014-05-26 22:56 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-05-26 23:04 - 2013-10-17 15:47 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2014-05-26 23:04 - 2013-10-17 15:47 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2014-05-26 23:04 - 2013-06-06 17:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2014-05-26 22:57 - 2014-05-26 22:57 - 00001132 _____ () C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2014-05-26 22:57 - 2014-05-26 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-05-26 22:56 - 2014-05-26 22:56 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-05-26 22:26 - 2014-05-26 22:26 - 00003358 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:26 - 2013-07-19 15:22 - 00003222 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2260964575-2753946872-1401531445-1001
2014-05-26 22:25 - 2014-05-26 22:25 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-26 22:24 - 2013-03-08 14:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\SoftGrid Client
2014-05-26 22:01 - 2014-05-26 22:00 - 00008727 _____ () C:\Windows\IE11_main.log
2014-05-26 19:12 - 2013-03-13 12:43 - 00000000 ____D () C:\Users\User\Documents\Bewerbungen Mandy
2014-05-26 12:20 - 2014-05-26 12:20 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (2).exe
2014-05-26 12:09 - 2014-05-26 12:09 - 00034164 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-26 12:08 - 2014-05-26 12:08 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64 (1).exe
2014-05-26 11:52 - 2014-05-26 11:52 - 00003120 _____ () C:\Windows\System32\Tasks\{8E74CBC0-091A-4327-9374-2C4B5696C230}
2014-05-26 11:43 - 2014-05-26 11:43 - 02066944 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-26 11:39 - 2014-05-26 11:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\User\Downloads\HijackThis.exe
2014-05-26 11:16 - 2014-05-26 10:52 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-05-26 11:15 - 2014-05-26 11:15 - 01110476 _____ () C:\Users\User\Downloads\7z920.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-26 11:03 - 2014-05-26 11:03 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-26 11:03 - 2014-05-26 11:03 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-26 10:59 - 2014-05-26 10:59 - 29393568 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware_5.7.0.1018.exe
2014-05-26 10:59 - 2014-05-26 10:59 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\SUPERAntiSpyware.com
2014-05-26 10:59 - 2014-05-26 10:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-05-26 10:59 - 2013-12-13 15:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-05-26 10:52 - 2014-05-26 10:52 - 19279808 _____ (SUPERAntiSpyware) C:\Users\User\Downloads\SUPERAntiSpyware.exe
2014-05-26 10:52 - 2014-05-26 10:52 - 00001816 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-05-26 10:30 - 2014-02-20 15:47 - 00000000 ____D () C:\Users\fbwuser.User-PC
2014-05-26 10:30 - 2013-04-26 11:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Applian FLV and Media Player
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-05-26 10:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-05-26 10:29 - 2013-05-04 21:53 - 00000000 ____D () C:\ProgramData\Real
2014-05-22 11:38 - 2013-02-27 14:41 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-05-21 08:01 - 2014-05-21 08:00 - 106724424 _____ () C:\Users\User\Desktop\Pattis Geburtstag.avi
2014-05-21 07:55 - 2014-05-21 07:49 - 80180324 _____ () C:\Users\User\Desktop\Pattis Geburtstag.mpg
2014-05-20 23:48 - 2010-11-21 08:50 - 00714410 _____ () C:\Windows\system32\perfh007.dat
2014-05-20 23:48 - 2010-11-21 08:50 - 00154268 _____ () C:\Windows\system32\perfc007.dat
2014-05-20 23:48 - 2009-07-14 07:13 - 01650208 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 21:21 - 2014-05-20 21:21 - 00001313 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-05-20 21:21 - 2014-05-20 21:21 - 00000000 ____D () C:\Windows\de
2014-05-20 21:21 - 2013-09-26 12:10 - 00001382 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-05-20 21:20 - 2013-09-26 12:09 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-05-20 16:45 - 2013-07-21 13:19 - 00022016 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-05-20 10:50 - 2014-05-18 17:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nico Mak Computing
2014-05-19 10:00 - 2013-03-05 10:56 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-18 17:02 - 2014-05-18 17:02 - 04892480 _____ (WinZip International LLC ) C:\Users\User\Downloads\wzmp_8.exe
2014-05-18 16:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-05-18 16:24 - 2014-05-18 16:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\User\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-18 16:24 - 2013-03-03 23:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-18 16:11 - 2013-09-30 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-18 16:11 - 2013-09-30 19:25 - 00000000 ____D () C:\Program Files\iTunes
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 16:11 - 2013-03-28 00:43 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-18 16:11 - 2013-03-27 15:20 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-18 16:11 - 2013-03-27 15:19 - 00000000 ____D () C:\ProgramData\Apple
2014-05-16 16:22 - 2014-02-18 15:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-15 11:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-14 23:17 - 2012-03-13 11:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 22:03 - 2013-09-07 03:50 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 22:01 - 2013-02-28 12:16 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-14 18:51 - 2014-03-12 03:51 - 17938608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 18:51 - 2013-04-03 15:38 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 18:51 - 2013-04-03 15:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-12 07:26 - 2014-05-26 11:03 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-26 11:03 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-26 11:03 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 11:29 - 2014-05-11 11:29 - 106954752 _____ () C:\Users\User\Downloads\6cd1f56ab245c1b66486787647799b92.part001.rar
2014-05-10 17:28 - 2014-05-10 17:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:04 - 2014-05-10 12:04 - 248108521 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part6.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part4.rar
2014-05-10 11:57 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part3.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part5.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part2.rar
2014-05-10 11:56 - 2014-05-10 11:53 - 265289739 _____ () C:\Users\User\Downloads\abc-frau.ella.bdrip.xv.part1.rar
2014-05-09 00:05 - 2014-05-08 23:51 - 00000000 ____D () C:\Users\User\Documents\fletwerk
2014-05-08 23:48 - 2014-05-08 23:46 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 lohnsteuerbescheinigung
2014-05-08 23:31 - 2014-05-08 23:31 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 geburtsurkunde vivi
2014-05-08 23:28 - 2014-05-08 23:28 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein2
2014-05-08 23:26 - 2014-05-08 23:25 - 00000000 ____D () C:\Users\User\Documents\2014-05-08 ausweis-führerschein
2014-05-07 23:14 - 2013-02-28 02:26 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001UA
2014-05-07 23:14 - 2013-02-28 02:26 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2260964575-2753946872-1401531445-1001Core
2014-05-06 22:54 - 2014-05-06 22:43 - 82176579 _____ () C:\Users\User\Downloads\Axel Rudi Pell  - Oceans Of Time (1998).rar
2014-05-06 22:35 - 2014-05-06 22:34 - 16618768 _____ (Philipp Schmieder Medien ) C:\Users\User\Downloads\clipgrab-3.4.3.exe
2014-05-06 22:26 - 2014-05-06 22:26 - 01235950 _____ (Medieval Software) C:\Users\User\Downloads\cuesplitter_setup_1_2.exe
2014-05-06 22:26 - 2014-05-06 22:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-06 22:20 - 2014-05-06 22:20 - 00000000 ____D () C:\Users\User\AppData\Local\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\Users\User\AppData\Roaming\TuneUp Software
2014-05-06 22:20 - 2013-04-03 16:27 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-06 22:18 - 2014-05-06 22:18 - 33692584 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\FreeAudioConverter.exe
2014-05-06 22:06 - 2014-05-06 21:27 - 479000645 _____ () C:\Users\User\Downloads\ARP98OceOfTimeFLAC mediaboom.org.rar
2014-05-06 17:28 - 2013-07-24 19:03 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-06 17:28 - 2013-07-24 19:03 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-06 12:45 - 2014-05-06 12:41 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 ausbildungsvertrag hornbach
2014-05-06 12:44 - 2014-05-06 12:35 - 00000000 ____D () C:\Users\User\Documents\2014-05-06 aushilfsvertragcua
2014-05-06 10:39 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55] (1).avi
2014-05-06 10:38 - 2014-05-06 10:38 - 61896982 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [55].avi
2014-05-06 10:38 - 2014-05-06 10:37 - 72282578 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [45].avi
2014-05-06 10:36 - 2014-05-06 10:35 - 72215630 _____ () C:\Users\User\Downloads\Die Gluecksbaerchis der Film [35].avi
2014-05-06 10:16 - 2014-05-06 10:11 - 74312964 _____ () C:\Users\User\Downloads\DGAiW.part8.rar
2014-05-06 10:10 - 2014-05-06 10:04 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part7.rar
2014-05-06 10:10 - 2014-05-06 10:03 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part6.rar
2014-05-06 02:46 - 2014-05-14 23:06 - 17847808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 02:21 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 02:21 - 2014-05-14 23:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 01:32 - 2014-05-14 23:06 - 12347392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 01:14 - 2014-05-14 23:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 01:14 - 2014-05-14 23:06 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 00:57 - 2014-05-06 00:51 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part5.rar
2014-05-06 00:36 - 2014-05-06 00:25 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part4.rar
2014-05-06 00:24 - 2014-05-06 00:13 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part3.rar
2014-05-05 23:58 - 2014-05-05 23:47 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part2.rar
2014-05-05 23:54 - 2014-05-05 23:48 - 106896000 _____ () C:\Users\User\Downloads\DGAiW.part1.rar
2014-05-03 22:27 - 2013-05-04 21:54 - 00000000 ____D () C:\Users\User\AppData\Roaming\Real
2014-05-03 22:21 - 2014-05-03 22:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00505416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00353864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00278600 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00201800 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2014-05-03 22:17 - 2014-05-03 22:17 - 00001136 _____ () C:\Users\Public\Desktop\RealPlayer Cloud.lnk
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\ProgramData\RealNetworks
2014-05-03 22:17 - 2014-05-03 22:17 - 00000000 ____D () C:\Program Files (x86)\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2014-05-03 22:17 - 2013-05-04 21:54 - 00000000 ____D () C:\Program Files (x86)\Real
2014-05-03 22:17 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-03 21:34 - 2014-05-03 21:33 - 06112387 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part8.rar
2014-05-03 20:51 - 2014-05-03 20:34 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part7.rar
2014-05-03 20:19 - 2014-05-03 20:01 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part6.rar
2014-05-03 20:06 - 2014-05-03 20:00 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part4.rar
2014-05-03 15:38 - 2014-05-03 15:21 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part5.rar
2014-05-03 11:41 - 2014-05-03 11:31 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part3.rar
2014-05-03 11:36 - 2014-05-03 11:04 - 96229737 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part2.rar
2014-05-02 23:54 - 2014-05-02 23:20 - 105000000 _____ () C:\Users\User\Downloads\01 - Das neue Baby.part1.rar
2014-05-02 23:50 - 2014-05-02 23:23 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part1.rar
2014-05-02 23:31 - 2014-05-02 23:25 - 104857600 _____ () C:\Users\User\Downloads\gxbg-gdrilsv.part2.rar
2014-05-02 14:27 - 2013-08-27 21:26 - 00000000 ____D () C:\Users\User\Documents\VirtualDJ
2014-04-30 03:26 - 2014-04-30 00:24 - 555722868 _____ () C:\Users\User\Downloads\FaTeReHiCo1991.rar
2014-04-29 22:01 - 2014-04-29 21:32 - 220492853 _____ () C:\Users\User\Downloads\13669_atlnts.rar
2014-04-29 21:29 - 2014-04-21 20:26 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-04-29 20:01 - 2014-04-29 19:26 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part04.rar
2014-04-29 14:02 - 2014-04-29 13:27 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part03.rar
2014-04-29 09:26 - 2014-04-29 08:52 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part02.rar
2014-04-28 23:13 - 2012-03-13 11:15 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-04-28 22:54 - 2014-04-28 22:19 - 105906176 _____ () C:\Users\User\Downloads\BPROP.part01.rar
2014-04-28 09:14 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-27 18:27 - 2014-04-06 12:43 - 00000000 ____D () C:\Users\User\Documents\Kelly Praktikum

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\avgnt.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-19 00:39

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Antwort

Themen zu spyware und malwarebytes lassen sich nicht öffnen
antispyware, bli, blinkt, cd-rom-laufwerk, chip, einiger, erkennt, klicke, klicken, konnte, lädt, malwarebytes, nicht mehr, nicht öffnen, nichts, plötzlich, problem, programme, schädlinge, spiel, spinn, spinnt, spyware, super, verrückt, zugreifen, öffnen



Ähnliche Themen: spyware und malwarebytes lassen sich nicht öffnen


  1. Avira Antivir lässt sich nicht mehr installieren/ Programme lassen sich nicht öffnen
    Antiviren-, Firewall- und andere Schutzprogramme - 23.03.2015 (10)
  2. CSC.exe popup, malwarebytes, SD lassen sich nicht installieren
    Plagegeister aller Art und deren Bekämpfung - 31.03.2014 (1)
  3. WIN XP Virenfunde in malwarebytes lassen sich nicht entfernen
    Log-Analyse und Auswertung - 20.02.2014 (7)
  4. Trojaner lassen sich mit Malwarebytes nicht löschen, was tun?
    Plagegeister aller Art und deren Bekämpfung - 20.07.2012 (29)
  5. regedit und hijackthis sich lassen sich nicht öffnen
    Log-Analyse und Auswertung - 12.12.2011 (3)
  6. Programme lassen sich nicht mehr öffnen -> löschen sich bei Öffnungsversuch
    Plagegeister aller Art und deren Bekämpfung - 01.12.2011 (29)
  7. Ordner auf Externer WD HDMI Festplatte lassen sich nicht mehr öffnen, PC hängt sich auf
    Netzwerk und Hardware - 17.11.2011 (14)
  8. Weder malwarebytes, noch defogger lassen sich öffnen um logfiles zu erstellen
    Plagegeister aller Art und deren Bekämpfung - 01.11.2011 (3)
  9. Prozesse lassen sich nicht beenden, Malwarebytes und HouseCall hängen sich auf
    Plagegeister aller Art und deren Bekämpfung - 26.08.2011 (4)
  10. Antivirenprogramme lassen sich nicht öffnen und Werbeantivirenprogramme melden sich ständig
    Plagegeister aller Art und deren Bekämpfung - 11.07.2011 (3)
  11. Fenster verkleinern/verstecken sich, lassen sich nicht mehr öffnen
    Plagegeister aller Art und deren Bekämpfung - 28.12.2010 (2)
  12. SECURITY TOOL WARNUNG öffnet sich andauernd! Malwarebytes und HiJackThis lassen sich nicht posten!
    Plagegeister aller Art und deren Bekämpfung - 04.10.2010 (1)
  13. Google leitet falsch weiter, manche Seiten lassen sich gar nicht öffnen, Malwarebytes defekt!
    Plagegeister aller Art und deren Bekämpfung - 06.09.2010 (34)
  14. Spybot S&D und Malwarebytes lassen sich nicht öffnen!
    Log-Analyse und Auswertung - 15.03.2009 (6)
  15. Einstellungen lassen sich nciht mehr ändern, div. webseiten lassen sich nicht öffnen
    Plagegeister aller Art und deren Bekämpfung - 23.02.2009 (82)
  16. Manche Webseiten lassen sich nicht öffnen! Spyware oder Virus schuld?!
    Log-Analyse und Auswertung - 30.04.2007 (4)
  17. Spyware und tr/dldr.purityscan.co.10 lassen sich nicht entfernen!
    Plagegeister aller Art und deren Bekämpfung - 11.12.2006 (1)

Zum Thema spyware und malwarebytes lassen sich nicht öffnen - wir hatten vor einiger zeit das problem, dass wir plötzlich auf das CD-Rom-Laufwerk nicht mehr zugreifen konnten. "Öffnen mit..." wurde nicht angezeigt. Habe dann Super Antispyware und Malwarebytes durchgejagt und - spyware und malwarebytes lassen sich nicht öffnen...
Archiv
Du betrachtest: spyware und malwarebytes lassen sich nicht öffnen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.