http://www_getwindowinfo/

markusg · 31.07.2013, 19:20

Hi,
erst mal alle Hitmanpro Funde löschen.
neustarten.
2. versuche es nun mit den deinstalationen.
3.
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

xuxy87 · 31.07.2013, 19:33

deinstallieren hat mit dem remover geklappt, trotz fehlermeldungen sind die toolbars nicht mehr da.

hier der log vom FRST

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-07-2013 03
Ran by Tina at 2013-07-31 20:31:39
Running from C:\Users\Tina\Downloads
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Alps Pointing-device for VAIO
Amazon MP3-Downloader 1.0.17 (x32 Version: 1.0.17)
ArcSoft Magic-i Visual Effects 2 (x32 Version: 2.0.1.115)
ArcSoft WebCam Companion 3 (x32 Version: 3.0.21.368)
Catalyst Control Center Core Implementation (x32 Version: 2010.0209.16.306)
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0209.16.306)
Catalyst Control Center Graphics Full New (x32 Version: 2010.0209.16.306)
Catalyst Control Center Graphics Light (x32 Version: 2010.0209.16.306)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0209.16.306)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0209.16.306)
Catalyst Control Center InstallProxy (x32 Version: 2010.0209.16.306)
Catalyst Control Center Localization All (x32 Version: 2010.0209.16.306)
CCC Help Chinese Standard (x32 Version: 2010.0209.0015.306)
CCC Help Chinese Traditional (x32 Version: 2010.0209.0015.306)
CCC Help Czech (x32 Version: 2010.0209.0015.306)
CCC Help Danish (x32 Version: 2010.0209.0015.306)
CCC Help Dutch (x32 Version: 2010.0209.0015.306)
CCC Help English (x32 Version: 2010.0209.0015.306)
CCC Help Finnish (x32 Version: 2010.0209.0015.306)
CCC Help French (x32 Version: 2010.0209.0015.306)
CCC Help German (x32 Version: 2010.0209.0015.306)
CCC Help Greek (x32 Version: 2010.0209.0015.306)
CCC Help Hungarian (x32 Version: 2010.0209.0015.306)
CCC Help Italian (x32 Version: 2010.0209.0015.306)
CCC Help Japanese (x32 Version: 2010.0209.0015.306)
CCC Help Korean (x32 Version: 2010.0209.0015.306)
CCC Help Norwegian (x32 Version: 2010.0209.0015.306)
CCC Help Polish (x32 Version: 2010.0209.0015.306)
CCC Help Portuguese (x32 Version: 2010.0209.0015.306)
CCC Help Russian (x32 Version: 2010.0209.0015.306)
CCC Help Spanish (x32 Version: 2010.0209.0015.306)
CCC Help Swedish (x32 Version: 2010.0209.0015.306)
CCC Help Thai (x32 Version: 2010.0209.0015.306)
CCC Help Turkish (x32 Version: 2010.0209.0015.306)
ccc-core-static (x32 Version: 2010.0209.16.306)
ccc-utility64 (Version: 2010.0209.16.306)
eaner (Version: 4.01)
ESET Online Scanner v3 (x32)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Google Chrome (x32 Version: 28.0.1500.72)
Google Update Helper (x32 Version: 1.3.21.153)
HitmanPro 3.7 (Version: 3.7.6.201)
Iminent (x32 Version: 6.27.21.0)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Rapid Storage Technology (x32 Version: 9.6.0.1014)
Intel(R) Turbo Boost Technology Driver (x32 Version: 01.02.00.1002)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Junk Mail filter update (x32 Version: 14.0.8117.416)
LyricXeeker (x32)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Media Gallery (Version: 1.3.0)
Media Gallery (x32 Version: 1.3.0.06230)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mobile Partner (x32 Version: 16.002.03.03.511)
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Open It! (x32 Version: 1.1.1)
PMB (x32 Version: 5.3.00.06040)
PMB VAIO Edition plug-in (Click to Disc) (Version: 3.3.00)
PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.3.00)
PMB VAIO Edition plug-in (VAIO Movie Story) (Version: 2.3.00)
PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00)
Realtek HDMI Audio Driver for ATI (x32 Version: 6.0.1.6034)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6098)
Revo Uninstaller 1.95 (x32 Version: 1.95)
Skype™ 6.6 (x32 Version: 6.6.106)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Zip Opener (HKCU)
VAIO - Media Gallery (x32 Version: 1.3.0.06230)
VAIO - PMB VAIO Edition Guide (x32 Version: 1.3.00.06040)
VAIO - PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.3.00.06180)
VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) (x32 Version: 1.3.00.06110)
VAIO - PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.3.00.06180)
VAIO Care (x32 Version: 6.4.2.11150)
VAIO Control Center (x32 Version: 4.3.0.05310)
VAIO Data Restore Tool (x32 Version: 1.4.0.05240)
VAIO DVD Menu Data (x32 Version: 2.2.00.05120)
VAIO Gate (x32 Version: 2.2.0.06080)
VAIO Gate Default (x32 Version: 2.2.0.07020)
VAIO Hardware Diagnostics (x32 Version: 4.0.0.06230)
VAIO Media plus (Version: 2.1.0)
VAIO Media plus (x32 Version: 2.1.0.18210)
VAIO Media plus Opening Movie (x32 Version: 2.1.0.13220)
VAIO Movie Story Template Data (x32 Version: 2.3.00.06040)
VAIO Quick Web Access (x32 Version: 1.3.4.2)
VAIO Sample Contents (x32 Version: 1.3.0.06041)
VAIO screensaver (x32 Version: 1.0.0.0)
VAIO Smart Network (x32 Version: 3.3.0.06080)
VAIO Update (x32 Version: 6.1.1.10250)
VAIO-Handbuch (x32 Version: 1.1.0.05280)
VAIO-Support für Übertragungen (x32 Version: 1.2.0.06230)
VU5x64 (Version: 1.1.0)
VU5x86 (x32 Version: 1.0.0)
VU5x86 (x32 Version: 1.1.0)
WIDCOMM Bluetooth Software (Version: 6.3.0.5600)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5)
Windows Live Call (x32 Version: 14.0.8117.0416)
Windows Live Communications Platform (x32 Version: 14.0.8117.416)
Windows Live Essentials (x32 Version: 14.0.8117.0416)
Windows Live Essentials (x32 Version: 14.0.8117.416)
Windows Live Fotogalerie (x32 Version: 14.0.8117.416)
Windows Live Mail (x32 Version: 14.0.8117.0416)
Windows Live Messenger (x32 Version: 14.0.8117.0416)
Windows Live Sync (x32 Version: 14.0.8117.416)
Windows Live Writer (x32 Version: 14.0.8117.0416)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Windows Utils (x32)

==================== Restore Points  =========================

07-07-2013 18:29:09 Windows Update
14-07-2013 17:32:08 Windows Update
14-07-2013 19:29:58 Windows Update
22-07-2013 18:08:11 Windows Update
24-07-2013 19:32:44 Windows Update
29-07-2013 10:59:57 Free Pdf Perfect Prereq
30-07-2013 06:24:47 Windows Update
31-07-2013 06:43:54 Windows Update
31-07-2013 17:20:00 Removed Adobe Reader 9.3 - Deutsch.
31-07-2013 17:20:48 Removed Adobe Reader 9.3 - Deutsch.
31-07-2013 17:21:06 Removed Adobe Reader 9.3 - Deutsch.
31-07-2013 17:24:55 Free Pdf Perfect Prereq
31-07-2013 17:25:56 Removed Java(TM) 6 Update 20 (64-bit)
31-07-2013 17:27:10 Removed Java(TM) 6 Update 25
31-07-2013 17:28:17 Entfernt Remote Play mit PlayStation®3
31-07-2013 17:28:57 Entfernt Remote Keyboard with PlayStation 3
31-07-2013 17:40:57 Installed Java 7 Update 25 (64-bit)
31-07-2013 18:12:54 Revo Uninstaller's restore point - Avira SearchFree Toolbar plus Web Protection
31-07-2013 18:15:47 Revo Uninstaller's restore point - Yahoo Community Smartbar

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-07-31 16:15 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {041BC165-87CB-4CCB-BA7D-1528EEE215FE} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe No File
Task: {04F7E5BA-4CA9-43AC-A10D-57E045E563A4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-04-23] (Piriform Ltd)
Task: {078413D2-6681-4B0F-A70B-75FCF905D393} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-10] (Google Inc.)
Task: {08FC477F-9C2C-4FB4-A551-55021AFACF81} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2012-10-26] (Sony Corporation)
Task: {0CDFE7FF-4167-4B05-A84E-35559AA8205D} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {1A1185B4-2626-4E29-8AC5-58569CA53C56} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCOneClick.exe [2011-02-16] (Sony Corporation)
Task: {1C6FFD98-6C28-4647-A8FC-554D679AE3D8} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {1D7AC307-E094-4988-B399-931A20CC31AF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-31] (Adobe Systems Incorporated)
Task: {1F99A3AE-E9DE-43FC-9192-8C6C8D11C448} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {286B74AF-B114-47CA-B890-493206493691} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {4CED186A-F3D5-4AC9-8B19-6D1BC43AAEA2} - System32\Tasks\User_Feed_Synchronization-{EA9F004A-9EA1-46AA-A967-1010B49F1C58} => C:\Windows\system32\msfeedssync.exe [2013-03-02] (Microsoft Corporation)
Task: {6361626B-D12A-4CB1-AB4F-2D9FEEDA340A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-10] (Google Inc.)
Task: {6417B0DB-A9BB-4747-A99E-AF6199B63AC6} - System32\Tasks\DigitalSite => C:\Users\Tina\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE [2013-04-12] ()
Task: {83576E78-AB2F-49E4-99E7-6DAFF08C6571} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {8D28C577-97FA-483D-89A5-F6B49E07F118} - System32\Tasks\SONY\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2010-06-08] (Sony Corporation)
Task: {8DE1D3D8-B033-44A3-987D-2F4EBEDA944B} - System32\Tasks\User_Feed_Synchronization-{0E626F3C-8A24-4FFB-84FD-07195C3D7244} => C:\Windows\system32\msfeedssync.exe [2013-03-02] (Microsoft Corporation)
Task: {B652F053-B3E9-4B81-876E-CCD1CA9583F0} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2010-06-08] (Sony Corporation)
Task: {D524EE56-F6DF-4C88-BE76-502E2D43C1AC} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2011-02-16] (Sony Corporation)
Task: {E566D6A6-BCAD-44CF-8AC8-C6D9FDBA3076} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2012-10-26] (Sony Corporation)
Task: {E9759AD4-9B5B-4062-8528-0AEAF5935A7F} - System32\Tasks\LyricXeeker Update => C:\Program Files (x86)\LyriXeeker\LyriXupdate.exe [2013-07-27] (LyriXeeker Tech)
Task: {F97F63EC-23CC-44FA-83E4-40894CF04B7C} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DigitalSite.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\LyricXeeker Update.job => C:\Program Files (x86)\LyriXeeker\LyriXupdate.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/31/2013 08:13:39 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:33 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:28 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:22 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:22 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:21 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:21 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:20 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:20 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer

Error: (07/31/2013 08:13:19 PM) (Source: MsiInstaller) (User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer


System errors:
=============
Error: (07/31/2013 08:26:21 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "ADMIN-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{F3593B11-7940-4EF9-BF6F-C86A919D5698}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (07/31/2013 07:46:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/31/2013 07:46:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (07/31/2013 04:16:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (07/31/2013 04:15:54 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (07/31/2013 04:15:21 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\ComboFix\catchme.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (07/31/2013 04:13:34 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (07/31/2013 04:08:38 PM) (Source: Service Control Manager) (User: )
Description: Dienst "DCService.exe" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/31/2013 03:01:54 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "ADMIN-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{F3593B11-7940-4EF9-BF6F-C86A919D5698}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (07/31/2013 01:00:51 PM) (Source: DCOM) (User: LooniesVaio)
Description: ComputerstandardLokalAktivierung{45469D86-2270-421A-AF57-C0F568D136F1}{F03672B2-06ED-4DD9-BD11-9BA26BACE6BC}LooniesVaioTinaS-1-5-21-260020902-558958140-274888911-1001LocalHost (unter Verwendung von LRPC)


Microsoft Office Sessions:
=========================
Error: (07/31/2013 08:13:39 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:33 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:28 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:22 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:22 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:21 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:21 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:20 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:20 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/31/2013 08:13:19 PM) (Source: MsiInstaller)(User: LooniesVaio)
Description: Produkt: Avira SearchFree Toolbar plus Web Protection -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 

Google Chrome
Internet Explorer(NULL)(NULL)(NULL)(NULL)(NULL)


CodeIntegrity Errors:
===================================
  Date: 2013-07-31 16:15:21.782
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-31 16:15:21.702
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 48%
Total physical RAM: 3950.1 MB
Available physical RAM: 2049.58 MB
Total Pagefile: 7898.33 MB
Available Pagefile: 5608.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:287.26 GB) (Free:238.05 GB) NTFS (Disk=0 Partition=3)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 19AF7232)
Partition 1: (Not Active) - (Size=11 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=287 GB) - (Type=07 NTFS)

==================== End Of Log ============================

sorry, den ersten vergessen:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-07-2013 03
Ran by Tina (administrator) on 31-07-2013 20:30:50
Running from C:\Users\Tina\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Windows\SysWOW64\DllHost.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Windows Net) C:\Users\Tina\AppData\Roaming\Windows Net Data\net.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apntex.exe
(ALPS) C:\Program Files\Apoint\Apvfb.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint\Apoint.exe [212480 2010-05-31] (Alps Electric Co., Ltd.)
HKLM\...\InprocServer32: [Default-cscui]  <==== ATTENTION!
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136 2010-05-31] (Sony Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928 2010-06-01] (Sony Corporation)
HKLM-x32\...\Run: [SHTtray.exe] - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [99696 2010-06-20] (Sony Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Tina\AppData\Roaming\Windows Net Data\net.exe (Windows Net)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {15F9C59E-A01C-43C3-8A53-F88F31CF740A} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKCU - {15F9C59E-A01C-43C3-8A53-F88F31CF740A} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: LyricXeeker - {17E58097-6CA5-448B-830F-2A19678248FB} - C:\Program Files (x86)\LyriXeeker\125.dll (LyriXeeker Tech)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
Toolbar: HKLM-x32 - Free PDF Perfect - {EFC2B9BE-AB2B-47F1-A47D-9EB28E58C917} - C:\Program Files (x86)\Freemium\Free PDF Perfect\ieagent32.dll No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{84E90DCE-4226-462A-B382-020867B3AC21}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{9C41EFE5-85F5-4056-96FF-9D634C277CE8}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{F1280C0C-DC5B-49BB-8E62-0DA869D78107}: [NameServer]193.189.244.225 193.189.244.206

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @soft-xpansion/npsxpdf - C:\Program Files (x86)\Common Files\Freemium\np-sxpdf.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Tina\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF HKLM-x32\...\Thunderbird\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF HKCU\...\Firefox\Extensions: [lyrix@lyrixeeker.co] C:\Program Files (x86)\LyriXeeker\125.xpi
FF Extension: No Name - C:\Program Files (x86)\LyriXeeker\125.xpi

Chrome: 
=======
CHR DefaultSearchURL: (Web) - hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=397e10ce-ac89-4746-87f7-23fb71657fae&searchtype=ds&p={searchTerms}&fr=linkury-tb
CHR DefaultSuggestURL: (Web) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.250.6) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U25) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll (Amazon.com, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (LyricXeeker) - C:\Users\Tina\AppData\Local\Google\Chrome\User Data\Default\Extensions\odnofacmifkjndflfmmplhckcbfjckhj\1.125_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx
CHR HKLM-x32\...\Chrome\Extension: [odnofacmifkjndflfmmplhckcbfjckhj] - C:\Program Files (x86)\LyriXeeker\125.crx
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2013-07-31] (SurfRight B.V.)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
S3 SXDS10; C:\Program Files (x86)\Common Files\soft Xpansion\sxds10.exe [234096 2013-07-29] (soft Xpansion)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
R2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1286784 2012-10-26] (Sony Corporation)

==================== Drivers (Whitelisted) ====================

R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [250368 2010-04-07] (Huawei Technologies Co., Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-31 20:29 - 2013-07-31 20:29 - 01781589 _____ (Farbar) C:\Users\Tina\Downloads\FRST64.exe
2013-07-31 20:22 - 2013-07-31 20:28 - 00032000 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-07-31 20:19 - 2013-07-31 20:20 - 00001558 _____ C:\AdwCleaner[S6].txt
2013-07-31 20:17 - 2013-07-31 20:17 - 00045696 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2017.log
2013-07-31 20:11 - 2013-07-31 20:11 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tina\Downloads\revosetup95.exe
2013-07-31 20:11 - 2013-07-31 20:11 - 00000736 _____ C:\Users\Tina\Desktop\Revo Uninstaller.lnk
2013-07-31 20:05 - 2013-07-31 20:05 - 00003422 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2005.xml
2013-07-31 20:03 - 2013-07-31 20:03 - 00003422 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2002.xml
2013-07-31 19:58 - 2013-07-31 20:19 - 00000000 ____D C:\ProgramData\HitmanPro
2013-07-31 19:58 - 2013-07-31 19:58 - 00001901 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2013-07-31 19:58 - 2013-07-31 19:58 - 00000000 ____D C:\Program Files\HitmanPro
2013-07-31 19:57 - 2013-07-31 19:58 - 09833328 _____ (SurfRight B.V.) C:\Users\Tina\Downloads\HitmanPro_x64.exe
2013-07-31 19:51 - 2013-07-31 20:21 - 00000386 _____ C:\Windows\Tasks\LyricXeeker Update.job
2013-07-31 19:51 - 2013-07-31 20:20 - 00000288 _____ C:\Windows\Tasks\DigitalSite.job
2013-07-31 19:51 - 2013-07-31 19:51 - 00003232 _____ C:\Windows\System32\Tasks\DigitalSite
2013-07-31 19:51 - 2013-07-31 19:51 - 00003032 _____ C:\Windows\System32\Tasks\LyricXeeker Update
2013-07-31 19:51 - 2013-07-31 19:51 - 00001106 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Users\Tina\AppData\Roaming\DigitalSite
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Program Files (x86)\OpenIt
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Program Files (x86)\LyriXeeker
2013-07-31 19:50 - 2013-07-31 19:51 - 00717160 _____ C:\Users\Tina\Downloads\ZipOpenerSetup.exe
2013-07-31 19:48 - 2013-07-31 19:48 - 00001457 _____ C:\AdwCleaner[R4].txt
2013-07-31 19:48 - 2013-07-31 19:48 - 00001450 _____ C:\AdwCleaner[S5].txt
2013-07-31 19:45 - 2013-07-31 20:20 - 00000168 _____ C:\Windows\setupact.log
2013-07-31 19:45 - 2013-07-31 19:45 - 00001318 _____ C:\Windows\PFRO.log
2013-07-31 19:45 - 2013-07-31 19:45 - 00000000 _____ C:\Windows\setuperr.log
2013-07-31 19:41 - 2013-07-31 19:41 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-07-31 19:41 - 2013-07-31 19:41 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-07-31 19:41 - 2013-07-31 19:41 - 00000000 ____D C:\Program Files\Java
2013-07-31 19:39 - 2013-07-31 19:40 - 33150376 _____ (Oracle Corporation) C:\Users\Tina\Downloads\jre-7u25-windows-x64.exe
2013-07-31 19:37 - 2013-07-31 19:37 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-07-31 19:37 - 2013-07-31 19:37 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-07-31 19:35 - 2013-07-31 19:53 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-31 19:35 - 2013-07-31 19:35 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-07-31 19:35 - 2013-07-31 19:35 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-31 19:35 - 2013-07-31 19:35 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-31 19:03 - 2013-07-31 19:11 - 00012890 _____ C:\Users\Tina\Desktop\Liste_CC.txt
2013-07-31 16:38 - 2013-07-31 16:38 - 02347384 _____ (ESET) C:\Users\Tina\Downloads\esetsmartinstaller_enu.exe
2013-07-31 16:38 - 2013-07-31 16:38 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-31 16:30 - 2013-07-31 16:31 - 00001318 _____ C:\AdwCleaner[S4].txt
2013-07-31 16:25 - 2013-07-31 16:25 - 00001258 _____ C:\AdwCleaner[S3].txt
2013-07-31 16:24 - 2013-07-31 16:25 - 00001195 _____ C:\AdwCleaner[R3].txt
2013-07-31 16:23 - 2013-07-31 16:23 - 00021610 _____ C:\ComboFix.txt
2013-07-31 16:10 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-07-31 16:10 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-07-31 16:10 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-07-31 16:10 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-07-31 16:10 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-07-31 16:10 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-07-31 16:10 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-07-31 16:10 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-07-31 16:08 - 2013-07-31 16:23 - 00000000 ____D C:\Qoobox
2013-07-31 16:08 - 2013-07-31 16:21 - 00000000 ____D C:\Windows\erdnt
2013-07-31 16:07 - 2013-07-31 16:07 - 05096636 ____R (Swearware) C:\Users\Tina\Downloads\ComboFix.exe
2013-07-31 15:11 - 2013-07-31 15:11 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-31 15:11 - 2013-07-31 15:11 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Malwarebytes
2013-07-31 15:11 - 2013-07-31 15:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-31 15:10 - 2013-07-31 15:11 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-31 15:10 - 2013-07-31 15:10 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Tina\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-31 15:10 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-07-31 14:43 - 2013-07-31 14:43 - 00001013 _____ C:\AdwCleaner[S2].txt
2013-07-31 14:42 - 2013-07-31 14:42 - 00000952 _____ C:\AdwCleaner[R2].txt
2013-07-31 13:26 - 2013-07-31 13:27 - 00026969 _____ C:\AdwCleaner[S1].txt
2013-07-31 13:26 - 2013-07-31 13:26 - 00026944 _____ C:\AdwCleaner[R1].txt
2013-07-31 13:25 - 2013-07-31 13:25 - 00666633 _____ C:\Users\Tina\Downloads\adwcleaner06.exe
2013-07-31 13:25 - 2013-07-31 13:25 - 00666633 _____ C:\Users\Tina\Downloads\adwcleaner06 (1).exe
2013-07-29 13:04 - 2013-07-29 13:04 - 00010464 _____ C:\Windows\SysWOW64\sx_p2d.tlb
2013-07-29 13:00 - 2013-07-29 13:00 - 00000000 ____D C:\Users\Tina\Downloads\freepdf
2013-07-29 13:00 - 2013-07-29 13:00 - 00000000 ____D C:\SoftwareUpdater
2013-07-29 12:59 - 2013-07-31 08:52 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Windows Net Data
2013-07-29 12:59 - 2013-07-29 12:59 - 00000635 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-07-29 12:57 - 2013-07-29 12:57 - 00444400 _____ C:\Users\Tina\Downloads\DLG_free-pdf-perfect_chip_de-DE10 (1).exe
2013-07-29 12:57 - 2013-07-29 12:57 - 00000207 _____ C:\Users\Tina\Desktop\Amazon.url
2013-07-29 12:56 - 2013-07-29 12:56 - 00444400 _____ C:\Users\Tina\Downloads\DLG_free-pdf-perfect_chip_de-DE10.exe
2013-07-29 11:00 - 2013-07-29 11:00 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Mozilla
2013-07-29 10:58 - 2013-07-31 19:22 - 00000000 ____D C:\ProgramData\Avira
2013-07-15 09:44 - 2013-07-15 09:44 - 00294240 _____ C:\Users\Tina\Downloads\Love Word Wallpaper Wallpaper.exe
2013-07-14 21:30 - 2013-07-14 21:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-14 21:30 - 2013-07-14 21:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
107

==================== One Month Modified Files and Folders =======

2013-07-31 20:30 - 2013-07-31 20:30 - 00000000 ____D C:\FRST
2013-07-31 20:29 - 2013-07-31 20:29 - 01781589 _____ (Farbar) C:\Users\Tina\Downloads\FRST64.exe
2013-07-31 20:28 - 2013-07-31 20:22 - 00032000 _____ C:\Windows\system32\Drivers\hitmanpro37.sys
2013-07-31 20:28 - 2009-07-14 06:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-31 20:28 - 2009-07-14 06:45 - 00013936 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-31 20:27 - 2011-05-11 07:48 - 00654852 _____ C:\Windows\system32\perfh007.dat
2013-07-31 20:27 - 2011-05-11 07:48 - 00130434 _____ C:\Windows\system32\perfc007.dat
2013-07-31 20:27 - 2009-07-14 07:13 - 01500294 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-31 20:25 - 2011-05-10 21:54 - 01192867 _____ C:\Windows\WindowsUpdate.log
2013-07-31 20:24 - 2011-05-24 11:23 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{EA9F004A-9EA1-46AA-A967-1010B49F1C58}
2013-07-31 20:21 - 2013-07-31 19:51 - 00000386 _____ C:\Windows\Tasks\LyricXeeker Update.job
2013-07-31 20:20 - 2013-07-31 20:19 - 00001558 _____ C:\AdwCleaner[S6].txt
2013-07-31 20:20 - 2013-07-31 19:51 - 00000288 _____ C:\Windows\Tasks\DigitalSite.job
2013-07-31 20:20 - 2013-07-31 19:45 - 00000168 _____ C:\Windows\setupact.log
2013-07-31 20:20 - 2011-05-10 22:04 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-31 20:20 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-31 20:19 - 2013-07-31 19:58 - 00000000 ____D C:\ProgramData\HitmanPro
2013-07-31 20:17 - 2013-07-31 20:17 - 00045696 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2017.log
2013-07-31 20:11 - 2013-07-31 20:11 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Tina\Downloads\revosetup95.exe
2013-07-31 20:11 - 2013-07-31 20:11 - 00000736 _____ C:\Users\Tina\Desktop\Revo Uninstaller.lnk
2013-07-31 20:05 - 2013-07-31 20:05 - 00003422 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2005.xml
2013-07-31 20:03 - 2013-07-31 20:03 - 00003422 _____ C:\Users\Tina\Desktop\HitmanPro_20130731_2002.xml
2013-07-31 19:58 - 2013-07-31 19:58 - 00001901 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2013-07-31 19:58 - 2013-07-31 19:58 - 00000000 ____D C:\Program Files\HitmanPro
2013-07-31 19:58 - 2013-07-31 19:57 - 09833328 _____ (SurfRight B.V.) C:\Users\Tina\Downloads\HitmanPro_x64.exe
2013-07-31 19:54 - 2011-05-10 22:04 - 00001124 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-31 19:53 - 2013-07-31 19:35 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-31 19:51 - 2013-07-31 19:51 - 00003232 _____ C:\Windows\System32\Tasks\DigitalSite
2013-07-31 19:51 - 2013-07-31 19:51 - 00003032 _____ C:\Windows\System32\Tasks\LyricXeeker Update
2013-07-31 19:51 - 2013-07-31 19:51 - 00001106 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Users\Tina\AppData\Roaming\DigitalSite
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Program Files (x86)\OpenIt
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Program Files (x86)\LyriXeeker
2013-07-31 19:51 - 2013-07-31 19:50 - 00717160 _____ C:\Users\Tina\Downloads\ZipOpenerSetup.exe
2013-07-31 19:49 - 2013-06-06 21:09 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Skype
2013-07-31 19:48 - 2013-07-31 19:48 - 00001457 _____ C:\AdwCleaner[R4].txt
2013-07-31 19:48 - 2013-07-31 19:48 - 00001450 _____ C:\AdwCleaner[S5].txt
2013-07-31 19:45 - 2013-07-31 19:45 - 00001318 _____ C:\Windows\PFRO.log
2013-07-31 19:45 - 2013-07-31 19:45 - 00000000 _____ C:\Windows\setuperr.log
2013-07-31 19:45 - 2011-05-25 20:48 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-07-31 19:41 - 2013-07-31 19:41 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-07-31 19:41 - 2013-07-31 19:41 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-31 19:41 - 2013-07-31 19:41 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-07-31 19:41 - 2013-07-31 19:41 - 00000000 ____D C:\Program Files\Java
2013-07-31 19:41 - 2011-05-10 22:20 - 00972712 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-07-31 19:40 - 2013-07-31 19:39 - 33150376 _____ (Oracle Corporation) C:\Users\Tina\Downloads\jre-7u25-windows-x64.exe
2013-07-31 19:39 - 2011-06-06 14:15 - 00000000 ____D C:\Users\Tina\AppData\Local\Adobe
2013-07-31 19:37 - 2013-07-31 19:37 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-07-31 19:37 - 2013-07-31 19:37 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-07-31 19:37 - 2011-05-10 22:01 - 00000000 ____D C:\ProgramData\Adobe
2013-07-31 19:35 - 2013-07-31 19:35 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-07-31 19:35 - 2013-07-31 19:35 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-31 19:35 - 2013-07-31 19:35 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-31 19:29 - 2011-05-25 20:48 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-07-31 19:29 - 2011-05-10 22:01 - 00000000 ____D C:\Program Files\Sony
2013-07-31 19:28 - 2011-05-10 22:01 - 00000000 ____D C:\Program Files (x86)\Sony
2013-07-31 19:28 - 2010-10-12 19:48 - 00000000 ____D C:\ProgramData\Sony Corporation
2013-07-31 19:28 - 2010-10-12 19:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-31 19:22 - 2013-07-29 10:58 - 00000000 ____D C:\ProgramData\Avira
2013-07-31 19:11 - 2013-07-31 19:03 - 00012890 _____ C:\Users\Tina\Desktop\Liste_CC.txt
2013-07-31 16:38 - 2013-07-31 16:38 - 02347384 _____ (ESET) C:\Users\Tina\Downloads\esetsmartinstaller_enu.exe
2013-07-31 16:38 - 2013-07-31 16:38 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-31 16:31 - 2013-07-31 16:30 - 00001318 _____ C:\AdwCleaner[S4].txt
2013-07-31 16:25 - 2013-07-31 16:25 - 00001258 _____ C:\AdwCleaner[S3].txt
2013-07-31 16:25 - 2013-07-31 16:24 - 00001195 _____ C:\AdwCleaner[R3].txt
2013-07-31 16:23 - 2013-07-31 16:23 - 00021610 _____ C:\ComboFix.txt
2013-07-31 16:23 - 2013-07-31 16:08 - 00000000 ____D C:\Qoobox
2013-07-31 16:23 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-07-31 16:21 - 2013-07-31 16:08 - 00000000 ____D C:\Windows\erdnt
2013-07-31 16:18 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-07-31 16:16 - 2009-07-14 04:34 - 59768832 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-07-31 16:16 - 2009-07-14 04:34 - 20971520 _____ C:\Windows\system32\config\SYSTEM.bak
2013-07-31 16:16 - 2009-07-14 04:34 - 00786432 _____ C:\Windows\system32\config\DEFAULT.bak
2013-07-31 16:16 - 2009-07-14 04:34 - 00061440 _____ C:\Windows\system32\config\SAM.bak
2013-07-31 16:16 - 2009-07-14 04:34 - 00024576 _____ C:\Windows\system32\config\SECURITY.bak
2013-07-31 16:07 - 2013-07-31 16:07 - 05096636 ____R (Swearware) C:\Users\Tina\Downloads\ComboFix.exe
2013-07-31 15:11 - 2013-07-31 15:11 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-31 15:11 - 2013-07-31 15:11 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Malwarebytes
2013-07-31 15:11 - 2013-07-31 15:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-31 15:11 - 2013-07-31 15:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-31 15:10 - 2013-07-31 15:10 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Tina\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-31 14:43 - 2013-07-31 14:43 - 00001013 _____ C:\AdwCleaner[S2].txt
2013-07-31 14:42 - 2013-07-31 14:42 - 00000952 _____ C:\AdwCleaner[R2].txt
2013-07-31 13:27 - 2013-07-31 13:26 - 00026969 _____ C:\AdwCleaner[S1].txt
2013-07-31 13:26 - 2013-07-31 13:26 - 00026944 _____ C:\AdwCleaner[R1].txt
2013-07-31 13:25 - 2013-07-31 13:25 - 00666633 _____ C:\Users\Tina\Downloads\adwcleaner06.exe
2013-07-31 13:25 - 2013-07-31 13:25 - 00666633 _____ C:\Users\Tina\Downloads\adwcleaner06 (1).exe
2013-07-31 12:58 - 2011-05-10 22:04 - 00000000 ____D C:\Program Files\Google
2013-07-31 12:58 - 2011-05-10 22:04 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-31 11:02 - 2011-05-27 08:24 - 00000000 ____D C:\Users\Tina\AppData\Roaming\SoftGrid Client
2013-07-31 10:17 - 2011-05-27 07:38 - 00000000 ____D C:\Users\Tina\Desktop\tina
2013-07-31 08:56 - 2011-05-24 11:30 - 00000000 ____D C:\Users\Tina\AppData\Local\Google
2013-07-31 08:52 - 2013-07-29 12:59 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Windows Net Data
2013-07-30 08:21 - 2011-05-24 11:20 - 00066104 _____ C:\Users\Tina\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-29 13:04 - 2013-07-29 13:04 - 00010464 _____ C:\Windows\SysWOW64\sx_p2d.tlb
2013-07-29 13:01 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-07-29 13:00 - 2013-07-29 13:00 - 00000000 ____D C:\Users\Tina\Downloads\freepdf
2013-07-29 13:00 - 2013-07-29 13:00 - 00000000 ____D C:\SoftwareUpdater
2013-07-29 12:59 - 2013-07-29 12:59 - 00000635 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-07-29 12:59 - 2011-05-24 11:22 - 00000000 ___RD C:\Users\Tina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-29 12:57 - 2013-07-29 12:57 - 00444400 _____ C:\Users\Tina\Downloads\DLG_free-pdf-perfect_chip_de-DE10 (1).exe
2013-07-29 12:57 - 2013-07-29 12:57 - 00000207 _____ C:\Users\Tina\Desktop\Amazon.url
2013-07-29 12:56 - 2013-07-29 12:56 - 00444400 _____ C:\Users\Tina\Downloads\DLG_free-pdf-perfect_chip_de-DE10.exe
2013-07-29 11:00 - 2013-07-29 11:00 - 00000000 ____D C:\Users\Tina\AppData\Roaming\Mozilla
2013-07-16 11:49 - 2011-05-10 22:04 - 00004120 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-16 11:49 - 2011-05-10 22:04 - 00003868 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-15 09:44 - 2013-07-15 09:44 - 00294240 _____ C:\Users\Tina\Downloads\Love Word Wallpaper Wallpaper.exe
2013-07-14 21:30 - 2013-07-14 21:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-14 21:30 - 2013-07-14 21:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-14 19:33 - 2013-06-06 21:09 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-14 19:33 - 2011-05-10 22:19 - 00000000 ____D C:\ProgramData\Skype

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-07-28 13:38

==================== End Of Log ============================

--- --- ---

http://www_getwindowinfo/

Log-Analyse und Auswertung: http://www_getwindowinfo/

http://www_getwindowinfo/

http://www_getwindowinfo/

Ähnliche Themen: http://www_getwindowinfo/