NeybisH

Objekt konnten nicht entfern werden!

Recommended Posts

Hallo Zusammen,

 

Ich hatte da eine Problem unzwar ich habe mein Pc mit der Programm Emisoft Anti- Malware untersucht

und er hat was gefunden die er aber nicht richtig löschen kann... 

 

Ist Fenster auf getaucht "Die folgenden Objekte konnten nicht entfernt werden:

in dem sinne weren das hier:

 

Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{830B56CB-FD22-44AA-9887-7898F4F4158D}\1.0
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{830B56CB-FD22-44AA-9887-7898F4F4158D}\1.0\0
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}\1.0
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\TYPELIB\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A}\1.0\0
 
und dann wurde hier hier verlinkt.
 
Ich freue mich auf die schnelle Antwort und lösung des Problems.
 
mfg
NeybisH
 

 

 

Share this post


Link to post
Share on other sites

Hi und Herzlich Willkommen beim Emsisoft Support Forum!

Systemscan mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: %5BB%5DFRST 32-Bit[/b] %5BB%5D|[/b] %5BB%5DFRST 64-Bit[/b]

(Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)

  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Scan.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Beide Logfiles bitte anhängen.

Share this post


Link to post
Share on other sites
Es tut mir leid das ich nicht die richtige Punkt gefunden hab zum log. files anzuhängen.
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2013 02
Ran by NeybisH (administrator) on 26-06-2013 16:23:00
Running from C:\Users\NeybisH\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Pokki) C:\Users\NeybisH\AppData\Local\Pokki\Engine\pokki.exe
(Spotify Ltd) C:\Users\NeybisH\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
() C:\Program Files (x86)\Drakonia Configurator\hid.exe
(Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Pokki) C:\Users\NeybisH\AppData\Local\Pokki\Engine\pokki.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Pokki) C:\Users\NeybisH\AppData\Local\Pokki\Engine\pokki.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [472992 2013-03-21] (Adobe Systems Incorporated)
HKCU\...\Run: [GoogleChromeAutoLaunch_1EFFE298A81CB0277C4AD7C6CA27C809] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window [846288 2013-06-19] (Google Inc.)
HKCU\...\Run: [Facebook Update] "C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-04-29] (Facebook Inc.)
HKCU\...\Run: [spotify Web Helper] "C:\Users\NeybisH\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-05-31] (Spotify Ltd)
HKCU\...\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband [x]
MountPoints2: {67e82bd2-91cd-11e2-91bf-bc5ff41de0d2} - H:\Startme.exe
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [356376 2013-03-28] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [GamingMouse] C:\Program Files (x86)\Drakonia Configurator\hid.exe [246784 2012-06-07] ()
HKLM-x32\...\Run: [GamingKeyboard] "C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe" [1803264 2012-06-07] (Game Inc.)
HKLM-x32\...\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [3830224 2013-05-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [emsisoft anti-malware] "c:\program files (x86)\emsisoft anti-malware\a2guard.exe" /d=60 [2916264 2013-05-30] (Emsisoft GmbH)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152392 2013-05-31] (Apple Inc.)
HKU\UpdatusUser\...\Run: [steam] "C:\Program Files (x86)\Steam\steam.exe" -silent [1641896 2013-06-07] (Valve Corporation)
HKU\UpdatusUser\...\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart [3456080 2013-06-04] (Electronic Arts)
HKU\UpdatusUser\...\Run: [spotify Web Helper] "C:\Users\NeybisH\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-05-31] (Spotify Ltd)
HKU\UpdatusUser\...\Run: [spotify] "C:\Users\NeybisH\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart [4657152 2013-05-31] (Spotify Ltd)
HKU\UpdatusUser\...\Run: [GoogleChromeAutoLaunch_1EFFE298A81CB0277C4AD7C6CA27C809] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window [846288 2013-06-19] (Google Inc.)
HKU\UpdatusUser\...\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\pokki.exe" [x]
HKU\UpdatusUser\...\Run: [sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background [448736 2013-03-18] (Sony)
HKU\UpdatusUser\...\Run: [Facebook Update] "C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-04-29] (Facebook Inc.)
AppInit_DLLs-x32: c:\progra~3\browse~2\261339~1.144\{c16c1~1\browse~1.dll  [2521040 2013-05-23] ()
BootExecute: autocheck autochk * sdnclean64.exe
 
==================== Internet (Whitelisted) ====================
 
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: localhost:21320
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=42820&tid=3347&st=bs&q=
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
HKLM-x32 SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
HKCU SearchScopes: DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss_din2g&mntrId=54E7BC5FF41DE0D2
SearchScopes: HKCU - {22D39181-A736-4B2A-8266-B95BBCAF7933} URL = http://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = 
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Browser Companion Helper - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll ( )
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: Yontoo - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com)
Handler: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler-x32: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler-x32: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler-x32: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 83.169.185.225 83.169.185.161
 
FireFox:
========
FF ProfilePath: C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default
FF user.js: detected! => C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\user.js
FF NewTab: hxxp://www.delta-search.com/?affID=119816&tt=gc_&babsrc=NT_ss&mntrId=54E7BC5FF41DE0D2
FF SelectedSearchEngine: Delta Search
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: Browser Companion Helper - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: Delta Toolbar - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: artur.dubovoy - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: client - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: hdvc - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: leethax - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\[email protected]
FF Extension: No Name - C:\Users\NeybisH\AppData\Roaming\Mozilla\Firefox\Profiles\jvqvlu3g.default\Extensions\WTB_GLOBAL.sqlite
 
Chrome: 
=======
CHR Extension: (Ask Toolbar) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaanbblidcdbjeikekgeniapdeppcbo\7.15.23.0_0
CHR Extension: (Facebook App for Google Chrome\u2122) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.3.8_0
CHR Extension: (Google Docs) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Movie2kDownloader) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\blaofbhgbmeikidhlkmjhbkbfohpgekf\1.0_0
CHR Extension: (YouTube) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Facebook) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm\1.0.3_0
CHR Extension: (Pool) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb\1.0.4_0
CHR Extension: (Google Search) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (XJZ Survey Remover) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\cphljojhgmnabimjemakjleocdheengh\3.5.0.1_1
CHR Extension: (Kaspersky URL Advisor) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (Delta Toolbar) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (Skype Links) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbmllnadbdnppblcebkkmapkinkdchd\0.3_0
CHR Extension: (Facebook for Chrome) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp\6.2.8_0
CHR Extension: (AdBlock) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (Safe Money) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Content Blocker) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0
CHR Extension: (Ultimate Flash Sonic) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmgmfbijldhdncjcipeocgkgbjhaecfp\1.0_0
CHR Extension: (Virtual Keyboard) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (HDvid Codec) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\1.0_0
CHR Extension: (Best Games) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpmahgcjelhjebfldaibkfdedlhfmeoa\1.5_0
CHR Extension: (Google Maps) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (Facebook Notifications) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo\1.27_0
CHR Extension: (Facebook Lite for Chrome) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\npmllfhdnjcijofddghkhhknagamimip\2.1.5.27030_0
CHR Extension: (Battlefield 3) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pagmklehiaheilihklokljahmoihkjni\1_0
CHR Extension: (GoPhoto.it) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.5_0
CHR Extension: (Outlook.com) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge\1.0.2_0
CHR Extension: (Gmail) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
 
==================== Services (Whitelisted) =================
 
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [2626880 2013-05-30] (Emsisoft GmbH)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376 2013-03-28] (Kaspersky Lab ZAO)
R2 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2827728 2013-05-23] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-04-12] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [296448 2013-05-01] ()
 
==================== Drivers (Whitelisted) ====================
 
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [66320 2012-04-30] (Emsisoft GmbH)
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [66320 2012-04-30] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [44688 2012-04-30] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [44688 2012-04-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R3 GameKB; C:\Windows\System32\drivers\GameKB.sys [27648 2012-05-11] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458584 2012-06-19] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [620128 2013-04-22] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29016 2012-10-25] (Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29528 2012-10-25] (Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-04-22] (Kaspersky Lab ZAO)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2013-06-26 16:22 - 2013-06-26 16:22 - 01931844 ____A (Farbar) C:\Users\NeybisH\Downloads\FRST64.exe
2013-06-26 16:22 - 2013-06-26 16:22 - 00000000 ____D C:\FRST
2013-06-26 03:44 - 2013-06-26 03:44 - 00000000 ____D C:\Users\NeybisH\AppData\Local\libimobiledevice
2013-06-26 03:43 - 2013-03-12 04:49 - 00000000 ____D C:\Users\NeybisH\Desktop\evasi0n-win-1.5.3
2013-06-26 03:42 - 2013-06-26 03:43 - 10458359 ____A C:\Users\NeybisH\Downloads\evasi0n-win-1.5.3-release.zip
2013-06-24 20:10 - 2013-06-24 20:10 - 71999934 ____A C:\Users\NeybisH\Desktop\NeybisH - In sein Blut ( Inspired Fard ) 2013.mp4
2013-06-22 17:20 - 2013-06-22 17:20 - 00001925 ____A C:\Users\NeybisH\Desktop\Symphony.lnk
2013-06-22 13:20 - 2013-06-22 13:20 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Empty Clip Studios
2013-06-22 13:19 - 2013-06-22 13:20 - 00000000 ____D C:\Program Files (x86)\Symphony
2013-06-22 13:19 - 2013-06-22 13:19 - 00000385 ____A C:\Windows\DirectX.log
2013-06-21 22:17 - 2013-06-21 22:17 - 00000892 ____A C:\Users\NeybisH\Desktop\Mass Effect 2.lnk
2013-06-21 13:01 - 2013-06-21 13:01 - 00001070 ____A C:\Users\Public\Desktop\VLC media player.lnk
2013-06-19 17:08 - 2013-06-19 17:09 - 00001260 ____A C:\Users\Public\Desktop\World of Warcraft.lnk
2013-06-19 17:08 - 2013-06-19 17:09 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-06-19 15:42 - 2013-06-19 15:44 - 83293072 ____A (Blizzard Entertainment) C:\Users\NeybisH\Downloads\World-of-Warcraft-Setup-deDE.exe
2013-06-17 02:23 - 2013-06-17 02:23 - 02095387 ____A C:\Users\NeybisH\Desktop\NeybisH in CoD - EMP.mp4
2013-06-15 11:43 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-15 11:43 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-15 11:43 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-15 11:43 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-15 11:43 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-15 11:43 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-15 11:43 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-15 11:43 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-15 11:43 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-15 11:43 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-15 11:43 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-15 11:43 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-13 22:58 - 2013-06-13 22:58 - 00000000 ____D C:\Users\NeybisH\AppData\Local\TenthOfMarch.com
2013-06-13 03:02 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-13 03:02 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-13 03:02 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-13 03:02 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-13 03:02 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-13 03:02 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-13 03:02 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-13 03:02 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-13 03:02 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-13 03:02 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-13 03:02 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-13 03:02 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-13 03:02 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-13 03:02 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-13 03:02 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-13 03:01 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-13 03:01 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-13 03:01 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-13 03:01 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-13 02:30 - 2013-06-13 02:30 - 00000844 ____A C:\Users\NeybisH\Desktop\Neues Textdokument.txt
2013-06-12 04:02 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 04:02 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 04:02 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 04:02 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 04:02 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 04:02 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 04:02 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 04:02 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 04:02 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 04:02 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 04:02 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 04:02 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 04:02 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 04:02 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 04:02 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 04:02 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 04:02 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 04:02 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 04:02 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 09:14 - 2013-06-11 09:14 - 683573051 ____A C:\Windows\MEMORY.DMP
2013-06-11 09:14 - 2013-06-11 09:14 - 00307960 ____A C:\Windows\Minidump\061113-21122-01.dmp
2013-06-11 09:14 - 2013-06-11 09:14 - 00000000 ____D C:\Windows\Minidump
2013-06-10 15:52 - 2013-06-10 15:52 - 365596672 ____A C:\Users\NeybisH\Desktop\Aufnahme-3.camrec
2013-06-09 15:19 - 2013-06-09 15:19 - 96037466 ____A C:\Users\NeybisH\Desktop\Gucci Mane Made By NeybisH.mp4
2013-06-09 14:15 - 2013-06-09 14:16 - 1158651904 ____A C:\Users\NeybisH\Desktop\Aufnahme-2.camrec
2013-06-07 00:08 - 2013-06-07 00:09 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-07 00:08 - 2013-06-07 00:09 - 00000000 ____D C:\Program Files\iTunes
2013-06-07 00:08 - 2013-06-07 00:08 - 00000000 ____D C:\Program Files\iPod
2013-06-07 00:08 - 2013-06-07 00:08 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-06-05 05:46 - 2013-06-26 16:15 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2013-06-05 05:46 - 2013-06-05 05:46 - 00000000 ____D C:\Users\NeybisH\Documents\Anti-Malware
2013-06-05 05:42 - 2013-06-25 20:01 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-06-05 05:42 - 2013-06-05 05:42 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-06-05 05:42 - 2009-01-25 13:14 - 00017272 ____A (Safer Networking Limited) C:\Windows\System32\sdnclean64.exe
2013-06-05 01:16 - 2013-06-05 05:26 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Glarysoft
2013-06-04 05:34 - 2013-06-04 05:34 - 00106032 ____A C:\Users\NeybisH\AppData\Local\GDIPFONTCACHEV1.DAT
2013-06-04 02:37 - 2013-06-26 14:14 - 00001288 ____A C:\Windows\setupact.log
2013-06-04 02:37 - 2013-06-04 02:37 - 00000000 ____A C:\Windows\setuperr.log
2013-06-04 02:36 - 2013-06-24 13:59 - 00007892 ____A C:\Windows\PFRO.log
2013-06-04 02:36 - 2013-06-04 02:36 - 04988272 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Delta
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\BabSolution
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Program Files (x86)\Delta
2013-06-03 22:03 - 2013-06-03 22:03 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Software4u
2013-06-03 22:03 - 2013-06-03 22:03 - 00000000 ____D C:\Users\NeybisH\AppData\Local\IsolatedStorage
2013-06-02 20:39 - 2013-06-02 20:39 - 1126432768 ____A C:\Users\NeybisH\Desktop\Aufnahme-1.camrec
2013-06-02 18:29 - 2013-06-02 18:29 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Xara
2013-05-31 20:37 - 2012-08-21 13:01 - 00033240 ____A (GEAR Software Inc.) C:\Windows\System32\Drivers\GEARAspiWDM.sys
2013-05-31 20:33 - 2013-06-04 03:20 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files\Bonjour
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
 
==================== One Month Modified Files and Folders =======
 
2013-06-26 16:23 - 2009-07-14 05:20 - 00000000 __RHD C:\users\Default
2013-06-26 16:22 - 2013-06-26 16:22 - 01931844 ____A (Farbar) C:\Users\NeybisH\Downloads\FRST64.exe
2013-06-26 16:22 - 2013-06-26 16:22 - 00000000 ____D C:\FRST
2013-06-26 16:22 - 2013-02-06 19:26 - 00001112 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-26 16:15 - 2013-06-05 05:46 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2013-06-26 15:40 - 2013-04-29 18:35 - 00000936 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000UA.job
2013-06-26 15:25 - 2013-02-07 12:01 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-26 15:22 - 2013-02-06 19:26 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-26 14:33 - 2013-03-28 16:07 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-06-26 14:23 - 2009-07-14 06:45 - 00028720 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-26 14:23 - 2009-07-14 06:45 - 00028720 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-26 14:14 - 2013-06-04 02:37 - 00001288 ____A C:\Windows\setupact.log
2013-06-26 14:14 - 2013-02-06 19:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-06-26 14:14 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-26 14:13 - 2013-02-07 00:14 - 00000000 ____A C:\Windows\System32\Drivers\lvuvc.hs
2013-06-26 07:09 - 2013-02-06 20:00 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\TS3Client
2013-06-26 07:09 - 2013-02-06 19:05 - 01473004 ____A C:\Windows\WindowsUpdate.log
2013-06-26 04:16 - 2013-03-18 17:36 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Pokki
2013-06-26 03:44 - 2013-06-26 03:44 - 00000000 ____D C:\Users\NeybisH\AppData\Local\libimobiledevice
2013-06-26 03:43 - 2013-06-26 03:42 - 10458359 ____A C:\Users\NeybisH\Downloads\evasi0n-win-1.5.3-release.zip
2013-06-26 02:48 - 2013-02-06 19:46 - 00000000 ____D C:\Program Files (x86)\Steam
2013-06-26 02:00 - 2013-02-22 01:13 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Adobe
2013-06-25 20:01 - 2013-06-05 05:42 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-06-25 18:40 - 2013-04-29 18:35 - 00000914 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000Core.job
2013-06-24 23:47 - 2013-02-06 23:22 - 00000000 ____D C:\Users\NeybisH\Desktop\D.Musik
2013-06-24 20:10 - 2013-06-24 20:10 - 71999934 ____A C:\Users\NeybisH\Desktop\NeybisH - In sein Blut ( Inspired Fard ) 2013.mp4
2013-06-24 18:50 - 2013-02-06 19:47 - 00000000 ____D C:\Program Files (x86)\Origin
2013-06-24 13:59 - 2013-06-04 02:36 - 00007892 ____A C:\Windows\PFRO.log
2013-06-24 08:18 - 2013-02-06 19:44 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\vlc
2013-06-23 19:33 - 2013-03-13 03:49 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-06-23 19:33 - 2013-03-13 03:48 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-06-23 18:57 - 2013-03-13 03:48 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-06-23 17:30 - 2013-04-29 02:12 - 00000000 ____D C:\Users\NeybisH\AppData\Local\CrashDumps
2013-06-22 20:45 - 2013-02-08 05:06 - 00000000 ____D C:\Users\NeybisH\Documents\Diablo III
2013-06-22 18:14 - 2013-02-06 19:49 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-06-22 17:20 - 2013-06-22 17:20 - 00001925 ____A C:\Users\NeybisH\Desktop\Symphony.lnk
2013-06-22 13:20 - 2013-06-22 13:20 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Empty Clip Studios
2013-06-22 13:20 - 2013-06-22 13:19 - 00000000 ____D C:\Program Files (x86)\Symphony
2013-06-22 13:19 - 2013-06-22 13:19 - 00000385 ____A C:\Windows\DirectX.log
2013-06-21 22:17 - 2013-06-21 22:17 - 00000892 ____A C:\Users\NeybisH\Desktop\Mass Effect 2.lnk
2013-06-21 20:23 - 2013-02-06 19:27 - 00002183 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-06-21 13:01 - 2013-06-21 13:01 - 00001070 ____A C:\Users\Public\Desktop\VLC media player.lnk
2013-06-20 15:17 - 2013-02-06 19:05 - 00000000 ____D C:\users\NeybisH
2013-06-19 17:35 - 2013-02-08 14:49 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Skype
2013-06-19 17:09 - 2013-06-19 17:08 - 00001260 ____A C:\Users\Public\Desktop\World of Warcraft.lnk
2013-06-19 17:09 - 2013-06-19 17:08 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-06-19 15:44 - 2013-06-19 15:42 - 83293072 ____A (Blizzard Entertainment) C:\Users\NeybisH\Downloads\World-of-Warcraft-Setup-deDE.exe
2013-06-18 11:31 - 2012-06-08 12:38 - 00054368 ____A (Kaspersky Lab ZAO) C:\Windows\System32\Drivers\kltdi.sys
2013-06-17 06:43 - 2013-02-10 21:09 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-17 02:23 - 2013-06-17 02:23 - 02095387 ____A C:\Users\NeybisH\Desktop\NeybisH in CoD - EMP.mp4
2013-06-17 01:47 - 2013-02-07 00:58 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Windows Live
2013-06-15 09:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-13 22:58 - 2013-06-13 22:58 - 00000000 ____D C:\Users\NeybisH\AppData\Local\TenthOfMarch.com
2013-06-13 03:39 - 2013-02-06 18:41 - 00000000 ____D C:\Windows\Panther
2013-06-13 03:03 - 2013-05-03 03:58 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-13 02:30 - 2013-06-13 02:30 - 00000844 ____A C:\Users\NeybisH\Desktop\Neues Textdokument.txt
2013-06-12 11:25 - 2013-02-07 12:01 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-12 11:25 - 2013-02-07 12:01 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-11 21:01 - 2013-02-08 03:31 - 00000000 ____D C:\Program Files (x86)\Diablo III
2013-06-11 10:13 - 2013-04-14 06:28 - 00000000 ____D C:\Program Files (x86)\SoftwareUpdater
2013-06-11 10:13 - 2013-02-06 19:47 - 00000000 ____D C:\ProgramData\Origin
2013-06-11 10:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-06-11 10:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-06-11 09:14 - 2013-06-11 09:14 - 683573051 ____A C:\Windows\MEMORY.DMP
2013-06-11 09:14 - 2013-06-11 09:14 - 00307960 ____A C:\Windows\Minidump\061113-21122-01.dmp
2013-06-11 09:14 - 2013-06-11 09:14 - 00000000 ____D C:\Windows\Minidump
2013-06-10 15:52 - 2013-06-10 15:52 - 365596672 ____A C:\Users\NeybisH\Desktop\Aufnahme-3.camrec
2013-06-09 15:19 - 2013-06-09 15:19 - 96037466 ____A C:\Users\NeybisH\Desktop\Gucci Mane Made By NeybisH.mp4
2013-06-09 14:16 - 2013-06-09 14:15 - 1158651904 ____A C:\Users\NeybisH\Desktop\Aufnahme-2.camrec
2013-06-08 16:08 - 2013-06-15 11:43 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-15 11:43 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-15 11:43 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-15 11:43 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-15 11:43 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-15 11:43 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-15 11:43 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-15 11:43 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-15 11:43 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-15 11:43 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-15 11:43 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-15 11:43 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-07 00:09 - 2013-06-07 00:08 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-07 00:09 - 2013-06-07 00:08 - 00000000 ____D C:\Program Files\iTunes
2013-06-07 00:08 - 2013-06-07 00:08 - 00000000 ____D C:\Program Files\iPod
2013-06-07 00:08 - 2013-06-07 00:08 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-06-05 05:46 - 2013-06-05 05:46 - 00000000 ____D C:\Users\NeybisH\Documents\Anti-Malware
2013-06-05 05:42 - 2013-06-05 05:42 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-06-05 05:26 - 2013-06-05 01:16 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Glarysoft
2013-06-05 03:48 - 2013-04-21 22:02 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Apple Computer
2013-06-04 05:34 - 2013-06-04 05:34 - 00106032 ____A C:\Users\NeybisH\AppData\Local\GDIPFONTCACHEV1.DAT
2013-06-04 03:20 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-06-04 03:18 - 2013-04-21 21:52 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-06-04 02:46 - 2013-02-06 19:49 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Origin
2013-06-04 02:46 - 2013-02-06 19:49 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Origin
2013-06-04 02:37 - 2013-06-04 02:37 - 00000000 ____A C:\Windows\setuperr.log
2013-06-04 02:36 - 2013-06-04 02:36 - 04988272 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-04 02:16 - 2013-05-09 08:59 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Logishrd
2013-06-04 02:15 - 2013-02-25 16:59 - 00000000 ____D C:\Users\NeybisH\.thumbnails
2013-06-04 02:15 - 2013-02-25 16:56 - 00000000 ____D C:\Users\NeybisH\.gimp-2.8
2013-06-04 02:13 - 2013-04-12 06:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Delta
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\BabSolution
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-06-03 22:04 - 2013-06-03 22:04 - 00000000 ____D C:\Program Files (x86)\Delta
2013-06-03 22:03 - 2013-06-03 22:03 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Software4u
2013-06-03 22:03 - 2013-06-03 22:03 - 00000000 ____D C:\Users\NeybisH\AppData\Local\IsolatedStorage
2013-06-02 20:39 - 2013-06-02 20:39 - 1126432768 ____A C:\Users\NeybisH\Desktop\Aufnahme-1.camrec
2013-06-02 18:29 - 2013-06-02 18:29 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Xara
2013-06-02 18:29 - 2013-02-06 23:47 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\MAGIX
2013-06-02 18:28 - 2013-02-06 23:43 - 00000000 ____D C:\ProgramData\MAGIX
2013-06-02 18:28 - 2013-02-06 23:43 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-06-02 06:47 - 2013-04-21 22:00 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Apple Computer
2013-06-01 17:07 - 2013-02-06 19:42 - 00000000 ____D C:\Users\NeybisH\AppData\Roaming\Spotify
2013-05-31 22:46 - 2013-05-25 18:18 - 00000000 ____D C:\Users\NeybisH\Desktop\Beatologie
2013-05-31 20:42 - 2013-02-06 19:43 - 00000000 ____D C:\Users\NeybisH\AppData\Local\Spotify
2013-05-31 20:37 - 2013-04-21 21:59 - 00000000 ____D C:\ProgramData\Apple Computer
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files\Bonjour
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-05-31 20:33 - 2013-05-31 20:33 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-05-31 20:33 - 2013-04-21 21:58 - 00000000 ____D C:\ProgramData\Apple
2013-05-30 02:02 - 2013-04-30 17:48 - 00007592 ____A C:\Users\NeybisH\Documents\TombRaider.log
2013-05-30 00:00 - 2013-05-26 03:49 - 00000000 __SHD C:\Users\NeybisH\wc
2013-05-29 22:26 - 2013-05-14 19:36 - 00000000 ____D C:\Users\NeybisH\Desktop\Neuer Ordner
2013-05-27 12:52 - 2013-02-06 19:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2013-06-24 14:27
 
==================== End Of Log ============================

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2013 02
Ran by NeybisH at 2013-06-26 16:24:16
Running from C:\Users\NeybisH\Downloads
Boot Mode: Normal
==========================================================

==================== Installed Programs =======================

Adobe AIR (x32 Version: 1.5.2.8900)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Photoshop CS6 (x32 Version: 13.0)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Alien Swarm - SDK (x32)
Alien Swarm (x32)
ANNO 2070 (x32 Version: 1.0.0.0)
APB Reloaded (x32)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
ArcaniA - Gothic 4 (x32)
Arctic Combat (x32)
ArtMoney SE v7.40.4 (x32 Version: 7.40.4)
Ask Toolbar (x32 Version: 1.15.23.0)
Ask Toolbar Updater (HKCU Version: 1.2.5.42081)
Battlefield 3™ (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
Bonjour (Version: 3.0.0.10)
BrowserCompanion (x32)
BrowserDefender (x32)
Bundled software uninstaller (x32)
CameraHelperMsi (x32 Version: 13.51.815.0)
Camtasia Studio 8 (x32 Version: 8.0.4.1060)
CCleaner (Version: 4.00)
Cheat Engine 6.2 (x32)
Counter-Strike (x32)
Counter-Strike: Condition Zero (x32)
Counter-Strike: Condition Zero Deleted Scenes (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Day of Defeat (x32)
Dead Island (x32)
Dead Space™ (x32 Version: 1.0.222.0)
Dead Space™ 3 (x32 Version: 1.0.0.0)
Deathmatch Classic (x32)
Delta Chrome Toolbar (x32)
Delta toolbar   (x32 Version: 1.8.21.5)
Diablo III (x32 Version: 1.0.8.16603)
District 187 (x32)
Drakensang (x32)
Drakonia Configurator (x32)
Duel of Champions (x32)
EA Shared Game Component: Activation (x32 Version: 2.2.0)
EA Shared Game Component: Activation (x32 Version: 2.2.0.62)
Emsisoft Anti-Malware (x32 Version: 7.0)
erLT (x32 Version: 1.20.138.34)
ESN Sonar (x32 Version: 0.70.4)
Euro Truck Simulator 2 Demo (x32)
Fable III (x32 Version: 1.0.0000.131)
Fable III (x32 Version: 1.0.0002.131)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.27.0)
Fotogalerie (x32 Version: 16.4.3505.0912)
Free GIF Animator 1.0 (x32)
Free YouTube Download Manager (x32 Version: 1.0.0.4)
Free YouTube to MP3 Converter version 3.12.0.128 (x32 Version: 3.12.0.128)
GIMP 2.8.4 (Version: 2.8.4)
Google Chrome (x32 Version: 28.0.1500.52)
Google Earth (x32 Version: 7.0.3.8542)
Google Update Helper (x32 Version: 1.3.21.145)
Guild Wars 2 (x32)
HDVidCodec (x32 Version: 2.1 Build 26473)
iCloud (Version: 2.1.2.8)
iTunes (Version: 11.0.4.4)
James Cameron's AVATAR: DAS SPIEL (x32 Version: 1.02.00)
Java 7 Update 21 (x32 Version: 7.0.210)
Java Auto Updater (x32 Version: 2.1.9.5)
Junk Mail filter update (x32 Version: 16.4.3505.0912)
Just Cause 2 (x32)
Kaspersky Internet Security 2013 (x32 Version: 13.0.1.4190)
Logitech Webcam-Software (x32 Version: 2.51)
LWS Facebook (x32 Version: 13.50.854.0)
LWS Gallery (x32 Version: 13.51.827.0)
LWS Help_main (x32 Version: 13.51.828.0)
LWS Launcher (x32 Version: 13.51.828.0)
LWS Motion Detection (x32 Version: 13.51.815.0)
LWS Pictures And Video (x32 Version: 13.51.815.0)
LWS Twitter (x32 Version: 13.30.1346.0)
LWS Webcam Software (x32 Version: 13.51.815.0)
LWS WLM Plugin (x32 Version: 1.30.1201.0)
LWS YouTube Plugin (x32 Version: 13.31.1038.0)
Magicka (x32)
MAGIX 3D Maker 7 Download-Version (x32 Version: 7.0.0.482)
MAGIX Music Maker 17 (x32 Version: 17.0.0.16)
MAGIX Music Maker MX Premium Download Version (Sound package) (x32 Version: 1.0.0.0)
MAGIX Music Maker MX Premium Download Version (Synthesizer and effects) (x32 Version: 1.0.0.0)
MAGIX Music Maker MX Premium Download Version (x32 Version: 18.0.0.42)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
Mass Effect 2 (x32 Version: 1.2.1604.0)
Mass Effect™ 3 (x32 Version: 1.05.0.0)
Match-3 Box (HKCU)
Media Player Codec Pack 4.2.4 (x32 Version: 4.2.4)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 21.0 (x86 de) (x32 Version: 21.0)
Mozilla Maintenance Service (x32 Version: 21.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Need for Speed Hot Pursuit (x32 Version: 1.0.0.0)
NewFreeScreensaver nfsAmazonFalls (x32)
NewFreeScreensaver nfsGreenSpace (x32)
NewFreeScreensaver nfsSpace (x32)
NVIDIA 3D Vision Controller-Treiber 314.22 (Version: 314.22)
NVIDIA 3D Vision Treiber 314.22 (Version: 314.22)
NVIDIA Grafiktreiber 314.22 (Version: 314.22)
NVIDIA HD-Audiotreiber 1.3.23.1 (Version: 1.3.23.1)
NVIDIA Install Application (Version: 2.1002.115.743)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422)
NVIDIA Systemsteuerung 314.22 (Version: 314.22)
NVIDIA Update 1.12.12 (Version: 1.12.12)
NVIDIA Update Components (Version: 1.12.12)
Origin (x32 Version: 9.1.12.73)
PDF Settings CS6 (x32 Version: 11.0)
Photo Gallery (x32 Version: 16.4.3505.0912)
Pokki (HKCU Version: 0.263.13.325)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.12)
Protected Search 1.1 (x32)
PunkBuster Services (x32 Version: 0.993)
QuickTime (x32 Version: 7.74.80.86)
Razer Game Booster (x32 Version: 3.5.6.0)
Realtek Ethernet Controller Driver (x32 Version: 7.69.304.2013)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6873)
Recuva (Version: 1.46)
Ricochet (x32)
Saints Row: The Third (x32)
SHARKOON Skiller (x32 Version: 1.00.0000)
Shutdown Timer (x32 Version: 3.1)
SIW version 2011.10.29 (x32 Version: 2011.10.29)
Skype™ 6.1 (x32 Version: 6.1.129)
Sony Ericsson Update Engine (x32 Version: 2.13.5.201304180917)
Sony PC Companion 2.10.155 (x32 Version: 2.10.155)
Spotify (HKCU Version: 0.9.1.43.gca4c2c73)
Spybot - Search & Destroy (x32 Version: 2.1.19)
StarCraft II (x32 Version: 2.0.7.25293)
Steam (x32 Version: 1.0.0.0)
Sweet Home 3D version 3.7 (x32)
Symphony (x32)
TeamSpeak 3 Client (x32 Version: 3.0.10.1)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
Tomb Raider (x32)
Treiber-Studio 2013 (Version: 8.1.327)
Uplay (x32 Version: 2.0)
VLC media player 2.0.7 (x32 Version: 2.0.7)
Warframe (x32)
Warhammer® 40,000™: Dawn of War® II – Retribution™ (x32)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live Family Safety (x32 Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Mail (x32 Version: 16.4.3505.0912)
Windows Live Messenger (x32 Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
Windows Live Writer (x32 Version: 16.4.3505.0912)
Windows Live Writer Resources (x32 Version: 16.4.3505.0912)
WinRAR 4.20 (32-Bit) (x32 Version: 4.20.0)
World of Warcraft (x32 Version: 5.0.3.15890)
Yontoo 1.12.02 (Version: 1.12.02)

==================== Restore Points  =========================

22-06-2013 11:19:19 DirectX wurde installiert
25-06-2013 13:15:49 Windows Update

==================== Scheduled Tasks (whitelisted) =============

Task: {038CDD0B-2573-4F4E-9F37-5A2B8D7C7651} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000Core => C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-29] (Facebook Inc.)
Task: {086AE06A-BB9A-4255-AADC-53EC3EF00B53} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-06-11] ()
Task: {08DCA065-7171-471E-978B-BF3BFDDC1724} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-06-11] ()
Task: {1C3DC907-BE0E-4B71-8D56-5C3DB93D937F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {26F82A86-C9B5-41FF-9BD9-A2C3B69174EA} - System32\Tasks\AdobeAAMUpdater-1.0-NeybisH-PC-NeybisH => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {2BE112B9-E02C-43FE-B281-89B5A213E26C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe No File
Task: {3CEDBF24-EDBD-49B1-822E-0C2EA213F62C} - System32\Tasks\EPUpdater => C:\Users\NeybisH\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-05-09] ()
Task: {5245E188-D904-4ADD-ACAF-7105FFF8E2DC} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {53886464-94A6-4FAF-92EB-1A97C6DFF3D9} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe No File
Task: {5BB8B23F-39DE-4309-A072-14F0042A6335} - System32\Tasks\BrowserDefendert => C:\Windows\system32\sc.exe [2009-07-14] (Microsoft Corporation)
Task: {60D46B67-1D1C-4092-A147-CB369FCA8AE2} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2012-11-13] ()
Task: {6EEA1CE0-F192-40D9-92E8-559ACD02562B} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {76BF2A25-9BDF-4E1B-948B-AECDEC29E815} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe No File
Task: {87BC6504-C19E-483F-AEC1-E8A145E4D229} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000UA => C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-29] (Facebook Inc.)
Task: {9BBA13D6-B090-42B5-ACE7-3441E780029F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.)
Task: {D2AA6700-D199-4074-8CD4-B90A344C3AA8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {DAA0EF70-C54E-42BC-B63E-CB3CEBF7DF70} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-03-31] ()
Task: {DF02486F-3B6D-4BC5-935D-27AF8BEB27C1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated)
Task: {E9AB5392-EC91-46D4-B687-AB5066D74290} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06] (Google Inc.)
Task: {EA40917F-7FEA-45EC-B97C-F7A717B471E8} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\Protected Search\ProtectedSearch.exe [2013-01-14] (Simplygen)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000Core.job => C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2844676795-1654300380-2593557156-1000UA.job => C:\Users\NeybisH\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (06/26/2013 02:15:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8253

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8253

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7254

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7254

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6256

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6256

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (06/26/2013 02:18:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069

Error: (06/26/2013 02:18:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (06/26/2013 02:15:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (06/26/2013 02:15:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.

Error: (06/25/2013 08:19:11 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Error: (06/25/2013 08:19:06 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Error: (06/25/2013 08:19:01 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Error: (06/25/2013 08:18:56 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Error: (06/25/2013 08:18:51 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Error: (06/25/2013 08:18:45 PM) (Source: Disk) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk2\DR3.

Microsoft Office Sessions:
=========================
Error: (06/26/2013 02:15:50 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8253

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8253

Error: (06/26/2013 01:16:41 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7254

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7254

Error: (06/26/2013 01:16:40 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6256

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6256

Error: (06/26/2013 01:16:39 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

CodeIntegrity Errors:
===================================
  Date: 2013-06-26 01:06:02.125
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-26 01:06:02.122
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-26 01:06:02.120
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-26 01:06:02.067
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-26 01:06:02.041
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-26 01:06:02.038
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-24 14:29:04.598
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-24 14:29:04.598
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-24 14:29:04.598
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-24 14:29:04.582
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

==================== Memory info ===========================

Percentage of memory in use: 34%
Total physical RAM: 8171.65 MB
Available physical RAM: 5357.69 MB
Total Pagefile: 16341.48 MB
Available Pagefile: 12600.85 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1192.09 GB) (Free:850.43 GB) NTFS (Disk=0 Partition=3)
Drive d: () (Fixed) (Total:205.08 GB) (Free:204.91 GB) NTFS (Disk=0 Partition=2)
Drive g: (Iomega HDD) (Fixed) (Total:596.17 GB) (Free:205.63 GB) NTFS (Disk=2 Partition=1)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 7C728CF4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=205 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=-919029678080) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 596 GB) (Disk ID: CBD306F8)
Partition 1: (Not Active) - (Size=596 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

 

 

 

 

 

 

 

Share this post


Link to post
Share on other sites

Hi,

unten rechts einfach auf "More Reply Options" klicken, dann im neuen Fenster runterscrollen, dort kann man die Logs anhängen. Bitte mit dem Nächsten versuchen.

Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1

WICHTIG - Speichere Combofix auf deinem Desktop

  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Share this post


Link to post
Share on other sites

Hi,

Downloade Dir bitte AdwCleaner auf deinen Desktop.

  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Klicke auf Löschen.
  • Nach Ende des Suchlaufs öffnet sich eine Textdatei.
  • Poste mir den Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner[s1].txt.
ESET Online Scanner

Bitte während der Online-Scans evtl. vorhandene externe Festplatten einschalten! Bitte während der Scans alle Hintergrundwächter (Anti-Virus-Programm, Firewall, Skriptblocking und ähnliches) abstellen und nicht vergessen, alles hinterher wieder einzuschalten.

  • Anmerkung für Vista und Win7 User: Bitte den Browser unbedingt als Administrator starten.
  • Dein Anti-Virus-Programm während des Scans deaktivieren.

    Button eset.jpg (<< klick) drücken.

    • Firefox-User:

      Bitte esetsmartinstaller_enu.exe downloaden.Das Firefox-Addon auf dem Desktop speichern und dann installieren.

    • IE-User:

      müssen das Installieren eines ActiveX Elements erlauben.

  • Setze den einen Hacken bei Yes, i accept the Terms of Use.
  • Drücke den starteg.jpg Button.
  • Warte bis die Komponenten herunter geladen wurden.
  • Setze einen Haken bei "Scan archives".
  • Gehe sicher, dass bei Remove Found Threads kein Haken gesetzt ist.
  • starteg.jpg drücken.
  • Die Signaturen werden herunter geladen.Der Scan beginnt automatisch.Wenn der Scan beendet wurde
    • Klicke esetListThreats.png.
    • Klicke esetExport.png und speichere das Logfile als ESET.txt auf dem Desktop.
    • Klicke Back und Finish
    Bitte poste die Logfile hier.

    Ebenso bitte ein frisches FRST Log anhängen. Noch Probleme mit dem Rechner?

Share this post


Link to post
Share on other sites

Hallo,

 

Ich habe AdwCleaner & ESET Online Scanner Durchgeführt.

  • ESET Online Scanner hat nix gefunden.

AdwCleaner  Log.file unten in Anhang gefügt.

Und ich habe FRST64 Neu Durchgeführt und ebenso Anhang gepackt.

 

mfg
NeybisH

Share this post


Link to post
Share on other sites

Fix mit FRST

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

HKU\UpdatusUser\...\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\pokki.exe" [x]
AppInit_DLLs-x32: c:\PROGRA~3\BROWSE~2\261339~1.144\{C16C1~1\BrowserDefender.dll [2521040 2013-05-23] ()
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
SearchScopes: HKCU - {22D39181-A736-4B2A-8266-B95BBCAF7933} URL = http://search.certified-toolbar.com?si=42820&st=bs&tid=3347&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {E6647F26-A794-4578-B2F2-1EFB2EAE50DA} URL = http://websearch.ask.com/redirect?client=ie&tb=CWM&o=APN10250&src=kw&q={searchTerms}&locale=&apn_ptnrs=^AFJ&apn_dtid=^YYYYYY^YY^DE&apn_uid=196b7c62-b041-4f84-bfcd-c3eedf114d2d&apn_sauid=4676052F-290B-4BB4-8B58-69D01ED8D60D
CHR DefaultSearchURL: (Babylon) - http://search.babylon.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss_din2g&mntrId=54E7BC5FF41DE0D2
CHR DefaultSuggestURL: (Babylon) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (Pool) - C:\Users\NeybisH\AppData\Local\Google\Chrome\User Data\Default\Extensions\cedbddnnmhgnedpamoenmdkhnpnfbpjb\1.0.4_0
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [296448 2013-05-01] ()
2013-06-13 22:58 - 2013-06-13 22:58 - 00000000 ____D C:\Users\NeybisH\AppData\Local\TenthOfMarch.com
C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe
%LOCALAPPDATA%\Pokki
 
 
 
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Fix Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

Downloade Dir bitte %5BB%5DTFC[/b] ( von Oldtimer ) und speichere die Datei auf dem Desktop.

Schließe nun alle offenen Programme und trenne Dich von dem Internet.

Doppelklick auf die TFC.exe und drücke auf Start.

Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.

Bitte noch ein frisches FRST Log anhängen. Noch Probleme?

Share this post


Link to post
Share on other sites

Hallo,

 

Ich habe Fix mit FRST Durchgeführt. Fixlog.txt ist in Anhang.

 

TFC.exe Durchgeführt Ergebniss war:

  • Total Files Cleaned = 781,00 mb 

Zum schluss Frische FRST Durchgeführt denn Log hab ich ebenso Angehängt.

 

mfg

NeybisH

Share this post


Link to post
Share on other sites

Noch Probleme mit dem Rechner? Chrome bitte deinstallieren, keine Daten behalten, neu installieren.

Ansonsten sollten wir durch sein :)

Share this post


Link to post
Share on other sites

Dann sind wir fertig :)

Downloade dir bitte delfix auf deinen Desktop.

  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
  • DelFix entfernt u. a. alle verwendeten Programme und löscht sich abschließend selbst.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates

    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.

    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.
Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

  • %5BB%5DOpera[/b]
  • Mozilla Firefox.
    • %5BB%5DHinweis:[/b] Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript

      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.

    • AdblockPlus

      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.

      Es spart ausserdem Downloadkapazität.

Performance

Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC

Halte dich fern von jedlichen Registry Cleanern.

Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links

Miekemoes Blogspot ( MVP )

Bill Castner ( MVP )

Don'ts

  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Share this post


Link to post
Share on other sites

Dieses Thema scheint erledigt und wird geschlossen.

Solltest du das Thema erneut brauchen, schicke mir bitte eine PM und wir machen hier weiter.

Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.