Das ist FRST.txt
FRST Logfile:
FRST Logfile:
FRST Logfile:
FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013
Ran by Homr (administrator) on 08-07-2013 15:27:07
Running from C:\Users\Homr\AppData\Local\Temp\Temporary Internet Files\Content.IE5\1XVONX6A
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Adobe Systems Incorporated) c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
() c:\Creative Suite CS2\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(Octoshape ApS) C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Adobe Sytems Incorporated) C:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Bandoo Media, inc) C:\Program Files (x86)\Searchqu Toolbar\Datamngr\datamngrUI.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
() C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(BEETmobile) C:\Program Files (x86)\BEETmobile\BEETmobile.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon [767312 2009-09-04] (CANON INC.)
HKLM\...\Policies\Explorer\Run: [Policies] C:\Users\Homr\AppData\Roaming\WinDir\Svchost.exe No File
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-20] (Microsoft Corporation)
HKCU\...\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [Octoshape Streaming Services] "C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun [70936 2009-01-08] (Octoshape ApS)
HKCU\...\Run: [Vidalia] "C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe" [6239727 2012-12-02] ()
HKCU\...\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKCU\...\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [1561968 2013-05-23] (Samsung)
HKCU\...\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKCU\...\Run: [ZTUD] C:\Users\Homr\AppData\Roaming\WinDir\Svchost.exe [x]
HKCU\...\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5622512 2013-05-15] (SUPERAntiSpyware.com)
MountPoints2: {21170f26-e1b9-11de-a9e4-806e6f6e6963} - F:\Autorun.exe
HKLM-x32\...\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [98304 2009-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CherryKeyMan] "C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe" [258100 2009-07-29] (ZF Electronics GmbH)
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe Version Cue CS2] c:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [DATAMNGR] C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE [1683456 2013-02-14] (Bandoo Media, inc)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot [295512 2013-06-21] (RealNetworks, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-06-28] (LogMeIn Inc.)
HKLM-x32\...\Run: [FTPS] C:\Users\Homr\AppData\Roaming\WinDir\Svchost.exe [x]
AppInit_DLLs: C:\PROGRA~3\Wincert\WIN64C~1.DLL C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll [1531256 2013-02-14] (Bandoo Media, inc)
AppInit_DLLs-x32: C:\PROGRA~3\Wincert\WIN32C~1.DLL C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll [1189240 2013-02-14] (Bandoo Media, inc)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
URLSearchHook: (No Name) - {5786d022-540e-4699-b350-b4be0ae94b79} - No File
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
HKCU SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
SearchScopes: HKCU - {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=0&systemid=413&apn_dtid=BND413&apn_ptnrs=AGA&o=APN10649&apn_uid=1076459457114100&q={searchTerms}
SearchScopes: HKCU - {E998C01A-FAD7-4C43-89D4-DC145DA1851C} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^DE&apn_uid=A4E50315-05D8-4B6A-AD3B-838BFA1A5850&apn_sauid=2BDE69EF-B48E-4FDB-9AFC-1B8B7BCA0089
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL (Bandoo Media, inc)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SparweltGutscheinAlarm.Sparwelt_Gutschein_Tool - {10945114-b19f-4614-8450-b25e444a1020} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Search-Results Toolbar - {3ec1a45c-8bc3-4bfe-b226-4051c5d3d068} - C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL (Bandoo Media, inc)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - No Name - {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
Toolbar: HKLM-x32 - Search-Results Toolbar - {3ec1a45c-8bc3-4bfe-b226-4051c5d3d068} - C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll (APN LLC)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} - No File
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} - No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} https://stream.web.de/mail/activex/mail_upload_11213.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {888078C6-70B2-4F88-8EE7-1F50DDEA6120} https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444552440000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Homr\AppData\Roaming\Mozilla\Firefox\Profiles\ips5ydjp.default
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "type", 0
FF SelectedSearchEngine: Ask.com
FF Keyword.URL: hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_uid=A4E50315-05D8-4B6A-AD3B-838BFA1A5850&apn_ptnrs=U3&apn_sauid=2BDE69EF-B48E-4FDB-9AFC-1B8B7BCA0089&apn_dtid=OSJ000YYDE&&q=
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Users\Homr\AppData\Roaming\Move Networks\plugins\071802000001\npqmp071802000001.dll (Move Networks)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Homr\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Homr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Homr\AppData\Roaming\Mozilla\Firefox\Profiles\ips5ydjp.default\searchplugins\askcom.xml
FF Extension: No Name - C:\Users\Homr\AppData\Roaming\Mozilla\Extensions\celtx@celtx.com
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
==================== Services (Whitelisted) =================
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [143088 2013-05-08] (SUPERAntiSpyware.com)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-12] (Adobe Systems)
R2 Adobe Version Cue CS2; c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-27] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2007-12-27] ()
S3 Cherry Device Interface; C:\Program Files (x86)\Cherry\CDI\cdi.exe [585774 2009-05-28] (ZF Electronics GmbH)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1326176 2012-06-27] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [681056 2012-06-27] (Secunia)
R2 Start BT in service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2007-12-27] ()
S2 SystemStore; C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe [14848 2012-04-24] ()
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580648 2012-07-17] (WiseCleaner.com)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-04-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-01] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-08-12] (Lavasoft AB)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-08 15:26 - 2013-07-08 15:26 - 00000000 ____D C:\FRST
2013-07-08 15:21 - 2013-07-08 15:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{EB3B6200-14F7-4ADC-B103-FB9DA3AEDE9D}
2013-07-08 02:16 - 2013-07-08 15:19 - 00000112 ____A C:\Windows\setupact.log
2013-07-08 02:16 - 2013-07-08 02:16 - 00001336 ____A C:\Windows\PFRO.log
2013-07-08 02:16 - 2013-07-08 02:16 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 01:05 - 2013-07-08 02:16 - 00000508 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 49d65f3d-4d34-4ac0-8dad-d64b0dc587c3.job
2013-07-08 01:05 - 2013-07-08 02:00 - 00000508 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 081ac3bf-9988-4341-b2e5-1f11f6ee6fb2.job
2013-07-08 01:05 - 2013-07-08 01:05 - 00001808 ____A C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\Users\Homr\AppData\Roaming\SUPERAntiSpyware.com
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-07-08 00:29 - 2013-07-08 00:29 - 00016737 ____A C:\Users\Homr\Desktop\hijackthis.log
2013-07-08 00:07 - 2013-07-08 00:14 - 00001499 ____A C:\Users\Homr\AppData\Roaming\cglogs.dat
2013-07-07 23:59 - 2013-07-08 01:06 - 00000000 ____D C:\Users\Homr\AppData\Roaming\WinDir
2013-07-07 23:53 - 2013-07-08 02:14 - 00000000 ____D C:\Windows\SysWOW64\WinDir
2013-07-07 20:45 - 2013-07-07 20:45 - 00000000 ____D C:\Users\Homr\AppData\Local\{341668A1-B784-46B2-9518-783D8DFC08A9}
2013-07-07 13:32 - 2013-07-07 13:32 - 00000000 ____D C:\Users\Homr\AppData\Local\{6F9F85BD-EE05-4DC4-A236-DC4A5BD93559}
2013-07-07 01:18 - 2013-07-07 01:19 - 00000000 ____D C:\Users\Homr\AppData\Local\{69634A4D-D701-49C2-9D41-E957B82E4B18}
2013-07-05 23:32 - 2013-07-05 23:32 - 00000000 ____D C:\Users\Homr\AppData\Local\{B9388D96-626C-41E9-949E-5028E90FC1F9}
2013-07-04 22:22 - 2013-07-08 08:17 - 00049471 ____A C:\Windows\WindowsUpdate.log
2013-07-04 17:06 - 2013-07-04 17:07 - 00000000 ____D C:\Users\Homr\AppData\Local\{7134131A-DEA3-4DBA-9809-A1CA16A05909}
2013-07-03 23:15 - 2013-07-03 23:15 - 00000000 ____D C:\Users\Homr\AppData\Local\{7CE7C9E1-3A03-4D38-9684-9AD85D8579AA}
2013-07-02 22:30 - 2013-07-02 22:30 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-07-02 21:43 - 2013-07-02 21:43 - 00000000 ____D C:\Users\Homr\AppData\Local\{1A07136F-F8DF-42C6-8AFF-643ACA35C714}
2013-07-02 21:40 - 2013-07-02 21:40 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-01 22:34 - 2013-07-01 22:34 - 00000000 ____D C:\Users\Homr\AppData\Local\{8002885C-55D3-4AE5-B643-B222B7D9677A}
2013-07-01 01:54 - 2013-07-01 01:55 - 00000000 ____D C:\Users\Homr\AppData\Local\{DE0D3F5B-557B-4F93-845F-752268B93984}
2013-06-30 13:53 - 2013-06-30 13:54 - 00000000 ____D C:\Users\Homr\AppData\Local\{3CB0AD68-2FC5-484F-B6C8-72F23EF1FFE5}
2013-06-29 15:18 - 2013-06-29 15:19 - 00000000 ____D C:\Users\Homr\AppData\Local\{4477E66F-A7E4-4FA0-915D-517B54E04526}
2013-06-29 01:57 - 2013-06-29 01:57 - 00000000 ____D C:\Users\Homr\AppData\Local\{42ABEA26-89FB-4A47-A39A-CFBE43DFD14A}
2013-06-28 14:16 - 2013-07-04 22:14 - 00000000 ____D C:\Users\Homr\Downloads\Baba
2013-06-28 14:06 - 2013-06-29 00:01 - 00001195 ____A C:\Users\Homr\Desktop\Downloads - Verknüpfung.lnk
2013-06-28 13:56 - 2013-06-28 13:56 - 00000000 ____D C:\Users\Homr\AppData\Local\{B1A21FF3-47FC-4FBC-B16B-1A2F0FB94643}
2013-06-28 01:55 - 2013-06-28 01:55 - 00000000 ____D C:\Users\Homr\AppData\Local\{DB9868CF-6B9F-41B9-8606-055FA08B9537}
2013-06-27 12:06 - 2013-06-27 12:07 - 00000000 ____D C:\Users\Homr\AppData\Local\{B4356343-671D-47FB-86FC-584F1187B309}
2013-06-26 23:05 - 2013-06-26 23:05 - 00000000 ____D C:\Users\Homr\AppData\Local\{4543B8AB-8962-4C38-BE34-01EF6E6C3510}
2013-06-26 20:49 - 2013-06-26 20:49 - 00000000 ____D C:\Users\Homr\AppData\Local\{2346E12C-79F3-4329-88E8-F994CDAD8DC7}
2013-06-25 15:43 - 2013-06-25 15:43 - 00000000 ____D C:\Users\Homr\AppData\Local\{E5842748-BBAA-44E6-91C6-CDAAB5D04011}
2013-06-24 21:18 - 2013-06-24 21:18 - 00000000 ____D C:\Users\Homr\AppData\Local\{ACF7323A-DD7E-47E8-B83A-DFE80BB1BAB7}
2013-06-23 22:21 - 2013-06-23 22:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{2A7BD580-C2E2-466A-8EDC-6C634ACB3EC1}
2013-06-22 20:05 - 2013-06-22 20:06 - 00000000 ____D C:\Users\Homr\AppData\Local\{6426A5EF-D164-4379-BD84-973F06DC4FD0}
2013-06-21 19:21 - 2013-06-21 19:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{A8501C1C-96D5-4118-97D6-C7BCDCB2ED65}
2013-06-21 01:46 - 2013-06-21 01:46 - 00000000 ____D C:\Program Files (x86)\RealNetworks
2013-06-21 01:44 - 2013-06-21 01:44 - 00000000 ____D C:\Users\Homr\AppData\Local\{A3991821-927F-4236-9E9F-6E22CF782C8D}
2013-06-19 23:13 - 2013-06-19 23:13 - 00000000 ____D C:\Users\Homr\AppData\Local\{2D86B2E6-B25B-456E-BD94-E1E4DA969AEC}
2013-06-18 18:09 - 2013-06-18 18:10 - 00000000 ____D C:\Users\Homr\AppData\Local\{128C7319-81C7-48B1-A96B-A225CAAF8E7C}
2013-06-17 21:19 - 2013-06-17 21:20 - 00000000 ____D C:\Users\Homr\AppData\Local\{36D9DFAE-62C7-42B8-BB85-AD708CE5EE48}
2013-06-17 00:55 - 2013-06-17 00:56 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-06-17 00:55 - 2013-06-17 00:55 - 00000000 ____D C:\ProgramData\Apple Computer
2013-06-17 00:33 - 2013-06-17 00:33 - 00000000 ____D C:\Users\Homr\AppData\Local\{E3F791CB-F17B-4C51-9EEA-FF85EF0B769E}
2013-06-15 20:01 - 2013-06-15 20:01 - 00000000 ____D C:\Users\Homr\AppData\Local\{F98228A6-CE3B-4FA2-B8A2-58E41881A69A}
2013-06-14 19:06 - 2013-06-14 19:07 - 00000000 ____D C:\Users\Homr\AppData\Local\{F490C379-00FD-4E10-B1A4-95E3A2EF90D0}
2013-06-13 23:54 - 2013-06-13 23:55 - 00000000 ____D C:\Users\Homr\AppData\Local\{53AA935E-D9E1-433B-914F-4CFB891CA452}
2013-06-13 02:51 - 2009-04-03 16:01 - 01321984 ____A (CANON INC.) C:\Windows\System32\CNC550C.dll
2013-06-13 02:51 - 2009-04-03 16:00 - 00092672 ____A (CANON INC.) C:\Windows\System32\CNC550I.dll
2013-06-13 02:51 - 2009-04-03 15:57 - 00106496 ____A (CANON INC.) C:\Windows\SysWOW64\CNC550U.dll
2013-06-13 02:51 - 2009-03-19 14:39 - 00328192 ____A (CANON INC.) C:\Windows\System32\CNC550L.dll
2013-06-13 02:51 - 2009-03-19 14:38 - 00303104 ____A (CANON INC.) C:\Windows\SysWOW64\CNC550L.dll
2013-06-13 02:49 - 2013-06-13 02:49 - 00000000 ___HD C:\Windows\System32\CanonIJ Uninstaller Information
2013-06-13 02:49 - 2013-06-13 02:49 - 00000000 ___HD C:\Program Files\CanonBJ
2013-06-13 02:49 - 2009-03-18 09:10 - 00244736 ____A (CANON INC.) C:\Windows\System32\CNMIU9Z.DLL
2013-06-13 02:20 - 2013-05-17 06:05 - 17824768 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-13 02:20 - 2013-05-17 05:27 - 10926080 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-13 02:20 - 2013-05-17 05:09 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-13 02:20 - 2013-05-17 05:02 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-13 02:20 - 2013-05-17 05:02 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-13 02:20 - 2013-05-17 05:01 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-13 02:20 - 2013-05-17 05:00 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-13 02:20 - 2013-05-17 04:58 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-13 02:20 - 2013-05-17 04:56 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-13 02:20 - 2013-05-17 04:56 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-13 02:20 - 2013-05-17 04:55 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-13 02:20 - 2013-05-17 04:54 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-13 02:20 - 2013-05-17 04:53 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-13 02:20 - 2013-05-17 04:51 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-13 02:20 - 2013-05-17 04:51 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-13 02:20 - 2013-05-17 04:46 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-13 02:20 - 2013-05-17 01:08 - 12329984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-13 02:20 - 2013-05-17 00:49 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-13 02:20 - 2013-05-17 00:39 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-13 02:20 - 2013-05-17 00:28 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-13 02:20 - 2013-05-17 00:28 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-13 02:20 - 2013-05-17 00:27 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-13 02:20 - 2013-05-17 00:26 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-13 02:20 - 2013-05-17 00:23 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-13 02:20 - 2013-05-17 00:21 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-13 02:20 - 2013-05-17 00:21 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-13 02:20 - 2013-05-17 00:20 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-13 02:20 - 2013-05-17 00:19 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-13 02:20 - 2013-05-17 00:17 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-13 02:20 - 2013-05-17 00:17 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-13 02:20 - 2013-05-17 00:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-13 02:20 - 2013-05-17 00:12 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-13 00:50 - 2013-06-13 00:50 - 00000000 ____D C:\Users\Homr\AppData\Local\{64837BFD-647F-4293-88B8-8B4A78CC4C11}
2013-06-13 00:39 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-13 00:39 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-13 00:39 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-13 00:39 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-13 00:39 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-13 00:39 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-13 00:39 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-13 00:39 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-13 00:39 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-13 00:39 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-13 00:39 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-13 00:39 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-13 00:39 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-13 00:39 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-13 00:39 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-13 00:39 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-13 00:39 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-13 00:39 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-13 00:39 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 22:27 - 2013-06-11 22:27 - 00000000 ____D C:\Users\Homr\AppData\Local\{C01A33BA-662C-4E37-A4E6-1EAD3602544A}
2013-06-10 16:14 - 2013-06-10 16:15 - 00000000 ____D C:\Users\Homr\AppData\Local\{C529B8E2-2B74-471B-87AE-BDAB4363E006}
2013-06-09 14:03 - 2013-06-09 14:03 - 00000000 ____D C:\Users\Homr\AppData\Local\{08D6A61B-596D-43E2-8784-B82E63BF5B37}
2013-06-09 01:26 - 2013-06-09 01:26 - 00000000 ____D C:\Users\Homr\AppData\Local\{21D2A5F8-C510-4207-889F-6D5526DD7AA6}
2013-06-08 00:47 - 2013-06-08 00:47 - 00000000 ____D C:\Users\Homr\AppData\Local\{5AC01B53-6271-462F-A03C-98629BFEA2F6}
==================== One Month Modified Files and Folders =======
2013-07-08 15:26 - 2013-07-08 15:26 - 00000000 ____D C:\FRST
2013-07-08 15:24 - 2009-12-06 02:53 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-08 15:23 - 2013-07-04 22:22 - 00049471 ____A C:\Windows\WindowsUpdate.log
2013-07-08 15:23 - 2012-12-30 04:08 - 00000000 ____D C:\Users\Homr\AppData\Local\LogMeIn Hamachi
2013-07-08 15:23 - 2009-12-06 02:53 - 00000000 ____D C:\Users\Homr\AppData\Local\Google
2013-07-08 15:22 - 2010-10-05 16:59 - 00000000 ____D C:\Users\Homr\AppData\Local\Windows Live
2013-07-08 15:21 - 2013-07-08 15:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{EB3B6200-14F7-4ADC-B103-FB9DA3AEDE9D}
2013-07-08 15:21 - 2011-12-24 03:06 - 00000000 ____D C:\Users\Homr\AppData\Roaming\Tor
2013-07-08 15:20 - 2013-03-05 05:26 - 00000000 ____D C:\Users\Homr\AppData\Local\Vidalia
2013-07-08 15:19 - 2013-07-08 02:16 - 00000112 ____A C:\Windows\setupact.log
2013-07-08 15:19 - 2012-10-12 01:37 - 00000420 ____A C:\Windows\Tasks\Wise Care 365.job
2013-07-08 15:19 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-08 05:20 - 2011-11-22 21:10 - 00001134 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000UA.job
2013-07-08 02:26 - 2009-07-14 06:45 - 00015376 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-08 02:26 - 2009-07-14 06:45 - 00015376 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-08 02:20 - 2011-11-22 21:10 - 00001112 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000Core.job
2013-07-08 02:17 - 2012-10-12 01:36 - 00000000 ____D C:\Users\Homr\AppData\Roaming\Wise Care 365
2013-07-08 02:16 - 2013-07-08 02:16 - 00001336 ____A C:\Windows\PFRO.log
2013-07-08 02:16 - 2013-07-08 02:16 - 00000000 ____A C:\Windows\setuperr.log
2013-07-08 02:16 - 2013-07-08 01:05 - 00000508 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 49d65f3d-4d34-4ac0-8dad-d64b0dc587c3.job
2013-07-08 02:14 - 2013-07-07 23:53 - 00000000 ____D C:\Windows\SysWOW64\WinDir
2013-07-08 02:00 - 2013-07-08 01:05 - 00000508 ____A C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 081ac3bf-9988-4341-b2e5-1f11f6ee6fb2.job
2013-07-08 01:06 - 2013-07-07 23:59 - 00000000 ____D C:\Users\Homr\AppData\Roaming\WinDir
2013-07-08 01:05 - 2013-07-08 01:05 - 00001808 ____A C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\Users\Homr\AppData\Roaming\SUPERAntiSpyware.com
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-07-08 01:05 - 2013-07-08 01:05 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-07-08 01:02 - 2013-04-27 01:23 - 00000000 ____D C:\Users\Homr\AppData\Roaming\Skype
2013-07-08 00:47 - 2010-09-05 02:52 - 00000000 ____D C:\ProgramData\DivX
2013-07-08 00:47 - 2010-01-11 01:24 - 00000000 ____D C:\Program Files\DivX
2013-07-08 00:47 - 2010-01-11 01:24 - 00000000 ____D C:\Program Files (x86)\DivX
2013-07-08 00:29 - 2013-07-08 00:29 - 00016737 ____A C:\Users\Homr\Desktop\hijackthis.log
2013-07-08 00:28 - 2010-09-16 13:41 - 00000000 ____D C:\Windows\Minidump
2013-07-08 00:28 - 2009-12-11 03:41 - 00000000 ____D C:\Users\Homr\AppData\Roaming\Winamp
2013-07-08 00:14 - 2013-07-08 00:07 - 00001499 ____A C:\Users\Homr\AppData\Roaming\cglogs.dat
2013-07-08 00:01 - 2012-07-31 00:42 - 00000000 ____D C:\Users\Homr\AppData\Local\BEETmobile
2013-07-07 21:40 - 2012-07-22 13:45 - 00000000 ____D C:\Program Files\Java
2013-07-07 21:40 - 2011-10-29 04:05 - 00000000 ____D C:\users\Misafir
2013-07-07 21:40 - 2009-12-09 20:10 - 00000000 ____D C:\ProgramData\Real
2013-07-07 21:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-07-07 21:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-07-07 20:45 - 2013-07-07 20:45 - 00000000 ____D C:\Users\Homr\AppData\Local\{341668A1-B784-46B2-9518-783D8DFC08A9}
2013-07-07 20:42 - 2009-12-05 18:20 - 00000000 ____D C:\users\Homr
2013-07-07 13:32 - 2013-07-07 13:32 - 00000000 ____D C:\Users\Homr\AppData\Local\{6F9F85BD-EE05-4DC4-A236-DC4A5BD93559}
2013-07-07 01:19 - 2013-07-07 01:18 - 00000000 ____D C:\Users\Homr\AppData\Local\{69634A4D-D701-49C2-9D41-E957B82E4B18}
2013-07-05 23:32 - 2013-07-05 23:32 - 00000000 ____D C:\Users\Homr\AppData\Local\{B9388D96-626C-41E9-949E-5028E90FC1F9}
2013-07-04 22:14 - 2013-06-28 14:16 - 00000000 ____D C:\Users\Homr\Downloads\Baba
2013-07-04 18:45 - 2009-12-06 02:52 - 00000000 ____D C:\Program Files (x86)\CCleaner
2013-07-04 17:07 - 2013-07-04 17:06 - 00000000 ____D C:\Users\Homr\AppData\Local\{7134131A-DEA3-4DBA-9809-A1CA16A05909}
2013-07-03 23:15 - 2013-07-03 23:15 - 00000000 ____D C:\Users\Homr\AppData\Local\{7CE7C9E1-3A03-4D38-9684-9AD85D8579AA}
2013-07-02 22:38 - 2009-07-14 19:58 - 00655784 ____A C:\Windows\System32\perfh007.dat
2013-07-02 22:38 - 2009-07-14 19:58 - 00130324 ____A C:\Windows\System32\perfc007.dat
2013-07-02 22:38 - 2009-07-14 07:13 - 01501500 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-02 22:30 - 2013-07-02 22:30 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-07-02 21:43 - 2013-07-02 21:43 - 00000000 ____D C:\Users\Homr\AppData\Local\{1A07136F-F8DF-42C6-8AFF-643ACA35C714}
2013-07-02 21:40 - 2013-07-02 21:40 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-02 01:34 - 2009-12-12 15:37 - 00000000 ____D C:\Users\Homr\AppData\Roaming\vlc
2013-07-01 22:54 - 2009-12-05 18:57 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-01 22:53 - 2011-08-07 20:44 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-07-01 22:53 - 2011-08-07 20:43 - 00000000 ____D C:\Users\Homr\AppData\Local\Downloaded Installations
2013-07-01 22:34 - 2013-07-01 22:34 - 00000000 ____D C:\Users\Homr\AppData\Local\{8002885C-55D3-4AE5-B643-B222B7D9677A}
2013-07-01 01:55 - 2013-07-01 01:54 - 00000000 ____D C:\Users\Homr\AppData\Local\{DE0D3F5B-557B-4F93-845F-752268B93984}
2013-06-30 15:14 - 2010-03-18 20:15 - 00000000 ____D C:\Users\Homr\AppData\Local\Paint.NET
2013-06-30 13:54 - 2013-06-30 13:53 - 00000000 ____D C:\Users\Homr\AppData\Local\{3CB0AD68-2FC5-484F-B6C8-72F23EF1FFE5}
2013-06-29 15:19 - 2013-06-29 15:18 - 00000000 ____D C:\Users\Homr\AppData\Local\{4477E66F-A7E4-4FA0-915D-517B54E04526}
2013-06-29 01:57 - 2013-06-29 01:57 - 00000000 ____D C:\Users\Homr\AppData\Local\{42ABEA26-89FB-4A47-A39A-CFBE43DFD14A}
2013-06-29 00:01 - 2013-06-28 14:06 - 00001195 ____A C:\Users\Homr\Desktop\Downloads - Verknüpfung.lnk
2013-06-28 13:56 - 2013-06-28 13:56 - 00000000 ____D C:\Users\Homr\AppData\Local\{B1A21FF3-47FC-4FBC-B16B-1A2F0FB94643}
2013-06-28 01:55 - 2013-06-28 01:55 - 00000000 ____D C:\Users\Homr\AppData\Local\{DB9868CF-6B9F-41B9-8606-055FA08B9537}
2013-06-27 12:07 - 2013-06-27 12:06 - 00000000 ____D C:\Users\Homr\AppData\Local\{B4356343-671D-47FB-86FC-584F1187B309}
2013-06-27 11:36 - 2013-05-07 17:32 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-26 23:59 - 2009-07-14 20:18 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-06-26 23:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-06-26 23:05 - 2013-06-26 23:05 - 00000000 ____D C:\Users\Homr\AppData\Local\{4543B8AB-8962-4C38-BE34-01EF6E6C3510}
2013-06-26 20:49 - 2013-06-26 20:49 - 00000000 ____D C:\Users\Homr\AppData\Local\{2346E12C-79F3-4329-88E8-F994CDAD8DC7}
2013-06-25 15:43 - 2013-06-25 15:43 - 00000000 ____D C:\Users\Homr\AppData\Local\{E5842748-BBAA-44E6-91C6-CDAAB5D04011}
2013-06-24 21:18 - 2013-06-24 21:18 - 00000000 ____D C:\Users\Homr\AppData\Local\{ACF7323A-DD7E-47E8-B83A-DFE80BB1BAB7}
2013-06-23 22:21 - 2013-06-23 22:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{2A7BD580-C2E2-466A-8EDC-6C634ACB3EC1}
2013-06-22 20:06 - 2013-06-22 20:05 - 00000000 ____D C:\Users\Homr\AppData\Local\{6426A5EF-D164-4379-BD84-973F06DC4FD0}
2013-06-21 19:21 - 2013-06-21 19:21 - 00000000 ____D C:\Users\Homr\AppData\Local\{A8501C1C-96D5-4118-97D6-C7BCDCB2ED65}
2013-06-21 13:19 - 2009-07-14 07:08 - 00032632 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-21 01:46 - 2013-06-21 01:46 - 00000000 ____D C:\Program Files (x86)\RealNetworks
2013-06-21 01:45 - 2013-01-14 00:12 - 00348160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2013-06-21 01:45 - 2013-01-14 00:12 - 00272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2013-06-21 01:45 - 2013-01-14 00:12 - 00201872 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2013-06-21 01:45 - 2013-01-14 00:12 - 00006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2013-06-21 01:45 - 2013-01-14 00:12 - 00005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2013-06-21 01:45 - 2012-08-02 00:58 - 00000000 ____D C:\Users\Homr\AppData\Roaming\RealNetworks
2013-06-21 01:45 - 2010-05-11 00:56 - 00000000 ____D C:\Program Files (x86)\Real
2013-06-21 01:44 - 2013-06-21 01:44 - 00000000 ____D C:\Users\Homr\AppData\Local\{A3991821-927F-4236-9E9F-6E22CF782C8D}
2013-06-19 23:13 - 2013-06-19 23:13 - 00000000 ____D C:\Users\Homr\AppData\Local\{2D86B2E6-B25B-456E-BD94-E1E4DA969AEC}
2013-06-18 18:10 - 2013-06-18 18:09 - 00000000 ____D C:\Users\Homr\AppData\Local\{128C7319-81C7-48B1-A96B-A225CAAF8E7C}
2013-06-17 21:20 - 2013-06-17 21:19 - 00000000 ____D C:\Users\Homr\AppData\Local\{36D9DFAE-62C7-42B8-BB85-AD708CE5EE48}
2013-06-17 21:13 - 2012-06-22 00:56 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-17 01:30 - 2012-06-22 00:56 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-17 01:30 - 2012-06-22 00:56 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-17 00:56 - 2013-06-17 00:55 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-06-17 00:55 - 2013-06-17 00:55 - 00000000 ____D C:\ProgramData\Apple Computer
2013-06-17 00:33 - 2013-06-17 00:33 - 00000000 ____D C:\Users\Homr\AppData\Local\{E3F791CB-F17B-4C51-9EEA-FF85EF0B769E}
2013-06-15 20:01 - 2013-06-15 20:01 - 00000000 ____D C:\Users\Homr\AppData\Local\{F98228A6-CE3B-4FA2-B8A2-58E41881A69A}
2013-06-15 01:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-14 19:07 - 2013-06-14 19:06 - 00000000 ____D C:\Users\Homr\AppData\Local\{F490C379-00FD-4E10-B1A4-95E3A2EF90D0}
2013-06-13 23:55 - 2013-06-13 23:54 - 00000000 ____D C:\Users\Homr\AppData\Local\{53AA935E-D9E1-433B-914F-4CFB891CA452}
2013-06-13 03:39 - 2009-12-17 01:59 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-06-13 02:49 - 2013-06-13 02:49 - 00000000 ___HD C:\Windows\System32\CanonIJ Uninstaller Information
2013-06-13 02:49 - 2013-06-13 02:49 - 00000000 ___HD C:\Program Files\CanonBJ
2013-06-13 02:40 - 2009-12-21 03:31 - 00000000 ___HD C:\ProgramData\CanonIJScan
2013-06-13 02:40 - 2009-12-21 03:31 - 00000000 ____D C:\Users\Homr\AppData\Roaming\Canon
2013-06-13 02:19 - 2009-12-07 22:08 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-13 01:04 - 2013-04-27 01:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-13 01:04 - 2013-04-27 01:23 - 00000000 ____D C:\ProgramData\Skype
2013-06-13 00:50 - 2013-06-13 00:50 - 00000000 ____D C:\Users\Homr\AppData\Local\{64837BFD-647F-4293-88B8-8B4A78CC4C11}
2013-06-11 22:37 - 2009-12-12 17:15 - 00000000 ____D C:\Program Files (x86)\Canon
2013-06-11 22:27 - 2013-06-11 22:27 - 00000000 ____D C:\Users\Homr\AppData\Local\{C01A33BA-662C-4E37-A4E6-1EAD3602544A}
2013-06-10 16:15 - 2013-06-10 16:14 - 00000000 ____D C:\Users\Homr\AppData\Local\{C529B8E2-2B74-471B-87AE-BDAB4363E006}
2013-06-09 14:03 - 2013-06-09 14:03 - 00000000 ____D C:\Users\Homr\AppData\Local\{08D6A61B-596D-43E2-8784-B82E63BF5B37}
2013-06-09 01:46 - 2009-12-11 04:29 - 00000000 ____D C:\Users\Homr\AppData\Local\Adobe
2013-06-09 01:26 - 2013-06-09 01:26 - 00000000 ____D C:\Users\Homr\AppData\Local\{21D2A5F8-C510-4207-889F-6D5526DD7AA6}
2013-06-08 00:47 - 2013-06-08 00:47 - 00000000 ____D C:\Users\Homr\AppData\Local\{5AC01B53-6271-462F-A03C-98629BFEA2F6}
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-04 01:45
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- ---
--- --- ---
--- --- ---
Das ist Addition.txtFRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-07-2013
Ran by Homr at 2013-07-08 15:27:50
Running from C:\Users\Homr\AppData\Local\Temp\Temporary Internet Files\Content.IE5\1XVONX6A
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
Update for Microsoft Office 2007 (KB2508958) (x32)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe AIR (x32 Version: 3.5.0.1060)
Adobe Bridge 1.0 (x32 Version: 001.000.001)
Adobe Common File Installer (x32 Version: 1.00.001)
Adobe Creative Suite 2 (x32)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Help Center 1.0 (x32 Version: 1.0.1)
Adobe Illustrator CS2 (x32 Version: 12.000.000)
Adobe InDesign CS2 (x32 Version: 004.000.000)
Adobe Photoshop CS2 (x32 Version: 9.0)
Adobe Reader X (10.1.7) - Deutsch (x32 Version: 10.1.7)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1)
Adobe SVG Viewer 3.0 (x32 Version: 3.0)
Adobe Version Cue CS2 (x32 Version: 2.0)
Advertising Center (x32 Version: 0.0.0.1)
AllDup 3.4.12 (x32 Version: 3.4.12)
Apple Application Support (x32 Version: 2.3.4)
Apple Software Update (x32 Version: 2.1.3.127)
Ashampoo Photo Optimizer 4 v.4.0.3 (x32 Version: 4.0.3)
ATI AVIVO64 Codecs (Version: 10.10.0.40918)
ATI Catalyst Install Manager (Version: 3.0.745.0)
ATI Problem Report Wizard (Version: 3.0.745.0)
Auslogics Disk Defrag (x32 Version: version 3.1)
Avidemux 2.6 (32-bit) (x32 Version: 2.6.0.8179)
Avira Free Antivirus (x32 Version: 13.0.0.3737)
AVS Screen Capture version 1.1.2 (x32)
AVS Video Editor 5 (x32)
AVS Video Recorder 2.4 (x32)
AVS Video ReMaker 3.1.2.102 (x32)
AVS4YOU Software Navigator 1.4 (x32)
BEETmobile (x32 Version: 1.0.16.0)
Bluesoleil2.7.0.13 VoIP Release 071227 (x32 Version: 2.7.0.13 VoIP Release 071227)
Boilsoft Video Splitter 5.21 (x32)
CameraHelperMsi (x32 Version: 13.31.1038.0)
Canon MP550 series Benutzerregistrierung (x32)
Canon MP550 series MP Drivers
Canon Utilities Solution Menu (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Graphics Light (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Graphics Previews Common (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center HydraVision Full (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center InstallProxy (x32 Version: 2009.0918.2132.36825)
Catalyst Control Center Localization All (x32 Version: 2009.0918.2132.36825)
CCC Help Chinese Standard (x32 Version: 2009.0918.2131.36825)
CCC Help Chinese Traditional (x32 Version: 2009.0918.2131.36825)
CCC Help Czech (x32 Version: 2009.0918.2131.36825)
CCC Help Danish (x32 Version: 2009.0918.2131.36825)
CCC Help Dutch (x32 Version: 2009.0918.2131.36825)
CCC Help English (x32 Version: 2009.0918.2131.36825)
CCC Help Finnish (x32 Version: 2009.0918.2131.36825)
CCC Help French (x32 Version: 2009.0918.2131.36825)
CCC Help German (x32 Version: 2009.0918.2131.36825)
CCC Help Greek (x32 Version: 2009.0918.2131.36825)
CCC Help Hungarian (x32 Version: 2009.0918.2131.36825)
CCC Help Italian (x32 Version: 2009.0918.2131.36825)
CCC Help Japanese (x32 Version: 2009.0918.2131.36825)
CCC Help Korean (x32 Version: 2009.0918.2131.36825)
CCC Help Norwegian (x32 Version: 2009.0918.2131.36825)
CCC Help Polish (x32 Version: 2009.0918.2131.36825)
CCC Help Portuguese (x32 Version: 2009.0918.2131.36825)
CCC Help Russian (x32 Version: 2009.0918.2131.36825)
CCC Help Spanish (x32 Version: 2009.0918.2131.36825)
CCC Help Swedish (x32 Version: 2009.0918.2131.36825)
CCC Help Thai (x32 Version: 2009.0918.2131.36825)
CCC Help Turkish (x32 Version: 2009.0918.2131.36825)
ccc-core-static (x32 Version: 2009.0918.2132.36825)
ccc-utility64 (Version: 2009.0918.2132.36825)
CCleaner (Version: 4.03)
D3DX10 (x32 Version: 15.4.2368.0902)
Defraggler (Version: 1.17)
Die Sims™ 3 (x32 Version: 1.17.60)
DivX Plus DirectShow Filters (x32)
DVDFab 7.0.7.0 (08/06/2010) (x32)
EA Installer (x32 Version: 2.3.0.74)
erLT (x32 Version: 1.20.138.34)
Exact Audio Copy 0.99pb5 (x32 Version: 0.99pb5)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Falk Navi-Manager (x32 Version: 2.1.0.0)
Falk Navi-Manager (x32 Version: 2.10.0)
Falk Navi-Manager (x32 Version: 2.2.2)
Falk Navi-Manager (x32 Version: 2.5.0)
Falk Navi-Manager (x32 Version: 2.7.0)
FM-Soundeditor (HKCU Version: 1.0.0.14)
Free FLV Converter V 7.5.0 (x32 Version: 7.5.0.0)
FUSSBALL MANAGER 11 (x32 Version: 1.0.0.2)
HydraVision (x32 Version: 4.2.114.0)
ImagXpress (x32 Version: 7.0.74.0)
Java 7 Update 15 (64-bit) (Version: 7.0.150)
Java 7 Update 21 (x32 Version: 7.0.210)
Java Auto Updater (x32 Version: 2.1.9.5)
Java SE Development Kit 7 Update 5 (64-bit) (Version: 1.7.0.50)
Java SE Development Kit 7 Update 7 (64-bit) (Version: 1.7.0.70)
Java SE Development Kit 7 Update 9 (64-bit) (Version: 1.7.0.90)
JavaFX 2.1.1 (64-bit) (Version: 2.1.1)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JavaFX 2.1.1 SDK (64-bit) (Version: 2.1.1)
JMicron JMB36X Driver (x32 Version: 1.00.0000)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
KeyMan V4.0 Build 5 (x32 Version: 4.0.0.5)
K-Lite Codec Pack 9.3.0 (Full) (x32 Version: 9.3.0)
Logitech Vid HD (x32 Version: 7.2 (7240))
Logitech Webcam Software (x32 Version: 2.0)
LogMeIn Hamachi (x32 Version: 2.1.0.374)
LWS Facebook (x32 Version: 13.31.1038.0)
LWS Gallery (x32 Version: 13.31.1038.0)
LWS Help_main (x32 Version: 13.31.1044.0)
LWS Launcher (x32 Version: 13.31.1038.0)
LWS Motion Detection (x32 Version: 13.30.1395.0)
LWS Pictures And Video (x32 Version: 13.31.1038.0)
LWS Twitter (x32 Version: 13.30.1346.0)
LWS Video Mask Maker (x32 Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (x32 Version: 13.31.1038.0)
LWS WLM Plugin (x32 Version: 1.30.1201.0)
LWS YouTube Plugin (x32 Version: 13.31.1038.0)
Menu Templates - Starter Kit (x32 Version: 9.4.1.0)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger Companion (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Move Media Player (HKCU)
Movie Templates - Starter Kit (x32 Version: 9.4.1.0)
MP4 To MP3 Converter V3.0 (x32)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MyFreeCodec (HKCU)
Nero 9 Essentials (x32)
Nero BurnRights (x32 Version: 2.99.6.100)
Nero BurnRights (x32 Version: 3.4.7.100)
Nero ControlCenter (x32 Version: 11.0.15600)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000)
Nero Core Components (x32 Version: 11.0.20200)
Nero CoverDesigner (x32 Version: 4.4.7.100)
Nero CoverDesigner Help (x32 Version: 4.4.2.100)
Nero DiscSpeed (x32 Version: 4.99.5.105)
Nero DiscSpeed (x32 Version: 5.4.7.100)
Nero DriveSpeed (x32 Version: 3.99.5.105)
Nero DriveSpeed (x32 Version: 4.4.7.100)
Nero Express Help (x32 Version: 9.2.2.100)
Nero InfoTool (x32 Version: 5.99.5.105)
Nero InfoTool (x32 Version: 6.4.7.100)
Nero Installer (x32 Version: 2.0.0.1)
Nero Online Upgrade (x32 Version: 1.3.0.0)
Nero Prerequisite Installer 2.0 (x32 Version: 12.0.01000)
Nero Rescue Agent (x32 Version: 2.4.4.100)
Nero RescueAgent Help (x32 Version: 1.99.0.1)
Nero ShowTime (x32 Version: 4.99.0.0)
Nero ShowTime (x32 Version: 5.4.12.100)
Nero SoundTrax (x32 Version: 12.0.00500)
Nero SoundTrax (x32 Version: 12.0.4000)
Nero SoundTrax Help (CHM) (x32 Version: 12.0.5000)
Nero StartSmart (x32 Version: 9.4.9.100)
Nero StartSmart Help (x32 Version: 9.4.8.100)
Nero Update (x32 Version: 11.0.11800.31.0)
Nero Vision (x32 Version: 0.0.0.1)
Nero Vision (x32 Version: 6.4.7.100)
Nero WaveEditor (x32 Version: 12.0.01100)
Nero WaveEditor (x32 Version: 12.0.8000)
Nero WaveEditor Help (CHM) (x32 Version: 12.0.7000)
NeroExpress (x32 Version: 9.4.9.100)
neroxml (x32 Version: 1.0.0)
Octoshape Streaming Services (HKCU)
Paint.NET v3.5.10 (Version: 3.60.0)
PC Connectivity Solution (x32 Version: 11.5.13.0)
PDFCreator (x32 Version: 0.9.9)
Prerequisite installer (x32 Version: 12.0.0003)
PS3 Media Server (x32 Version: 1.52.1)
QuickStores-Toolbar 1.1.0 (x32 Version: 1.1.0)
QuickTime (x32 Version: 7.74.80.86)
RealDownloader (x32 Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)
RealPlayer (x32 Version: 16.0.2)
Realtek 8136 8168 8169 Ethernet Driver (x32 Version: 1.00.0005)
RealUpgrade 1.1 (x32 Version: 1.1.0)
Samsung AllShare (x32 Version: 2.1.0.11123_8)
Samsung Kies (x32 Version: 2.1.1.11124_17)
Samsung Story Album Viewer (x32 Version: 1.0.0.13052_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.24.0)
Samsung_MonSetup (x32 Version: 1.00.0000)
Search-Results Toolbar (x32 Version: 1.0.0.12)
Secunia PSI (3.0.0.2004) (x32 Version: 3.0.0.2004)
Skype Voice Changer (x32 Version: 2.3.0.0)
Skype™ 6.5 (x32 Version: 6.5.158)
SoftwareClub Audio Converter Extractor Max 1.0.0.0 (x32)
SopCast 3.5.0 (x32 Version: 3.5.0)
Suite Specific (x32 Version: 2.0.0)
SUPERAntiSpyware (Version: 5.6.1020)
Unity Web Player (HKCU Version: 2.6.1f3_31223)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01)
VLC media player 2.0.6 (x32 Version: 2.0.6)
Winamp (x32 Version: 5.63 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live OneCare safety scanner (x32 Version: 1.0.0.0)
Windows Live OneCare safety scanner (x32)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Mobile-Gerätecenter (Version: 6.1.6965.0)
WinRAR
Wise Care 365 version 2.03 (x32 Version: 2.03)
==================== Restore Points =========================
04-07-2013 20:15:15 Created by Wise Care 365
05-07-2013 21:51:54 Installed Java 7 Update 25 (64-bit)
==================== Hosts content: ==========================
2009-07-14 04:34 - 2010-11-11 01:55 - 00000825 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {01B351F3-06E8-4B79-A284-683A89D592E1} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {10489C6D-EB8A-49DE-8D9A-4CFC580A66B9} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {1671476B-DB40-4CBB-AC52-EA7241C97274} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000Core => C:\Users\Homr\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {1D75A380-9214-4552-BA3D-76B9F4BB8EF3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {226E8F92-B23C-4003-B612-286E6BB66E0E} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {3805FFB8-088F-4E68-B05B-E6EAED99D762} - System32\Tasks\BEETmobile => C:\Program Files (x86)\BEETmobile\BEETmobile.exe [2012-10-31] (BEETmobile)
Task: {3A4A79D1-7A6F-4CE9-9841-7ED18BB80B16} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2012-09-24] (WiseCleaner.com)
Task: {3A517BEA-0DAA-4674-8FA1-0636035A4476} - System32\Tasks\SUPERAntiSpyware Scheduled Task 081ac3bf-9988-4341-b2e5-1f11f6ee6fb2 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-05-08] (SUPERAdBlocker.com)
Task: {594A5D3C-AE23-42FB-88E4-1E7BC64A60F6} - System32\Tasks\SUPERAntiSpyware Scheduled Task 49d65f3d-4d34-4ac0-8dad-d64b0dc587c3 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-05-08] (SUPERAdBlocker.com)
Task: {64B947C7-C026-4584-825C-4360547EC044} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {65613E74-BA01-40DB-A68A-10FE8FAD6F1A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd)
Task: {6C629775-3A7C-4674-9A9F-9F3902A26F5D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)
Task: {6E4FC6FA-ED36-44CD-B811-46BD4D81B64E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000UA => C:\Users\Homr\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {748E0438-C1F2-48BC-958E-5B4C2315CDAE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe No File
Task: {A285E8AD-EF08-4CB2-908E-7BBE2C93ADA6} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {BCF23B3F-5A9D-437A-AEB7-32153148CF69} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {C192B5E1-02CA-4E91-AF14-AFBF6856FCF7} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {DFC9C927-AD22-42BB-A32D-E87F955C60B1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {E709F8AF-3878-46BD-998D-8BB8A8D0764B} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {E771C167-F23B-464E-A4AE-55A8300B1C83} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3139214333-3526821646-799605520-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {F4AD6A1B-754A-4BDE-B695-CB699A3295B0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-17] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000Core.job => C:\Users\Homr\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3139214333-3526821646-799605520-1000UA.job => C:\Users\Homr\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 081ac3bf-9988-4341-b2e5-1f11f6ee6fb2.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 49d65f3d-4d34-4ac0-8dad-d64b0dc587c3.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/08/2013 03:22:27 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: AllShareDMS.exe, Version: 2.1.0.0, Zeitstempel: 0x4eeae3c3
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.7601.17744, Zeitstempel: 0x4eeaf722
Ausnahmecode: 0x40000015
Fehleroffset: 0x0006680c
ID des fehlerhaften Prozesses: 0x17f0
Startzeit der fehlerhaften Anwendung: 0xAllShareDMS.exe0
Pfad der fehlerhaften Anwendung: AllShareDMS.exe1
Pfad des fehlerhaften Moduls: AllShareDMS.exe2
Berichtskennung: AllShareDMS.exe3
Error: (07/08/2013 02:19:44 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: AllShareDMS.exe, Version: 2.1.0.0, Zeitstempel: 0x4eeae3c3
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.7601.17744, Zeitstempel: 0x4eeaf722
Ausnahmecode: 0x40000015
Fehleroffset: 0x0006680c
ID des fehlerhaften Prozesses: 0x1148
Startzeit der fehlerhaften Anwendung: 0xAllShareDMS.exe0
Pfad der fehlerhaften Anwendung: AllShareDMS.exe1
Pfad des fehlerhaften Moduls: AllShareDMS.exe2
Berichtskennung: AllShareDMS.exe3
Error: (07/08/2013 01:25:10 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_inetcpl.cpl, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc9e0
Name des fehlerhaften Moduls: IEBHO.dll, Version: 1.0.0.1, Zeitstempel: 0x511cb5de
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000877e8
ID des fehlerhaften Prozesses: 0x14f4
Startzeit der fehlerhaften Anwendung: 0xrundll32.exe_inetcpl.cpl0
Pfad der fehlerhaften Anwendung: rundll32.exe_inetcpl.cpl1
Pfad des fehlerhaften Moduls: rundll32.exe_inetcpl.cpl2
Berichtskennung: rundll32.exe_inetcpl.cpl3
Error: (07/08/2013 01:25:10 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_inetcpl.cpl, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc9e0
Name des fehlerhaften Moduls: IEBHO.dll, Version: 1.0.0.1, Zeitstempel: 0x511cb5de
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000877e8
ID des fehlerhaften Prozesses: 0x1488
Startzeit der fehlerhaften Anwendung: 0xrundll32.exe_inetcpl.cpl0
Pfad der fehlerhaften Anwendung: rundll32.exe_inetcpl.cpl1
Pfad des fehlerhaften Moduls: rundll32.exe_inetcpl.cpl2
Berichtskennung: rundll32.exe_inetcpl.cpl3
Error: (07/08/2013 00:14:09 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16490, Zeitstempel: 0x51955cca
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x104489cc
ID des fehlerhaften Prozesses: 0xfdc
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (07/08/2013 00:01:01 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: AllShareDMS.exe, Version: 2.1.0.0, Zeitstempel: 0x4eeae3c3
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.7601.17744, Zeitstempel: 0x4eeaf722
Ausnahmecode: 0x40000015
Fehleroffset: 0x0006680c
ID des fehlerhaften Prozesses: 0x1464
Startzeit der fehlerhaften Anwendung: 0xAllShareDMS.exe0
Pfad der fehlerhaften Anwendung: AllShareDMS.exe1
Pfad des fehlerhaften Moduls: AllShareDMS.exe2
Berichtskennung: AllShareDMS.exe3
Error: (07/07/2013 11:39:50 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16490, Zeitstempel: 0x51959d18
Name des fehlerhaften Moduls: IEBHO.dll, Version: 1.0.0.1, Zeitstempel: 0x511cb5de
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000877e8
ID des fehlerhaften Prozesses: 0x2fac
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (07/07/2013 09:46:15 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16490, Zeitstempel: 0x51959d18
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725, Zeitstempel: 0x4ec4aa8e
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000c40f2
ID des fehlerhaften Prozesses: 0x19e0
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (07/07/2013 08:50:24 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16490, Zeitstempel: 0x51959d18
Name des fehlerhaften Moduls: IEBHO.dll, Version: 1.0.0.1, Zeitstempel: 0x511cb5de
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000877e8
ID des fehlerhaften Prozesses: 0x1a00
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (07/07/2013 08:45:45 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: AllShareDMS.exe, Version: 2.1.0.0, Zeitstempel: 0x4eeae3c3
Name des fehlerhaften Moduls: msvcrt.dll, Version: 7.0.7601.17744, Zeitstempel: 0x4eeaf722
Ausnahmecode: 0x40000015
Fehleroffset: 0x0006680c
ID des fehlerhaften Prozesses: 0x910
Startzeit der fehlerhaften Anwendung: 0xAllShareDMS.exe0
Pfad der fehlerhaften Anwendung: AllShareDMS.exe1
Pfad des fehlerhaften Moduls: AllShareDMS.exe2
Berichtskennung: AllShareDMS.exe3
System errors:
=============
Error: (07/08/2013 03:22:37 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Samsung AllShare PC" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (07/08/2013 03:22:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/08/2013 03:22:35 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Erkennung interaktiver Dienste erreicht.
Error: (07/08/2013 03:20:12 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Cherry Device Interface" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/08/2013 03:20:12 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Cherry Device Interface erreicht.
Error: (07/08/2013 03:20:12 PM) (Source: DCOM) (User: )
Description: 1053Cherry Device Interface-Service{1D9B2284-447C-11D5-BE63-00047615A6B3}
Error: (07/08/2013 03:19:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Wise Boot Assistant" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/08/2013 03:19:35 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Wise Boot Assistant erreicht.
Error: (07/08/2013 03:19:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "System Store" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/08/2013 03:19:35 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst System Store erreicht.
Microsoft Office Sessions:
=========================
Error: (12/29/2011 00:07:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/29/2011 00:07:27 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 30 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/18/2011 11:48:44 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/18/2011 04:42:10 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 03:26:17 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 03:12:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 05:04:44 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 05:04:42 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 04:24:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 04:23:42 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-02-16 17:29:21.714
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:21.632
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:18.815
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:18.737
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:14.134
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:14.053
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:11.541
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:11.463
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:08.736
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-16 17:29:08.657
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 29%
Total physical RAM: 8183.05 MB
Available physical RAM: 5780.05 MB
Total Pagefile: 16364.29 MB
Available Pagefile: 13399.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:146.39 GB) (Free:74.15 GB) NTFS (Disk=0 Partition=2)
Drive d: () (Fixed) (Total:625 GB) (Free:444 GB) NTFS (Disk=0 Partition=3)
Drive e: () (Fixed) (Total:625.78 GB) (Free:625.67 GB) NTFS (Disk=0 Partition=4)
Drive f: (Sims3) (CDROM) (Total:5.56 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 263E9D55)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=146 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=625 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=626 GB) - (Type=07 NTFS)
==================== End Of Log ============================
--- --- ---
Des Weiteren habe ich SuperAntiSpyware die Trojaner gefischt und in die Qurantäne gesteckt.
Das ist der Log bei der ersten Suche von SuperAntiSpyware:
SUPERAntiSpyware Scan Log
SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!
Generated 07/08/2013 at 02:10 AM
Application Version : 5.6.1020
Core Rules Database Version : 10592
Trace Rules Database Version: 8404
Scan type : Complete Scan
Total Scan Time : 01:03:57
Operating System Information
Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 832
Memory threats detected : 0
Registry items scanned : 74096
Registry threats detected : 0
File items scanned : 77233
File threats detected : 29
Adware.Tracking Cookie
C:\Users\Homr\AppData\Local\Temp\Cookies\VIYBYUOT.txt [ /bs.serving-sys.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\FYGL13MY.txt [ /ad3.adfarm1.adition.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\BU3QHTRD.txt [ /ad4.adfarm1.adition.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\QX3KPB0A.txt [ /mediaplex.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\3ZV7Z2WE.txt [ /invitemedia.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\OYXZULW8.txt [ /webmasterplan.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\WL501J0D.txt [ /track.adform.net ]
C:\Users\Homr\AppData\Local\Temp\Cookies\NO28NRK4.txt [ /zanox.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\KXE1R857.txt [ /ad2.adfarm1.adition.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\57S7ZT0N.txt [ /xiti.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\6ZWE51X8.txt [ /apmebf.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\2FRZXTRB.txt [ /adfarm1.adition.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\JRZBTVBE.txt [ /tradedoubler.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\JE7NK07C.txt [ /vinsight.de ]
C:\Users\Homr\AppData\Local\Temp\Cookies\PVEX7LHI.txt [ /adx.chip.de ]
C:\Users\Homr\AppData\Local\Temp\Cookies\CMCWLXWH.txt [ /smartadserver.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\9OEGMA4T.txt [ /ww251.smartadserver.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\1CUOUMVA.txt [ /doubleclick.net ]
C:\Users\Homr\AppData\Local\Temp\Cookies\VI0SCJ03.txt [ /serving-sys.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\6VN042EE.txt [ /adform.net ]
C:\Users\Homr\AppData\Local\Temp\Cookies\ZSC588GL.txt [ /banner.lesarion.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\C81YG2SM.txt [ /ad.zanox.com ]
C:\Users\Homr\AppData\Local\Temp\Cookies\QR9VSNAK.txt [ /revsci.net ]
.doubleclick.net [ C:\USERS\HOMR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\HOMR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\HOMR\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\SYSTEM@INTERCLICK[1].TXT [ /INTERCLICK ]
C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\SYSTEM@REVSCI[1].TXT [ /REVSCI ]
Trojan.SVCHost/Fake
C:\WINDOWS\SYSWOW64\WINDIR\SVCHOST.EXE
Bei der 2. und 3. Suche stand da "clean"
Hier ist der Log dazu:
SUPERAntiSpyware Scan Log
SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!
Generated 07/08/2013 at 08:01 AM
Application Version : 5.6.1020
Core Rules Database Version : 10592
Trace Rules Database Version: 8404
Scan type : Complete Scan
Total Scan Time : 00:48:33
Operating System Information
Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 767
Memory threats detected : 0
Registry items scanned : 74127
Registry threats detected : 0
File items scanned : 77234
File threats detected : 0