Trojaner-Board - Virus auf dem Laptop

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - Virus auf dem Laptop (https://www.trojaner-board.de/151074-virus-laptop.html)

Virus auf dem Laptop

Hier mal die Logdateien

FRST Logfile:
[CODE]Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Acer1 (administrator) on ACER on 14-03-2014 08:24:47
Running from C:\Users\Acer1\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\WINDOWS\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\Bench\BService\bservice.exe
() C:\Program Files (x86)\Bench\Wd\wd.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-10] ()
HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [LManager] - [X]
HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1758160 2014-02-13] (APN)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [BService] - C:\Program Files (x86)\Bench\BService\bservice.exe [49664 2014-03-04] ()
HKLM-x32\...\Run: [Wd] - C:\Program Files (x86)\Bench\Wd\wd.exe [60416 2014-03-04] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKLM - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL =
SearchScopes: HKCU - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL =
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Coupon Alerts BHO - {F791D8AE-47E8-40A5-A913-EB2D2AF29602} - C:\Program Files (x86)\Coupon Alerts\FrameworkBHO64.dll No File
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Coupon Alerts - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{2108334E-4CB3-8DD2-890D-0585F7099FF9} [2014-03-04]
FF Extension: Adblock Plus - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-02]
FF Extension: BetterPrivacy - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-02-19]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-02-13] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [28560 2012-08-30] (ELAN Microelectronics Corp.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-11-24] (Dritek System INC.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-08-01] (Atheros)

==================== Drivers (Whitelisted) ====================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Acer1 at 2014-03-14 08:25:34
Running from C:\Users\Acer1\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

clear.fi SDK - Video 2 (x32 Version: 2.1.1925 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2008 - CyberLink Corp.) Hidden
VIDEO DVR (HKLM-x32\...\{EBD0EE76-2CFC-4EE5-AFE6-7EEAA3B14332}) (Version: 2012.04.17 - -)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0059 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3007 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{8215A318-CC27-435E-B3EA-2E3443C8998C}) (Version: 1.00.3013 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3115 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3201 - Acer Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-4300-A758B70C0A03}) (Version: 12.10.3.4488 - APN, LLC)
Backup Manager v4 (x32 Version: 4.0.0.0059 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3108 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3108 - Acer Incorporated)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3103_44819 - CyberLink Corp.)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3103_44819 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
eBay Worldwide (HKLM-x32\...\{A694AF57-9891-4D62-824C-7E55A1361A14}) (Version: 2.3.0630 - OEM)
ETDWare PS/2-X64 11.6.8.001_WHQL (HKLM\...\Elantech) (Version: 11.6.8.001 - ELAN Microelectronic Corp.)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free MP4 Video Converter version 5.0.33.213 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.33.213 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.20.1230 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
honestech VHS to DVD 2.0 SE (HKLM-x32\...\{2856F5EA-E98A-40E4-BAD6-8C644A4A3F3C}) (Version: 2.0 - honestech)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.4 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3004 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
Mp3tag v2.58 (HKLM-x32\...\Mp3tag) (Version: v2.58 - Florian Heidenreich)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.9008 - NTI Corporation)
NTI Media Maker 9 (x32 Version: 9.0.2.9008 - NTI Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3200 - Acer)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Ihr Firmenname)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28123 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XMedia Recode Version 3.1.7.9 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.9 - XMedia Recode)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Restore Points =========================

01-03-2014 11:45:48 Geplanter Prüfpunkt
08-03-2014 21:43:00 Geplanter Prüfpunkt
13-03-2014 08:26:11 Windows Update

==================== Hosts content: ==========================

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1076514D-DBC6-4676-80AB-836D8C157999} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {1BBBE8A5-CB06-4485-97C6-02468B524A86} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-08-30] ()
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {27040EA4-2BCB-4D23-A06E-2BEBD33BA1D8} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-22] ()
Task: {408761BB-4024-4777-85C6-5D823A343ECB} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {474ED943-3A07-4381-A732-F1818C5F7980} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-07-04] (CyberLink)
Task: {5849C09B-C2D6-4925-B76B-97B66FE6037C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {7EDAA68F-C2FC-4887-9C98-569910AC40D7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-08-22] (Acer Incorporated)
Task: {80C34CEA-B084-4F62-A419-6E752B0C3ECE} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-22] ()
Task: {8CA73A2D-8BA8-43B4-A7E1-CD433A0BABB8} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {9B90FF24-8932-4AF7-8333-556190533B65} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {C556D6D7-3C45-4105-8FA5-5ABD15FD0BD9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {D2229884-A0AE-4627-A2CD-79015287F159} - System32\Tasks\bench-S-1-5-21-3942060078-1468770267-3527270758-1001 => C:\Program Files (x86)\Bench\Updater\updater.exe [2013-12-17] () <==== ATTENTION
Task: {D91F7D4C-023F-43E5-9ED8-53AC9596AAF4} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\WINDOWS\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {E81051E3-1AF0-4D08-A104-614C14A304C4} - System32\Tasks\bench-sys => C:\Program Files (x86)\Bench\Updater\updater.exe [2013-12-17] () <==== ATTENTION
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\bench-S-1-5-21-3942060078-1468770267-3527270758-1001.job => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\bench-sys.job => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2012-10-29 05:16 - 2012-10-23 04:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-03-04 00:01 - 2014-03-04 00:01 - 00049664 _____ () C:\Program Files (x86)\Bench\BService\bservice.exe
2014-03-04 00:01 - 2014-03-04 00:01 - 00060416 _____ () C:\Program Files (x86)\Bench\Wd\wd.exe
2012-08-22 23:04 - 2012-08-22 23:04 - 00025232 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2012-08-22 23:04 - 2012-08-22 23:04 - 00044176 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2012-08-10 18:28 - 2012-08-10 18:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-08-10 18:23 - 2012-08-10 18:23 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2014-02-05 22:03 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-08-23 07:26 - 2012-08-23 07:26 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-08-23 07:25 - 2012-08-23 07:25 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-08-23 07:26 - 2012-08-23 07:26 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-08-23 07:25 - 2012-08-23 07:25 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-08-23 07:25 - 2012-08-23 07:25 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-08-23 07:25 - 2012-08-23 07:25 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-08-23 07:26 - 2012-08-23 07:26 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2014-03-04 00:01 - 2014-03-04 00:01 - 00049664 _____ () C:\Program Files (x86)\Bench\BService\bhelper.dll
2012-11-24 20:25 - 2012-06-25 03:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Disabled items from MSCONFIG ==============

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (03/13/2014 10:23:18 PM) (Source: ETDService) (User: )
Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0

Error: (03/13/2014 09:08:34 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/12/2014 11:07:37 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/11/2014 04:53:18 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/11/2014 04:21:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Acer)
Description: Die App „Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/10/2014 10:53:11 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (03/08/2014 08:50:04 PM) (Source: ETDService) (User: )
Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0

System errors:
=============
Error: (03/09/2014 00:26:37 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (03/01/2014 10:48:33 AM) (Source: DCOM) (User: Acer)
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (02/18/2014 06:19:48 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Avira Browser-Schutz" wurde mit dem folgenden dienstspezifischen Fehler beendet:
%%4

Error: (02/14/2014 08:21:15 PM) (Source: BugCheck) (User: )
Description: 0x00000001 (0x0000000077962ad2, 0x0000000000000000, 0x000000000000fffe, 0xfffff88017b53ec0)C:\WINDOWS\MEMORY.DMP021414-45437-01

Error: (02/14/2014 08:20:57 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎14.‎02.‎2014 um 19:53:09 unerwartet heruntergefahren.

Error: (02/05/2014 10:01:01 PM) (Source: DCOM) (User: Acer)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (02/05/2014 10:00:31 PM) (Source: DCOM) (User: Acer)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (02/05/2014 07:58:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246007 fehlgeschlagen: Sicherheitsupdate für Windows 8 für x64-basierte Systeme (KB2871690)

Error: (02/05/2014 07:58:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246007 fehlgeschlagen: Update für Windows 8 für x64-Systeme (KB2871777)

Error: (01/31/2014 10:55:45 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Inc. mfeapfk" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1243

Microsoft Office Sessions:
=========================
Error: (03/13/2014 10:23:18 PM) (Source: ETDService)(User: )
Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0

Error: (03/13/2014 09:08:34 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/12/2014 11:07:37 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/11/2014 04:53:18 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/11/2014 04:21:05 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Acer)
Description: Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/10/2014 10:53:11 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (03/08/2014 08:50:04 PM) (Source: ETDService)(User: )
Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0

==================== Memory info ===========================

Percentage of memory in use: 36%
Total physical RAM: 3912.27 MB
Available physical RAM: 2500.75 MB
Total Pagefile: 11592.27 MB
Available Pagefile: 10146.76 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:680.48 GB) (Free:544.2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 699 GB) (Disk ID: E0E7AFE5)

Partition: GPT Partition Type.

==================== End Of Log ============================

hi,

Logs sind unvollständig, bite nochmal posten.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

schrauber hier sind die Logdateien leider hast du mir nicht mehr geantwortet daher habe wieder ein Neues Thema aufgemacht

hxxp://www.trojaner-board.de/151012-laptop-voll-vieren-z-b-pup-optional-bench-a.html#post1267641

Hast du nen Schuss? Ich habe dir geantwortet, und zwar dass die Logs unvollständig sind und nicht in Codetags.

das andre Thema, auch mit mir, ist jetzt in der Mülltonne. Mach einfach mal das was angesagt wird.

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014

Ran by Acer1 (administrator) on ACER on 15-03-2014 21:22:56

Running from C:\Users\Acer1\Desktop

Windows 8 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 
 
 

==================== Processes (Whitelisted) =================
 

(Microsoft Corporation) C:\WINDOWS\system32\WLANExt.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Dritek System INC.) C:\Windows\RfBtnSvc64.exe

(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Intel Corporation) C:\Windows\system32\igfxext.exe

(Intel Corporation) C:\Windows\system32\igfxsrvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe

() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe

(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe

(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe

(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PMMUpdate.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
 
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)

HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-10] ()

HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

HKLM-x32\...\Run: [LManager] - [X]

HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1758160 2014-02-13] (APN)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com

SearchScopes: HKLM - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKLM - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKLM-x32 - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKLM-x32 - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKCU - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = 

SearchScopes: HKCU - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = 

BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)

BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)

BHO: Coupon Alerts BHO - {F791D8AE-47E8-40A5-A913-EB2D2AF29602} - C:\Program Files (x86)\Coupon Alerts\FrameworkBHO64.dll No File

BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)

Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)

Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default

FF Homepage: www.google.de

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()

FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Coupon Alerts - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{2108334E-4CB3-8DD2-890D-0585F7099FF9} [2014-03-04]

FF Extension: Adblock Plus - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-02]

FF Extension: BetterPrivacy - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-02-19]
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)

R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-02-13] (APN LLC.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)

R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated)

S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)

R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [28560 2012-08-30] (ELAN Microelectronics Corp.)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)

R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-11-24] (Dritek System INC.)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)

R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-08-01] (Atheros)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-11-24] (Dritek System Inc.)

S3 X86BDA; C:\Windows\system32\DRIVERS\OEMDrv.sys [268416 2011-06-08] ( )
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-03-15 21:22 - 2014-03-15 21:22 - 00013132 _____ () C:\Users\Acer1\Desktop\FRST.txt

2014-03-15 21:10 - 2014-03-15 21:20 - 00000000 ____D () C:\Users\Acer1\Desktop\rOrdner

2014-03-15 10:14 - 2014-03-15 10:59 - 00000000 ____D () C:\Users\Acer1\Desktop\Ordner

2014-03-15 09:35 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Desktop\FRST64.exe

2014-03-15 09:34 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Downloads\FRST64.exe

2014-03-14 08:25 - 2014-03-14 08:26 - 00025235 _____ () C:\Users\Acer1\Downloads\Addition.txt

2014-03-14 08:24 - 2014-03-15 21:14 - 00000000 ____D () C:\FRST

2014-03-14 08:20 - 2014-03-14 08:20 - 00394600 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-03-13 22:22 - 2014-03-15 20:37 - 00024698 _____ () C:\WINDOWS\PFRO.log

2014-03-13 22:05 - 2014-03-13 22:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300(1).exe

2014-03-13 22:03 - 2014-03-13 22:06 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-13 22:03 - 2014-03-13 22:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Malwarebytes

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-13 22:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

2014-03-13 22:02 - 2014-03-13 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-13 08:14 - 2014-02-08 05:34 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-03-13 08:13 - 2014-02-23 09:13 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-03-13 08:13 - 2014-02-23 09:12 - 19273216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-03-13 08:13 - 2014-02-23 09:12 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-03-13 08:13 - 2014-02-23 09:12 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 03960320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 14358016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 13761024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-03-13 08:13 - 2014-02-23 07:35 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2014-03-13 08:13 - 2014-02-23 07:31 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2014-03-13 08:13 - 2014-02-23 05:06 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2014-03-13 08:13 - 2014-02-06 00:41 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll

2014-03-13 08:13 - 2014-02-06 00:37 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll

2014-03-11 10:13 - 2014-03-15 11:13 - 01005420 _____ () C:\WINDOWS\WindowsUpdate.log

2014-03-11 10:13 - 2014-03-11 10:13 - 00000000 _____ () C:\WINDOWS\setuperr.log

2014-03-11 10:13 - 2014-03-11 10:13 - 00000000 _____ () C:\WINDOWS\setupact.log

2014-03-10 10:06 - 2014-03-10 10:06 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2014-03-10 10:06 - 2014-03-10 10:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-10 10:06 - 2014-03-10 10:06 - 00000000 ____D () C:\Program Files\CCleaner

2014-03-10 10:05 - 2014-03-10 10:05 - 03690256 _____ (Piriform Ltd) C:\Users\Acer1\Downloads\ccsetup411_slim.exe

2014-03-04 19:05 - 2014-03-04 22:09 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Mp3tag

2014-03-04 19:05 - 2014-03-04 19:05 - 00000987 _____ () C:\Users\Public\Desktop\Mp3tag.lnk

2014-03-04 19:05 - 2014-03-04 19:05 - 00000000 ____D () C:\Program Files (x86)\Mp3tag

2014-03-04 19:02 - 2014-03-04 19:02 - 02634152 _____ () C:\Users\Acer1\Downloads\mp3tagv258setup.exe

2014-03-04 18:53 - 2014-03-15 10:02 - 00000000 ____D () C:\Program Files (x86)\Bench

2014-03-04 18:53 - 2014-03-04 19:03 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter

2014-03-04 18:52 - 2014-03-04 18:52 - 06424632 _____ (ManiacTools.com ) C:\Users\Acer1\Downloads\m4a-to-mp3-81converter.exe

2014-02-23 10:17 - 2014-02-23 10:17 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\XMedia Recode

2014-02-23 09:10 - 2014-02-23 09:10 - 00001075 _____ () C:\Users\Public\Desktop\XMedia Recode.lnk

2014-02-23 09:10 - 2014-02-23 09:10 - 00000000 ____D () C:\Program Files (x86)\XMedia Recode

2014-02-23 09:09 - 2014-02-23 09:09 - 07289062 _____ (XMedia Recode ) C:\Users\Acer1\Downloads\XMediaRecode3179_setup.exe

2014-02-22 22:35 - 2014-02-22 22:39 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\vlc

2014-02-22 22:33 - 2014-02-22 22:33 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk

2014-02-22 22:33 - 2014-02-22 22:33 - 00000000 ____D () C:\Program Files\VideoLAN

2014-02-22 22:23 - 2014-02-22 22:23 - 25035644 _____ () C:\Users\Acer1\Downloads\vlc-2.1.3-win64.exe

2014-02-21 23:44 - 2014-02-21 23:44 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\EncryptStick

2014-02-21 23:06 - 2014-03-10 10:09 - 00000000 ____D () C:\Users\Acer1\AppData\Local\CrashDumps

2014-02-19 17:30 - 2014-02-19 17:30 - 00001485 _____ () C:\Users\Public\Desktop\Free MP4 Video Converter.lnk

2014-02-19 17:28 - 2014-02-19 17:29 - 31867904 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeMP4VideoConverter.exe

2014-02-19 09:49 - 2014-02-19 09:49 - 00131083 _____ () C:\Users\Acer1\Downloads\betterprivacy-1.68-fx(1).zip

2014-02-19 09:48 - 2014-02-19 09:48 - 00131083 _____ () C:\Users\Acer1\Downloads\betterprivacy-1.68-fx.zip

2014-02-18 22:22 - 2014-02-18 22:22 - 00001957 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Canneverbe Limited

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\ProgramData\Canneverbe Limited

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP

2014-02-18 22:20 - 2014-02-18 22:20 - 04986624 _____ (Canneverbe Limited ) C:\Users\Acer1\Downloads\cdbxp_setup_4.5.2.4478_minimal.exe

2014-02-17 22:34 - 2014-03-14 11:47 - 00083456 ___SH () C:\Users\Acer1\Desktop\Thumbs.db

2014-02-17 19:35 - 2014-02-17 19:35 - 00000000 ____D () C:\WINDOWS\de

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\WINDOWS\PCHEALTH

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\Program Files (x86)\Windows Live

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2014-02-17 19:33 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll

2014-02-17 19:33 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll

2014-02-17 19:33 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll

2014-02-17 19:33 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll

2014-02-17 19:33 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll

2014-02-17 19:33 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll

2014-02-17 19:33 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll

2014-02-17 19:33 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll

2014-02-17 19:33 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll

2014-02-17 19:33 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll

2014-02-17 19:33 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll

2014-02-17 19:33 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll

2014-02-17 19:31 - 2014-02-21 20:28 - 00000000 ____D () C:\Users\Acer1\AppData\Local\Windows Live

2014-02-17 19:19 - 2014-02-17 19:22 - 142602520 _____ (Microsoft Corporation) C:\Users\Acer1\Downloads\wlsetup-all_16.4.3508.0205.exe

2014-02-17 19:13 - 2014-02-17 19:13 - 00001444 _____ () C:\Users\Public\Desktop\Free YouTube Download.lnk

2014-02-17 19:06 - 2014-02-17 19:07 - 32245488 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeYouTubeDownload.exe

2014-02-16 21:02 - 2014-03-11 10:15 - 00000000 ____D () C:\Users\Acer1\Documents\Bluetooth Folder

2014-02-16 21:02 - 2014-02-16 21:02 - 00000000 ____D () C:\Users\Acer1\AppData\Local\BMExplorer

2014-02-16 20:59 - 2014-02-19 17:30 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\DVDVideoSoft

2014-02-16 20:59 - 2014-02-19 17:30 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

2014-02-16 20:59 - 2014-02-17 19:13 - 00001247 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk

2014-02-16 20:59 - 2014-02-16 20:59 - 00001540 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk

2014-02-16 20:57 - 2014-02-16 20:57 - 34008992 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeYouTubeToMP3Converter-3.12.20.1230.exe

2014-02-14 21:15 - 2014-02-14 21:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-14 20:35 - 2014-02-21 21:16 - 00000000 ____D () C:\Users\Acer1\Documents\VHS to DVD

2014-02-14 20:20 - 2014-03-10 10:09 - 00000000 ____D () C:\WINDOWS\Minidump

2014-02-14 20:10 - 2014-02-14 20:12 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\MAGIX

2014-02-14 20:08 - 2014-02-14 20:24 - 00000000 ____D () C:\ProgramData\MAGIX

2014-02-14 20:08 - 2014-02-14 20:08 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-14 19:59 - 2014-02-14 20:04 - 197451096 _____ (MAGIX AG) C:\Users\Acer1\Downloads\magix_video_deluxe_2014_188mb_chip_de.exe

2014-02-14 19:31 - 2014-02-14 19:31 - 00000000 ____D () C:\Program Files (x86)\ VIDEO DVR

2014-02-14 19:31 - 2011-06-08 17:22 - 00268416 _____ ( ) C:\WINDOWS\system32\Drivers\OEMDrv.sys

2014-02-14 19:30 - 2014-02-21 15:42 - 00000953 _____ () C:\Users\Acer1\Documents\1.ilj

2014-02-14 19:23 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll

2014-02-14 19:23 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll

2014-02-14 19:16 - 2014-01-13 00:30 - 02238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll

2014-02-14 19:16 - 2014-01-13 00:30 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll

2014-02-14 19:16 - 2013-12-09 01:45 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2014-02-14 19:16 - 2013-12-09 00:59 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2014-02-14 19:16 - 2013-12-05 00:43 - 01845248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll

2014-02-14 19:16 - 2013-12-05 00:37 - 01419264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll

2014-02-14 19:16 - 2013-11-27 01:19 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml

2014-02-14 19:16 - 2013-11-26 00:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys

2014-02-14 19:16 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll

2014-02-14 19:16 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2014-02-14 19:16 - 2013-11-01 06:53 - 02232664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2014-02-14 19:04 - 2014-02-14 19:04 - 00014649 _____ () C:\INSTALL.LOG

2014-02-14 19:04 - 2014-02-14 19:04 - 00000000 ____D () C:\Users\Administrator

2014-02-14 19:04 - 2014-02-14 19:04 - 00000000 ____D () C:\Users\Acer1\AppData\Local\VHS to DVD

2014-02-14 19:03 - 2014-02-14 19:03 - 00002089 _____ () C:\Users\Public\Desktop\honestech VHS to DVD 2.0 SE.lnk

2014-02-14 19:03 - 2014-02-14 19:03 - 00000000 ____D () C:\Program Files (x86)\honestech VHS to DVD 2.0 SE

2014-02-14 19:03 - 2014-02-14 19:03 - 00000000 ____D () C:\Program Files (x86)\honestech

2014-02-14 19:03 - 2006-05-16 11:54 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mfc42loc.dll

2014-02-14 19:03 - 2002-07-26 17:02 - 00153088 _____ () C:\UNWISE.EXE

2014-02-14 18:59 - 2014-02-14 18:59 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\InstallShield
 

==================== One Month Modified Files and Folders =======
 

2014-03-15 21:22 - 2014-03-15 21:22 - 00013132 _____ () C:\Users\Acer1\Desktop\FRST.txt

2014-03-15 21:22 - 2014-03-14 08:24 - 00000000 ____D () C:\FRST

2014-03-15 21:20 - 2014-03-15 21:10 - 00000000 ____D () C:\Users\Acer1\Desktop\rOrdner

2014-03-15 21:11 - 2012-11-25 05:00 - 00753134 _____ () C:\WINDOWS\system32\perfh007.dat

2014-03-15 21:11 - 2012-11-25 05:00 - 00155826 _____ () C:\WINDOWS\system32\perfc007.dat

2014-03-15 21:11 - 2012-07-26 08:28 - 01745416 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

2014-03-15 21:07 - 2014-01-31 19:43 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-03-15 21:00 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\system32\sru

2014-03-15 20:43 - 2014-01-31 10:21 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3942060078-1468770267-3527270758-1001

2014-03-15 20:38 - 2012-07-26 08:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT

2014-03-15 20:37 - 2014-03-13 22:22 - 00024698 _____ () C:\WINDOWS\PFRO.log

2014-03-15 11:13 - 2014-03-11 10:13 - 01005420 _____ () C:\WINDOWS\WindowsUpdate.log

2014-03-15 10:59 - 2014-03-15 10:14 - 00000000 ____D () C:\Users\Acer1\Desktop\Ordner

2014-03-15 10:05 - 2012-10-24 05:35 - 00000000 ____D () C:\ProgramData\WildTangent

2014-03-15 10:02 - 2014-03-04 18:53 - 00000000 ____D () C:\Program Files (x86)\Bench

2014-03-15 09:34 - 2014-03-15 09:35 - 02157056 _____ (Farbar) C:\Users\Acer1\Desktop\FRST64.exe

2014-03-15 09:34 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Downloads\FRST64.exe

2014-03-14 11:47 - 2014-02-17 22:34 - 00083456 ___SH () C:\Users\Acer1\Desktop\Thumbs.db

2014-03-14 08:26 - 2014-03-14 08:25 - 00025235 _____ () C:\Users\Acer1\Downloads\Addition.txt

2014-03-14 08:20 - 2014-03-14 08:20 - 00394600 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-03-13 23:09 - 2012-07-26 06:26 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI

2014-03-13 22:26 - 2014-01-31 10:16 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Atheros

2014-03-13 22:06 - 2014-03-13 22:03 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-13 22:06 - 2014-03-13 22:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-13 22:05 - 2014-03-13 22:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300(1).exe

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Malwarebytes

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-13 22:02 - 2014-03-13 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-12 20:57 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent

2014-03-11 19:07 - 2014-01-31 19:43 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2014-03-11 15:54 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\system32\NDF

2014-03-11 10:15 - 2014-02-16 21:02 - 00000000 ____D () C:\Users\Acer1\Documents\Bluetooth Folder

2014-03-11 10:13 - 2014-03-11 10:13 - 00000000 _____ () C:\WINDOWS\setuperr.log

2014-03-11 10:13 - 2014-03-11 10:13 - 00000000 _____ () C:\WINDOWS\setupact.log

2014-03-10 10:09 - 2014-02-21 23:06 - 00000000 ____D () C:\Users\Acer1\AppData\Local\CrashDumps

2014-03-10 10:09 - 2014-02-14 20:20 - 00000000 ____D () C:\WINDOWS\Minidump

2014-03-10 10:09 - 2012-10-24 06:06 - 00000000 ____D () C:\WINDOWS\Panther

2014-03-10 10:06 - 2014-03-10 10:06 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2014-03-10 10:06 - 2014-03-10 10:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-10 10:06 - 2014-03-10 10:06 - 00000000 ____D () C:\Program Files\CCleaner

2014-03-10 10:05 - 2014-03-10 10:05 - 03690256 _____ (Piriform Ltd) C:\Users\Acer1\Downloads\ccsetup411_slim.exe

2014-03-04 23:52 - 2014-02-05 22:22 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2014-03-04 23:52 - 2014-02-05 22:22 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2014-03-04 23:06 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\rescache

2014-03-04 22:09 - 2014-03-04 19:05 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Mp3tag

2014-03-04 19:05 - 2014-03-04 19:05 - 00000987 _____ () C:\Users\Public\Desktop\Mp3tag.lnk

2014-03-04 19:05 - 2014-03-04 19:05 - 00000000 ____D () C:\Program Files (x86)\Mp3tag

2014-03-04 19:03 - 2014-03-04 18:53 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter

2014-03-04 19:02 - 2014-03-04 19:02 - 02634152 _____ () C:\Users\Acer1\Downloads\mp3tagv258setup.exe

2014-03-04 18:52 - 2014-03-04 18:52 - 06424632 _____ (ManiacTools.com ) C:\Users\Acer1\Downloads\m4a-to-mp3-81converter.exe

2014-02-23 10:17 - 2014-02-23 10:17 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\XMedia Recode

2014-02-23 09:13 - 2014-03-13 08:13 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-02-23 09:13 - 2014-03-13 08:13 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-02-23 09:13 - 2014-03-13 08:13 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2014-02-23 09:13 - 2014-03-13 08:13 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll

2014-02-23 09:13 - 2014-03-13 08:13 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-02-23 09:12 - 2014-03-13 08:13 - 19273216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-02-23 09:12 - 2014-03-13 08:13 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-02-23 09:12 - 2014-03-13 08:13 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 03960320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-02-23 09:11 - 2014-03-13 08:13 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-02-23 09:10 - 2014-02-23 09:10 - 00001075 _____ () C:\Users\Public\Desktop\XMedia Recode.lnk

2014-02-23 09:10 - 2014-02-23 09:10 - 00000000 ____D () C:\Program Files (x86)\XMedia Recode

2014-02-23 09:09 - 2014-02-23 09:09 - 07289062 _____ (XMedia Recode ) C:\Users\Acer1\Downloads\XMediaRecode3179_setup.exe

2014-02-23 07:54 - 2014-03-13 08:13 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-02-23 07:54 - 2014-03-13 08:13 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-02-23 07:54 - 2014-03-13 08:13 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 14358016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 13761024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-02-23 07:53 - 2014-03-13 08:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-02-23 07:35 - 2014-03-13 08:13 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2014-02-23 07:31 - 2014-03-13 08:13 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2014-02-23 05:06 - 2014-03-13 08:13 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2014-02-22 22:39 - 2014-02-22 22:35 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\vlc

2014-02-22 22:33 - 2014-02-22 22:33 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk

2014-02-22 22:33 - 2014-02-22 22:33 - 00000000 ____D () C:\Program Files\VideoLAN

2014-02-22 22:23 - 2014-02-22 22:23 - 25035644 _____ () C:\Users\Acer1\Downloads\vlc-2.1.3-win64.exe

2014-02-21 23:44 - 2014-02-21 23:44 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\EncryptStick

2014-02-21 22:16 - 2014-01-31 10:57 - 00000000 ____D () C:\Users\Acer1\Desktop\USB Ordner

2014-02-21 22:15 - 2014-02-21 22:15 - 00001230 _____ () C:\Users\Acer1\Documents\Ramazan Pisken Nisan.ilj

2014-02-21 21:16 - 2014-02-14 20:35 - 00000000 ____D () C:\Users\Acer1\Documents\VHS to DVD

2014-02-21 20:28 - 2014-02-17 19:31 - 00000000 ____D () C:\Users\Acer1\AppData\Local\Windows Live

2014-02-21 19:15 - 2014-01-31 10:58 - 00000000 ____D () C:\Users\Acer1\Desktop\VHS to DVD

2014-02-21 19:05 - 2014-02-21 18:56 - 00001229 _____ () C:\Users\Acer1\Documents\Ramazan Pisken Dügün.ilj

2014-02-21 15:42 - 2014-02-14 19:30 - 00000953 _____ () C:\Users\Acer1\Documents\1.ilj

2014-02-19 17:30 - 2014-02-19 17:30 - 00001485 _____ () C:\Users\Public\Desktop\Free MP4 Video Converter.lnk

2014-02-19 17:30 - 2014-02-16 20:59 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\DVDVideoSoft

2014-02-19 17:30 - 2014-02-16 20:59 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

2014-02-19 17:29 - 2014-02-19 17:28 - 31867904 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeMP4VideoConverter.exe

2014-02-19 09:49 - 2014-02-19 09:49 - 00131083 _____ () C:\Users\Acer1\Downloads\betterprivacy-1.68-fx(1).zip

2014-02-19 09:48 - 2014-02-19 09:48 - 00131083 _____ () C:\Users\Acer1\Downloads\betterprivacy-1.68-fx.zip

2014-02-18 22:22 - 2014-02-18 22:22 - 00001957 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Canneverbe Limited

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\ProgramData\Canneverbe Limited

2014-02-18 22:22 - 2014-02-18 22:22 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP

2014-02-18 22:20 - 2014-02-18 22:20 - 04986624 _____ (Canneverbe Limited ) C:\Users\Acer1\Downloads\cdbxp_setup_4.5.2.4478_minimal.exe

2014-02-18 18:29 - 2014-02-18 18:30 - 01223699 _____ () C:\Users\Acer1\Desktop\deli kadir - funky mix.m4r

2014-02-17 22:47 - 2014-02-17 22:44 - 00003339 _____ () C:\Users\Acer1\Documents\Ibrahim Tatlises - Emminem.wlmp

2014-02-17 19:35 - 2014-02-17 19:35 - 00000000 ____D () C:\WINDOWS\de

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\WINDOWS\PCHEALTH

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\Program Files (x86)\Windows Live

2014-02-17 19:34 - 2014-02-17 19:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition

2014-02-17 19:34 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared

2014-02-17 19:26 - 2014-01-31 19:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-02-17 19:22 - 2014-02-17 19:19 - 142602520 _____ (Microsoft Corporation) C:\Users\Acer1\Downloads\wlsetup-all_16.4.3508.0205.exe

2014-02-17 19:13 - 2014-02-17 19:13 - 00001444 _____ () C:\Users\Public\Desktop\Free YouTube Download.lnk

2014-02-17 19:13 - 2014-02-16 20:59 - 00001247 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk

2014-02-17 19:07 - 2014-02-17 19:06 - 32245488 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeYouTubeDownload.exe

2014-02-16 21:02 - 2014-02-16 21:02 - 00000000 ____D () C:\Users\Acer1\AppData\Local\BMExplorer

2014-02-16 21:02 - 2012-11-24 20:46 - 00000000 ____D () C:\ProgramData\Atheros

2014-02-16 20:59 - 2014-02-16 20:59 - 00001540 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk

2014-02-16 20:57 - 2014-02-16 20:57 - 34008992 _____ (DVDVideoSoft Ltd. ) C:\Users\Acer1\Downloads\FreeYouTubeToMP3Converter-3.12.20.1230.exe

2014-02-16 09:49 - 2014-02-03 16:37 - 00000000 ____D () C:\WINDOWS\system32\MRT

2014-02-16 09:47 - 2014-02-03 16:37 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2014-02-14 21:15 - 2014-02-14 21:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-02-14 20:24 - 2014-02-14 20:08 - 00000000 ____D () C:\ProgramData\MAGIX

2014-02-14 20:12 - 2014-02-14 20:10 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\MAGIX

2014-02-14 20:08 - 2014-02-14 20:08 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0

2014-02-14 20:04 - 2014-02-14 19:59 - 197451096 _____ (MAGIX AG) C:\Users\Acer1\Downloads\magix_video_deluxe_2014_188mb_chip_de.exe

2014-02-14 19:31 - 2014-02-14 19:31 - 00000000 ____D () C:\Program Files (x86)\ VIDEO DVR

2014-02-14 19:31 - 2012-10-24 06:13 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2014-02-14 19:04 - 2014-02-14 19:04 - 00014649 _____ () C:\INSTALL.LOG

2014-02-14 19:04 - 2014-02-14 19:04 - 00000000 ____D () C:\Users\Administrator

2014-02-14 19:04 - 2014-02-14 19:04 - 00000000 ____D () C:\Users\Acer1\AppData\Local\VHS to DVD

2014-02-14 19:03 - 2014-02-14 19:03 - 00002089 _____ () C:\Users\Public\Desktop\honestech VHS to DVD 2.0 SE.lnk

2014-02-14 19:03 - 2014-02-14 19:03 - 00000000 ____D () C:\Program Files (x86)\honestech VHS to DVD 2.0 SE

2014-02-14 19:03 - 2014-02-14 19:03 - 00000000 ____D () C:\Program Files (x86)\honestech

2014-02-14 18:59 - 2014-02-14 18:59 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\InstallShield
 

Some content of TEMP:

====================

C:\Users\Acer1\AppData\Local\Temp\avgnt.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2014-03-08 09:58
 

==================== End Of Log ============================

--- --- ---

--- --- ---

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014

Ran by Acer1 at 2014-03-15 21:34:26

Running from C:\Users\Acer1\Desktop

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}

AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

 clear.fi SDK - Video 2 (x32 Version: 2.1.1925 - CyberLink Corp.) Hidden

 clear.fi SDK- Movie 2 (x32 Version: 2.1.2008 - CyberLink Corp.) Hidden

 VIDEO DVR (HKLM-x32\...\{EBD0EE76-2CFC-4EE5-AFE6-7EEAA3B14332}) (Version: 2012.04.17 - -)

Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0059 - NTI Corporation)

Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3007 - Acer Incorporated)

Acer Instant Update Service (HKLM\...\{8215A318-CC27-435E-B3EA-2E3443C8998C}) (Version: 1.00.3013 - Acer Incorporated)

Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Acer Incorporated)

Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Acer Incorporated)

AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3115 - Acer Incorporated)

AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3201 - Acer Incorporated)

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)

Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)

Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)

Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-4300-A758B70C0A03}) (Version: 12.10.3.4488 - APN, LLC)

Backup Manager v4 (x32 Version: 4.0.0.0059 - NTI Corporation) Hidden

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)

CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)

clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3108 - Acer Incorporated)

clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3108 - Acer Incorporated)

CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3103_44819 - CyberLink Corp.)

CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3103_44819 - CyberLink Corp.) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)

eBay Worldwide (HKLM-x32\...\{A694AF57-9891-4D62-824C-7E55A1361A14}) (Version: 2.3.0630 - OEM)

ETDWare PS/2-X64 11.6.8.001_WHQL (HKLM\...\Elantech) (Version: 11.6.8.001 - ELAN Microelectronic Corp.)

Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Free MP4 Video Converter version 5.0.33.213 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.33.213 - DVDVideoSoft Ltd.)

Free YouTube Download version 3.2.20.1230 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.)

Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)

honestech VHS to DVD 2.0 SE (HKLM-x32\...\{2856F5EA-E98A-40E4-BAD6-8C644A4A3F3C}) (Version: 2.0 - honestech)

Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)

Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)

Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)

Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden

iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)

Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.4 - Acer Inc.)

Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3004 - Acer Incorporated)

Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden

Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)

Mp3tag v2.58 (HKLM-x32\...\Mp3tag) (Version: v2.58 - Florian Heidenreich)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden

MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden

MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)

MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden

MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden

MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)

MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden

NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.9008 - NTI Corporation)

NTI Media Maker 9 (x32 Version: 9.0.2.9008 - NTI Corporation) Hidden

Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3200 - Acer)

Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Ihr Firmenname)

Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)

Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28123 - Realtek Semiconductor Corp.)

Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)

Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden

Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden

Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)

Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)

Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)

Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden

Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)

VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)

Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

XMedia Recode Version 3.1.7.9 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.9 - XMedia Recode)
 

==================== Restore Points  =========================
 

01-03-2014 11:45:48 Geplanter Prüfpunkt

08-03-2014 21:43:00 Geplanter Prüfpunkt

13-03-2014 08:26:11 Windows Update
 

==================== Hosts content: ==========================
 

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {1076514D-DBC6-4676-80AB-836D8C157999} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-22] ()

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {1BBBE8A5-CB06-4485-97C6-02468B524A86} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-08-30] ()

Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList

Task: {27040EA4-2BCB-4D23-A06E-2BEBD33BA1D8} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-22] ()

Task: {408761BB-4024-4777-85C6-5D823A343ECB} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-12] (Egis Technology Inc.)

Task: {474ED943-3A07-4381-A732-F1818C5F7980} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-07-04] (CyberLink)

Task: {5849C09B-C2D6-4925-B76B-97B66FE6037C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)

Task: {7EDAA68F-C2FC-4887-9C98-569910AC40D7} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-08-22] (Acer Incorporated)

Task: {80C34CEA-B084-4F62-A419-6E752B0C3ECE} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-22] ()

Task: {8CA73A2D-8BA8-43B4-A7E1-CD433A0BABB8} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)

Task: {9B90FF24-8932-4AF7-8333-556190533B65} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-12] (Egis Technology Inc.)

Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing

Task: {C556D6D7-3C45-4105-8FA5-5ABD15FD0BD9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)

Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {D91F7D4C-023F-43E5-9ED8-53AC9596AAF4} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\WINDOWS\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)

Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
 

==================== Loaded Modules (whitelisted) =============
 

2012-06-22 02:12 - 2012-06-22 02:12 - 01407568 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll

2012-10-29 05:16 - 2012-10-23 04:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll

2012-08-22 23:04 - 2012-08-22 23:04 - 00025232 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe

2012-08-22 23:04 - 2012-08-22 23:04 - 00044176 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe

2012-08-10 18:28 - 2012-08-10 18:28 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll

2012-08-10 18:23 - 2012-08-10 18:23 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll

2014-02-05 22:03 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2012-08-23 07:26 - 2012-08-23 07:26 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll

2012-08-23 07:25 - 2012-08-23 07:25 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll

2012-08-23 07:26 - 2012-08-23 07:26 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll

2012-08-23 07:25 - 2012-08-23 07:25 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll

2012-08-23 07:25 - 2012-08-23 07:25 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll

2012-08-23 07:25 - 2012-08-23 07:25 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll

2012-08-23 07:26 - 2012-08-23 07:26 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll

2012-11-24 20:25 - 2012-06-25 03:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

2014-02-14 21:15 - 2014-02-14 21:15 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
 

==================== Alternate Data Streams (whitelisted) =========
 
 

==================== Safe Mode (whitelisted) ===================
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 

==================== Disabled items from MSCONFIG ==============
 
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (03/14/2014 08:37:43 PM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 

Error: (03/13/2014 10:23:18 PM) (Source: ETDService) (User: )

Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0
 

Error: (03/13/2014 09:08:34 AM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 

Error: (03/12/2014 11:07:37 AM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 

Error: (03/11/2014 04:53:18 PM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 

Error: (03/11/2014 04:21:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: Acer)

Description: Die App „Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 15609
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 15609
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (03/10/2014 10:53:11 AM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 
 

System errors:

=============

Error: (03/15/2014 08:39:36 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:36 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:35 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:35 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:34 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:33 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:33 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:33 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:33 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 

Error: (03/15/2014 08:39:33 PM) (Source: DCOM) (User: Acer)

Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerAcer1S-1-5-21-3942060078-1468770267-3527270758-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
 
 

Microsoft Office Sessions:

=========================

Error: (03/14/2014 08:37:43 PM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 

Error: (03/13/2014 10:23:18 PM) (Source: ETDService)(User: )

Description: ETDServiceCreateInteractiveProcess failed w/err 0x000003f0
 

Error: (03/13/2014 09:08:34 AM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 

Error: (03/12/2014 11:07:37 AM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 

Error: (03/11/2014 04:53:18 PM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 

Error: (03/11/2014 04:21:05 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: Acer)

Description: Microsoft.Reader_8wekyb3d8bbwe!Microsoft.Reader
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 15609
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 15609
 

Error: (03/11/2014 01:35:57 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (03/10/2014 10:53:11 AM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 39%

Total physical RAM: 3912.27 MB

Available physical RAM: 2368.47 MB

Total Pagefile: 11592.27 MB

Available Pagefile: 9801.01 MB

Total Virtual: 8192 MB

Available Virtual: 8191.82 MB
 

==================== Drives ================================
 

Drive c: (Acer) (Fixed) (Total:680.48 GB) (Free:549.13 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 699 GB) (Disk ID: E0E7AFE5)
 

Partition: GPT Partition Type.
 

==================== End Of Log ============================

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2014.03.17.03
 

Windows 8 x64 NTFS

Internet Explorer 10.0.9200.16843

Acer1 :: ACER [Administrator]
 

Schutz: Aktiviert
 

19.03.2014 11:08:56

mbam-log-2014-03-19 (11-08-56).txt
 

Art des Suchlaufs: Quick-Scan

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 219139

Laufzeit: 3 Minute(n), 50 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateien: 0

(Keine bösartigen Objekte gefunden)
 

(Ende)

bitte in der angegebenen Reihenfolge abarbeiten.

Hallo SCHRAUBER hier sinddie Logs nach der Reihenfolge

Code:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014

Ran by Acer1 at 2014-03-26 23:26:32 Run:2

Running from C:\Users\Acer1\Desktop

Boot Mode: Normal

==============================================
 

Content of fixlist:

*****************

HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}

         

*****************
 

HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce\\IsMyWinLockerReboot => Value not found.

HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\IsMyWinLockerReboot => Value not found.

HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\IsMyWinLockerReboot => Value not found.
 

==== End of Fixlog ====

Qurantäne ist voll mit Viren soll ich die LÖSCHEN ?

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2014.03.26.03
 

Windows 8 x64 NTFS

Internet Explorer 10.0.9200.16843

Acer1 :: ACER [Administrator]
 

Schutz: Aktiviert
 

26.03.2014 23:28:03

mbam-log-2014-03-26 (23-28-03).txt
 

Art des Suchlaufs: Quick-Scan

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 221145

Laufzeit: 3 Minute(n), 8 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateien: 0

(Keine bösartigen Objekte gefunden)
 

(Ende)

Code:

# AdwCleaner v3.022 - Bericht erstellt am 26/03/2014 um 23:35:01

# Aktualisiert 13/03/2014 von Xplode

# Betriebssystem : Windows 8  (64 bits)

# Benutzername : Acer1 - ACER

# Gestartet von : C:\Users\Acer1\Downloads\adwcleaner(1).exe

# Option : Löschen
 

***** [ Dienste ] *****
 
 

***** [ Dateien / Ordner ] *****
 

Datei Gelöscht : C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\user.js
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

Schlüssel Gelöscht : HKLM\Software\InstallCore
 

***** [ Browser ] *****
 

-\\ Internet Explorer v10.0.9200.16843
 
 

-\\ Mozilla Firefox v28.0 (de)
 

[ Datei : C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\prefs.js ]
 

Zeile gelöscht : user_pref("extensions.mysearchdial.AL", 2);

Zeile gelöscht : user_pref("extensions.mysearchdial.aflt", "dvd_14_13_ff");

Zeile gelöscht : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");

Zeile gelöscht : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutBtDyCzzzy0D0FtDyD0C0FyB0BtB0AzytN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StDyBtCyDtC0CtBzytGyCyCyBy[...]

Zeile gelöscht : user_pref("extensions.mysearchdial.cr", "183087979");

Zeile gelöscht : user_pref("extensions.mysearchdial.dfltLng", "");

Zeile gelöscht : user_pref("extensions.mysearchdial.dfltSrch", false);

Zeile gelöscht : user_pref("extensions.mysearchdial.dnsErr", true);

Zeile gelöscht : user_pref("extensions.mysearchdial.excTlbr", false);

Zeile gelöscht : user_pref("extensions.mysearchdial.hmpg", false);

Zeile gelöscht : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=dvd_14_13_ff&cd=2XzuyEtN2Y1L1QzutBtDyCzzzy0D0FtDyD0C0FyB0BtB0AzytN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEt[...]

Zeile gelöscht : user_pref("extensions.mysearchdial.id", "20689DF05CF7B2A9");

Zeile gelöscht : user_pref("extensions.mysearchdial.instlDay", "16155");

Zeile gelöscht : user_pref("extensions.mysearchdial.instlRef", "140305_b");

Zeile gelöscht : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=dvd_14_13_ff&cd=2XzuyEtN2Y1L1QzutBtDyCzzzy0D0FtDyD0C0FyB0BtB0AzytN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCy[...]

Zeile gelöscht : user_pref("extensions.mysearchdial.prdct", "mysearchdial");

Zeile gelöscht : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");

Zeile gelöscht : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");

Zeile gelöscht : user_pref("extensions.mysearchdial.tlbrId", "base");

Zeile gelöscht : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=dvd_14_13_ff&cd=2XzuyEtN2Y1L1QzutBtDyCzzzy0D0FtDyD0C0FyB0BtB0AzytN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1Czut[...]

Zeile gelöscht : user_pref("extensions.mysearchdial.vrsn", "1.8.29.0");

Zeile gelöscht : user_pref("extensions.mysearchdial.vrsni", "1.8.29.0");

Zeile gelöscht : user_pref("extensions.mysearchdial_i.newTab", false);

Zeile gelöscht : user_pref("extensions.mysearchdial_i.smplGrp", "none");

Zeile gelöscht : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.022:36:33");
 

*************************
 

AdwCleaner[R0].txt - [1004 octets] - [19/03/2014 10:51:38]

AdwCleaner[R1].txt - [4347 octets] - [26/03/2014 23:34:21]

AdwCleaner[S0].txt - [1067 octets] - [19/03/2014 10:52:17]

AdwCleaner[S1].txt - [4260 octets] - [26/03/2014 23:35:01]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4320 octets] ##########

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.2 (02.20.2014:1)

OS: Windows 8 x64

Ran by Acer1 on 26.03.2014 at 23:42:18,56

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 

~~~ Services
 
 
 

~~~ Registry Values
 
 
 

~~~ Registry Keys
 
 
 

~~~ Files
 
 
 

~~~ Folders
 

Successfully deleted: [Folder] "C:\ProgramData\apn"
 
 
 

~~~ Event Viewer Logs were cleared
 
 
 
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 26.03.2014 at 23:47:29,74

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014

Ran by Acer1 (administrator) on ACER on 26-03-2014 23:48:45

Running from C:\Users\Acer1\Desktop

Windows 8 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 
 
 

==================== Processes (Whitelisted) =================
 

(Microsoft Corporation) C:\WINDOWS\system32\WLANExt.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(Dritek System INC.) C:\Windows\RfBtnSvc64.exe

(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Intel Corporation) C:\Windows\system32\igfxext.exe

(Intel Corporation) C:\Windows\system32\igfxsrvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe

() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe

(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe

(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe

(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PMMUpdate.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
 
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)

HKLM\...\Run: [BtPreLoad] - C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-10] ()

HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

HKLM-x32\...\Run: [LManager] - [X]

HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com

SearchScopes: HKLM - DefaultScope {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKLM - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKLM-x32 - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS

SearchScopes: HKCU - {55C64423-0BCF-4A16-880A-11BF7B4DF4D0} URL = 

BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)

BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)

BHO: Coupon Alerts BHO - {F791D8AE-47E8-40A5-A913-EB2D2AF29602} - C:\Program Files (x86)\Coupon Alerts\FrameworkBHO64.dll No File

BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)

Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)

Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)

Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default

FF Homepage: www.google.de

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()

FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()

FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Coupon Alerts - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{2108334E-4CB3-8DD2-890D-0585F7099FF9} [2014-03-04]

FF Extension: Adblock Plus - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-02]

FF Extension: BetterPrivacy - C:\Users\Acer1\AppData\Roaming\Mozilla\Firefox\Profiles\8vcuawvp.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-02-19]

FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\

FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ []
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)

S4 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-02-13] ()

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)

R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated)

S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)

R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [28560 2012-08-30] (ELAN Microelectronics Corp.)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)

R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-11-24] (Dritek System INC.)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)

R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-08-01] (Atheros)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-11-24] (Dritek System Inc.)

S3 X86BDA; C:\Windows\system32\DRIVERS\OEMDrv.sys [268416 2011-06-08] ( )
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-03-26 23:48 - 2014-03-26 23:48 - 00012715 _____ () C:\Users\Acer1\Desktop\FRST.txt

2014-03-26 23:47 - 2014-03-26 23:47 - 00000667 _____ () C:\Users\Acer1\Desktop\JRT.txt

2014-03-26 23:38 - 2014-03-26 23:38 - 00004408 _____ () C:\Users\Acer1\Desktop\AdwCleaner[S1].txt

2014-03-26 23:33 - 2014-03-26 23:33 - 01950720 _____ () C:\Users\Acer1\Downloads\adwcleaner(1).exe

2014-03-26 22:47 - 2014-03-26 22:47 - 00002292 _____ () C:\WINDOWS\PFRO.log

2014-03-26 22:38 - 2014-03-26 22:38 - 00003106 _____ () C:\WINDOWS\System32\Tasks\{EDA52F04-CA67-4ED8-8527-0AD9B4FA52F7}

2014-03-26 22:35 - 2014-03-26 22:35 - 00634288 _____ () C:\Users\Acer1\Downloads\FreeYouTubeToMP3Converter_3.12.31.325.exe

2014-03-19 11:26 - 2014-03-19 11:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-03-19 11:01 - 2014-03-19 11:01 - 01037734 _____ (Thisisu) C:\Users\Acer1\Downloads\JRT.exe

2014-03-19 11:01 - 2014-03-19 11:01 - 00000000 ____D () C:\WINDOWS\ERUNT

2014-03-19 10:51 - 2014-03-26 23:35 - 00000000 ____D () C:\AdwCleaner

2014-03-19 10:51 - 2014-03-19 10:51 - 01950720 _____ () C:\Users\Acer1\Downloads\adwcleaner.exe

2014-03-18 20:41 - 2014-03-18 20:41 - 00000000 ____D () C:\Users\Acer1\AppData\Local\AskPartnerNetwork

2014-03-16 20:17 - 2014-03-21 10:23 - 00871393 _____ () C:\WINDOWS\WindowsUpdate.log

2014-03-15 21:10 - 2014-03-20 13:05 - 00000000 ____D () C:\Users\Acer1\Desktop\rOrdner

2014-03-15 10:14 - 2014-03-15 10:59 - 00000000 ____D () C:\Users\Acer1\Desktop\Ordner

2014-03-15 09:35 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Desktop\FRST64.exe

2014-03-15 09:34 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Downloads\FRST64.exe

2014-03-14 08:25 - 2014-03-14 08:26 - 00025235 _____ () C:\Users\Acer1\Downloads\Addition.txt

2014-03-14 08:24 - 2014-03-26 23:48 - 00000000 ____D () C:\FRST

2014-03-14 08:20 - 2014-03-14 08:20 - 00394600 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-03-13 22:05 - 2014-03-13 22:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300(1).exe

2014-03-13 22:03 - 2014-03-13 22:06 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-13 22:03 - 2014-03-13 22:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Malwarebytes

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-13 22:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

2014-03-13 22:02 - 2014-03-13 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-13 10:54 - 2014-01-31 01:48 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll

2014-03-13 10:54 - 2014-01-31 01:06 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll

2014-03-13 10:54 - 2013-10-25 08:34 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys

2014-03-13 10:54 - 2013-10-24 23:34 - 00248240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys

2014-03-13 08:14 - 2014-02-08 05:34 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-03-13 08:13 - 2014-02-23 09:13 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll

2014-03-13 08:13 - 2014-02-23 09:13 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-03-13 08:13 - 2014-02-23 09:12 - 19273216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-03-13 08:13 - 2014-02-23 09:12 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2014-03-13 08:13 - 2014-02-23 09:12 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 03960320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll

2014-03-13 08:13 - 2014-02-23 09:11 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-03-13 08:13 - 2014-02-23 07:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 14358016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 13761024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll

2014-03-13 08:13 - 2014-02-23 07:53 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll

2014-03-13 08:13 - 2014-02-23 07:35 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2014-03-13 08:13 - 2014-02-23 07:31 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2014-03-13 08:13 - 2014-02-23 05:06 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2014-03-13 08:13 - 2014-02-06 00:41 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll

2014-03-13 08:13 - 2014-02-06 00:37 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll

2014-03-13 08:13 - 2013-12-07 07:36 - 19751936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2014-03-13 08:13 - 2013-12-07 06:15 - 17560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2014-03-10 10:06 - 2014-03-10 10:06 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2014-03-10 10:06 - 2014-03-10 10:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-10 10:06 - 2014-03-10 10:06 - 00000000 ____D () C:\Program Files\CCleaner

2014-03-10 10:05 - 2014-03-10 10:05 - 03690256 _____ (Piriform Ltd) C:\Users\Acer1\Downloads\ccsetup411_slim.exe

2014-03-04 19:05 - 2014-03-04 22:09 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Mp3tag

2014-03-04 19:05 - 2014-03-04 19:05 - 00000987 _____ () C:\Users\Public\Desktop\Mp3tag.lnk

2014-03-04 19:05 - 2014-03-04 19:05 - 00000000 ____D () C:\Program Files (x86)\Mp3tag

2014-03-04 19:02 - 2014-03-04 19:02 - 02634152 _____ () C:\Users\Acer1\Downloads\mp3tagv258setup.exe

2014-03-04 18:53 - 2014-03-04 19:03 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter

2014-03-04 18:52 - 2014-03-04 18:52 - 06424632 _____ (ManiacTools.com ) C:\Users\Acer1\Downloads\m4a-to-mp3-81converter.exe
 

==================== One Month Modified Files and Folders =======
 

2014-03-26 23:48 - 2014-03-26 23:48 - 00012715 _____ () C:\Users\Acer1\Desktop\FRST.txt

2014-03-26 23:48 - 2014-03-14 08:24 - 00000000 ____D () C:\FRST

2014-03-26 23:47 - 2014-03-26 23:47 - 00000667 _____ () C:\Users\Acer1\Desktop\JRT.txt

2014-03-26 23:41 - 2014-01-31 10:21 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3942060078-1468770267-3527270758-1001

2014-03-26 23:40 - 2012-11-25 05:00 - 00753134 _____ () C:\WINDOWS\system32\perfh007.dat

2014-03-26 23:40 - 2012-11-25 05:00 - 00155826 _____ () C:\WINDOWS\system32\perfc007.dat

2014-03-26 23:40 - 2012-07-26 08:28 - 01745416 _____ () C:\WINDOWS\system32\PerfStringBackup.INI

2014-03-26 23:38 - 2014-03-26 23:38 - 00004408 _____ () C:\Users\Acer1\Desktop\AdwCleaner[S1].txt

2014-03-26 23:35 - 2014-03-19 10:51 - 00000000 ____D () C:\AdwCleaner

2014-03-26 23:35 - 2012-07-26 08:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT

2014-03-26 23:33 - 2014-03-26 23:33 - 01950720 _____ () C:\Users\Acer1\Downloads\adwcleaner(1).exe

2014-03-26 23:07 - 2014-01-31 19:43 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-03-26 23:00 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\system32\sru

2014-03-26 22:47 - 2014-03-26 22:47 - 00002292 _____ () C:\WINDOWS\PFRO.log

2014-03-26 22:38 - 2014-03-26 22:38 - 00003106 _____ () C:\WINDOWS\System32\Tasks\{EDA52F04-CA67-4ED8-8527-0AD9B4FA52F7}

2014-03-26 22:36 - 2014-02-16 20:59 - 00001500 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk

2014-03-26 22:36 - 2014-02-16 20:59 - 00001207 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk

2014-03-26 22:36 - 2014-02-16 20:59 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\DVDVideoSoft

2014-03-26 22:36 - 2014-02-16 20:59 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

2014-03-26 22:35 - 2014-03-26 22:35 - 00634288 _____ () C:\Users\Acer1\Downloads\FreeYouTubeToMP3Converter_3.12.31.325.exe

2014-03-23 10:10 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\rescache

2014-03-22 12:35 - 2012-07-26 06:26 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI

2014-03-21 22:11 - 2014-01-31 10:16 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Atheros

2014-03-21 22:10 - 2014-01-31 19:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-03-21 10:23 - 2014-03-16 20:17 - 00871393 _____ () C:\WINDOWS\WindowsUpdate.log

2014-03-20 13:05 - 2014-03-15 21:10 - 00000000 ____D () C:\Users\Acer1\Desktop\rOrdner

2014-03-20 12:37 - 2014-02-16 21:02 - 00000000 ____D () C:\Users\Acer1\Documents\Bluetooth Folder

2014-03-19 22:25 - 2014-02-03 16:37 - 00000000 ____D () C:\WINDOWS\system32\MRT

2014-03-19 22:23 - 2014-02-03 16:37 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2014-03-19 22:23 - 2012-07-26 06:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM

2014-03-19 20:47 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent

2014-03-19 11:27 - 2014-03-19 11:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-03-19 11:01 - 2014-03-19 11:01 - 01037734 _____ (Thisisu) C:\Users\Acer1\Downloads\JRT.exe

2014-03-19 11:01 - 2014-03-19 11:01 - 00000000 ____D () C:\WINDOWS\ERUNT

2014-03-19 10:56 - 2014-01-31 10:14 - 00000000 ___RD () C:\Users\Acer1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-03-19 10:56 - 2014-01-31 10:14 - 00000000 ___RD () C:\Users\Acer1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-03-19 10:52 - 2012-07-26 09:12 - 00000000 ___RD () C:\WINDOWS\ToastData

2014-03-19 10:52 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2014-03-19 10:52 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2014-03-19 10:52 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Defender

2014-03-19 10:52 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender

2014-03-19 10:51 - 2014-03-19 10:51 - 01950720 _____ () C:\Users\Acer1\Downloads\adwcleaner.exe

2014-03-18 21:21 - 2014-02-21 23:06 - 00000000 ____D () C:\Users\Acer1\AppData\Local\CrashDumps

2014-03-18 20:41 - 2014-03-18 20:41 - 00000000 ____D () C:\Users\Acer1\AppData\Local\AskPartnerNetwork

2014-03-15 10:59 - 2014-03-15 10:14 - 00000000 ____D () C:\Users\Acer1\Desktop\Ordner

2014-03-15 10:05 - 2012-10-24 05:35 - 00000000 ____D () C:\ProgramData\WildTangent

2014-03-15 09:34 - 2014-03-15 09:35 - 02157056 _____ (Farbar) C:\Users\Acer1\Desktop\FRST64.exe

2014-03-15 09:34 - 2014-03-15 09:34 - 02157056 _____ (Farbar) C:\Users\Acer1\Downloads\FRST64.exe

2014-03-14 11:47 - 2014-02-17 22:34 - 00083456 ___SH () C:\Users\Acer1\Desktop\Thumbs.db

2014-03-14 08:26 - 2014-03-14 08:25 - 00025235 _____ () C:\Users\Acer1\Downloads\Addition.txt

2014-03-14 08:20 - 2014-03-14 08:20 - 00394600 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

2014-03-13 22:06 - 2014-03-13 22:03 - 00001117 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-13 22:06 - 2014-03-13 22:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-03-13 22:05 - 2014-03-13 22:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300(1).exe

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Malwarebytes

2014-03-13 22:03 - 2014-03-13 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-13 22:02 - 2014-03-13 22:02 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Acer1\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-11 19:07 - 2014-01-31 19:43 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2014-03-11 15:54 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\system32\NDF

2014-03-10 10:09 - 2014-02-14 20:20 - 00000000 ____D () C:\WINDOWS\Minidump

2014-03-10 10:09 - 2012-10-24 06:06 - 00000000 ____D () C:\WINDOWS\Panther

2014-03-10 10:06 - 2014-03-10 10:06 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2014-03-10 10:06 - 2014-03-10 10:06 - 00000826 _____ () C:\Users\Public\Desktop\CCleaner.lnk

2014-03-10 10:06 - 2014-03-10 10:06 - 00000000 ____D () C:\Program Files\CCleaner

2014-03-10 10:05 - 2014-03-10 10:05 - 03690256 _____ (Piriform Ltd) C:\Users\Acer1\Downloads\ccsetup411_slim.exe

2014-03-04 23:52 - 2014-02-05 22:22 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2014-03-04 23:52 - 2014-02-05 22:22 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2014-03-04 22:09 - 2014-03-04 19:05 - 00000000 ____D () C:\Users\Acer1\AppData\Roaming\Mp3tag

2014-03-04 19:05 - 2014-03-04 19:05 - 00000987 _____ () C:\Users\Public\Desktop\Mp3tag.lnk

2014-03-04 19:05 - 2014-03-04 19:05 - 00000000 ____D () C:\Program Files (x86)\Mp3tag

2014-03-04 19:03 - 2014-03-04 18:53 - 00000000 ____D () C:\Program Files (x86)\Free M4a to MP3 Converter

2014-03-04 19:02 - 2014-03-04 19:02 - 02634152 _____ () C:\Users\Acer1\Downloads\mp3tagv258setup.exe

2014-03-04 18:52 - 2014-03-04 18:52 - 06424632 _____ (ManiacTools.com ) C:\Users\Acer1\Downloads\m4a-to-mp3-81converter.exe
 

Some content of TEMP:

====================

C:\Users\Acer1\AppData\Local\Temp\avgnt.exe

C:\Users\Acer1\AppData\Local\Temp\Quarantine.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2014-03-18 10:13
 

==================== End Of Log ============================

--- --- ---

--- --- ---

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)