Plus HD 4-2 hat mich erwischt, als Programmanhängsel :-(

tillobel · 28.01.2014, 19:28

Hallo, mich hat es wieder erwischt, hatte ein Programm geladen von chip.de und im Anhang war Plus-HD 4-2, hatte bei avira eine Fehlermeldung bekommen, und dann Malwarebytes Anti-Malware laufen lassen, und diese log-Datei habe ich bekommen.
Wer kann helfen?
Danke im voraus.
Gruß

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.28.06

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Karina :: KARINA-PC [Administrator]

28.01.2014 18:17:02
MBAM-log-2014-01-28 (19-14-46).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 245126
Laufzeit: 14 Minute(n), 46 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 13
HKCR\CLSID\{11111111-1111-1111-1111-110311921102} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{44444444-4444-4444-4444-440344924402} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\Interface\{55555555-5555-5555-5555-550355925502} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039202.BHO.1 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311921102} (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039202.BHO (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039202.Sandbox (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCR\CrossriderApp0039202.Sandbox.1 (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCU\Software\AppDataLow\Software\Crossrider (PUP.Optional.CrossRider.A) -> Keine Aktion durchgeführt.
HKCU\Software\InstalledBrowserExtensions\Plus HD (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Plus-HD-4.2 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Bösartig: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Keine Aktion durchgeführt.

Infizierte Verzeichnisse: 2
C:\Program Files\Plus-HD-4.2 (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Local\Updater12747 (PUP.Optional.Dealspy) -> Keine Aktion durchgeführt.

Infizierte Dateien: 24
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-bho.dll (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Roaming\awesomehp\awesomehp.exe (PUP.Optional.NationZoom.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Roaming\awesomehp\UpDate.dll (PUP.Optional.SkyTech.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Local\temp\~nsu.tmp\Au_.exe (PUP.Optional.PlusHD.A.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.2-chromeinstaller.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.2-codedownloader.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.2-enabler.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.2-firefoxinstaller.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Windows\Tasks\Plus-HD-4.2-updater.job (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Roaming\Explorer.EXE_log.txt (Trojan.Agent.Gen) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\39202.crx (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\39202.xpi (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\background.html (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Installer.log (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-bg.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-chromeinstaller.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-codedownloader.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-enabler.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-firefoxinstaller.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-updater.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Plus-HD-4.2.ico (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\Uninstall.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Program Files\Plus-HD-4.2\utils.exe (PUP.Optional.PlusHD.A) -> Keine Aktion durchgeführt.
C:\Users\Karina\AppData\Local\Updater12747\Updater12747.exe (PUP.Optional.Dealspy) -> Keine Aktion durchgeführt.

(Ende)

schrauber · 28.01.2014, 22:09

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

tillobel · 29.01.2014, 17:47

Hallo, danke, habe ich gemacht, hier die Logdateien.
Vor dem ersten Scan war kein Häkchen bei List BCD, Drivers MD5 und bei Addition txt
Hatte den Scan gemacht, ohne Kästchen zu verändern, und erst beim zweiten Scan bei Addition txt angeklickt.

Gruß

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by Karina (administrator) on KARINA-PC on 29-01-2014 17:38:53
Running from C:\Users\Karina\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) ===================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
() C:\Windows\System32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(LULU Software) C:\Program Files\Soda PDF 5\HelperService.exe
(LULU Software) C:\Program Files\Soda PDF 5\ConversionService.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Dropbox, Inc.) C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\Hp\Digital Imaging\bin\hpqgpc01.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Farbar) C:\Users\Karina\Desktop\FRST(1).exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PDF Complete] - C:\Program Files\PDF Complete\pdfsty.exe [319000 2008-08-08] (PDF Complete Inc)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2012-01-24] (IDT, Inc.)
HKLM\...\Run: [hpqSRMon] - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [81920 2008-03-13] (Hewlett-Packard)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [PDFPrint] - C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2013-06-25] (RealNetworks, Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-04-02] (Google Inc.)
HKCU\...\Run: [AudialsNotifier] - C:\Program Files\Audials\Audials 11\AudialsNotifier.exe
HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
HKU\Gast\...\Run: [WindowsWelcomeCenter] - C:\windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2009-05-19] (Hewlett-Packard Company)
HKU\Gast\...\Winlogon: [Shell] [[%%INSTALLTIME%%]]
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
SearchScopes: HKCU - {AB85A01E-1463-4BA4-B129-1C7DD81BE135} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3286379&CUI=UN29256807951008725
SearchScopes: HKCU - {D7372796-5B7D-4C25-A2B3-1BB0C4E108B0} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-3&o=APN10395&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^ABT&apn_dtid=^YYYYYY^YY^DE&apn_uid=ba01c8f6-7a56-4cb4-9041-bc61a035fbc5&apn_sauid=B8BBC4B9-5ACB-4842-B9A3-9BB75F2856EA
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Plus-HD-4.2 - {11111111-1111-1111-1111-110311921102} - C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-bho.dll (Plus HD)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll (LULU Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {15BE8BEE-4105-4A79-B385-25068AA967DB} hxxp://dizun95pzobbc.cloudfront.net/VBIMDPlayer.CAB
DPF: {32E7B36C-7960-4A42-B83B-D8AFD0AAEF2B} hxxp://dizun95pzobbc.cloudfront.net/INDBrowser.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1

FireFox:
========
FF ProfilePath: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default
FF user.js: detected! => C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\1390503926_xpi [2014-01-23]
FF Extension: Plus-HD-4.2 - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\4a36b460-5966-4a44-96b2-c66dc9e96aef@620c1174-9430-4c20-bd46-cf4730b71caf.com [2014-01-29]
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\staged [2014-01-29]
FF Extension: WOT - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: GutscheinWelle.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\addon@gutscheinwelle.de.xpi [2013-03-24]
FF Extension: Gutscheinsammler.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\alarm@gutscheinsammler.de.xpi [2011-10-19]
FF Extension: WEB.DE MailCheck - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\toolbar@web.de.xpi [2013-11-26]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-22]
FF Extension: Adblock Plus - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-05-09]
FF HKLM\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files\Soda PDF 5\FFSoda5Ext [2013-02-07]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-06-25]
FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]

Chrome: 
=======
CHR Extension: (Plus-HD-4.2) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikglgnekadileanonnapmgkeklpgjifk [2014-01-23]
CHR Extension: (Google Wallet) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-09-08]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

========================== Services (Whitelisted) =================

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-03-27] (LSI Corporation)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-04-05] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [125496 2011-02-23] (Hewlett-Packard Company)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2013-03-26] (Nitro PDF Software)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [777240 2008-08-08] (PDF Complete Inc)
R2 ProtexisLicensing; C:\windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
R2 Soda PDF 5 Helper Service; C:\Program Files\Soda PDF 5\HelperService.exe [1069408 2013-01-29] (LULU Software)
R2 Soda PDF 5 Service; C:\Program Files\Soda PDF 5\ConversionService.exe [794464 2013-01-29] (LULU Software)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [254034 2012-01-24] (IDT, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1529656 2013-12-11] (TuneUp Software)
R2 WTGService; C:\Program Files\Verbindungsassistent\WTGService.exe [296400 2009-03-03] ()

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [45184 2012-03-05] (Advanced Micro Devices)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
S3 azvusb; C:\windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
R3 btwampfl; C:\windows\system32\drivers\btwampfl.sys [522280 2012-02-20] (Broadcom Corporation.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\windows\system32\drivers\mbamswissarmy.sys [40776 2014-01-28] (Malwarebytes Corporation)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
S3 mod7700; C:\windows\System32\Drivers\mod7700.sys [819072 2008-06-26] (DiBcom SA)
R2 NPF_devolo; C:\windows\system32\drivers\npf_devolo.sys [35840 2007-02-07] (CACE Technologies)
R3 PSI; C:\windows\System32\DRIVERS\psi_mf.sys [15544 2011-12-16] (Secunia)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765184 2009-05-27] ()
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-07] (Avira GmbH)
S3 tbhsd; C:\windows\System32\drivers\tbhsd.sys [39048 2013-12-18] (RapidSolution Software AG)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software)
U5 AppMgmt; C:\windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Karina\AppData\Local\Temp\catchme.sys [x]
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 17:33 - 2014-01-29 17:39 - 00027520 _____ C:\Users\Karina\Desktop\FRST.txt
2014-01-29 17:32 - 2014-01-29 17:32 - 01137152 _____ (Farbar) C:\Users\Karina\Desktop\FRST(1).exe
2014-01-29 17:20 - 2014-01-29 17:20 - 00001994 _____ C:\windows\PFRO.log
2014-01-28 20:05 - 2014-01-28 20:08 - 00050785 _____ C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-28 19:34 - 2014-01-28 19:34 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 19:34 - 2014-01-28 19:34 - 00000000 _____ C:\windows\setupact.log
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:28 - 2014-01-23 20:28 - 00000743 _____ C:\Users\Public\Desktop\Audials 11.lnk
2014-01-23 20:25 - 2014-01-28 17:58 - 00000000 ____D C:\Program Files\Audials
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-23 20:24 - 2014-01-29 17:22 - 00001318 _____ C:\windows\Tasks\Plus-HD-4.2-updater.job
2014-01-23 20:24 - 2014-01-29 17:20 - 00001270 _____ C:\windows\Tasks\Plus-HD-4.2-codedownloader.job
2014-01-23 20:24 - 2014-01-29 17:20 - 00001142 _____ C:\windows\Tasks\Plus-HD-4.2-enabler.job
2014-01-23 20:23 - 2014-01-29 17:22 - 00002104 _____ C:\windows\Tasks\Plus-HD-4.2-firefoxinstaller.job
2014-01-23 20:23 - 2014-01-29 17:22 - 00002094 _____ C:\windows\Tasks\Plus-HD-4.2-chromeinstaller.job
2014-01-23 20:23 - 2014-01-23 20:24 - 00000000 ____D C:\Program Files\Plus-HD-4.2
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D C:\Users\Karina\Documents\StreamTransport
2014-01-23 20:07 - 2014-01-24 06:37 - 00000000 ____D C:\Program Files\maucampo
2014-01-23 20:07 - 2014-01-23 20:14 - 00000000 ____D C:\Program Files\Optimizer Pro
2014-01-23 20:06 - 2014-01-23 20:18 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-23 20:06 - 2014-01-23 20:17 - 00000000 ____D C:\ProgramData\WPM
2014-01-23 20:06 - 2014-01-23 20:17 - 00000000 ____D C:\Program Files\SupTab
2014-01-23 20:05 - 2014-01-23 20:17 - 00000000 ____D C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-21 12:18 - 2014-01-28 17:28 - 00040776 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamswissarmy.sys
2014-01-16 14:35 - 2014-01-16 15:00 - 280959597 _____ C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:07 - 420147412 _____ C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:06 - 399320944 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:03 - 419156734 _____ C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 13:15 - 426167326 _____ C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 12:52 - 2014-01-16 13:13 - 422647374 _____ C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:34 - 2014-01-16 12:55 - 390191731 _____ C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:54 - 412382924 _____ C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:53 - 414804923 _____ C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:29 - 2014-01-16 12:50 - 515775422 _____ C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:14 - 2014-01-16 07:27 - 413453745 _____ C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:02 - 2014-01-16 07:10 - 686335370 _____ C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:59 - 203068161 _____ C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:47 - 2014-01-16 06:58 - 206206873 _____ C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:44 - 2014-01-16 06:56 - 140235089 _____ C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:42 - 2014-01-16 07:01 - 416763092 _____ C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:41 - 2014-01-16 06:52 - 197738666 _____ C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:52 - 209105662 _____ C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:48 - 207194922 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:01 - 419770112 _____ C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:00 - 269787082 _____ C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:24 - 2014-01-15 19:37 - 223647669 _____ C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:33 - 2014-01-08 22:37 - 136520908 _____ C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 21:39 - 2014-01-08 22:10 - 284817112 _____ C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 290677052 _____ C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 282046213 _____ C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:34 - 2014-01-08 22:22 - 827329488 _____ C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 21:07 - 2014-01-08 21:33 - 373592099 _____ C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:06 - 2014-01-08 21:33 - 409127775 _____ C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 20:58 - 2014-01-08 21:13 - 200159427 _____ C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 20:57 - 2014-01-08 21:14 - 204518895 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 20:33 - 2014-01-08 20:55 - 418706883 _____ C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:32 - 2014-01-08 21:00 - 452897833 _____ C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:05 - 2014-01-08 20:31 - 351121086 _____ C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 19:39 - 2014-01-08 20:26 - 441094125 _____ C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 19:37 - 2014-01-08 20:01 - 206315496 _____ C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:23 - 411643595 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:20 - 422671764 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 18:59 - 2014-01-08 19:25 - 400611108 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 18:58 - 2014-01-08 19:26 - 403423416 _____ C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 18:57 - 2014-01-08 19:12 - 203909028 _____ C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:34 - 2014-01-08 18:47 - 199078752 _____ C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-08 18:31 - 2014-01-08 18:51 - 415860637 _____ C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-07 22:22 - 2014-01-07 22:39 - 375114103 _____ C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-03 23:54 - 2012-07-12 12:45 - 02109952 _____ C:\Users\Karina\Documents\Autogrammsammlung.xls
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk
2014-01-01 21:49 - 2014-01-27 17:21 - 00000103 _____ C:\windows\wiso.ini
2014-01-01 21:49 - 2014-01-01 21:50 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl
2014-01-01 21:46 - 2014-01-01 21:46 - 00000000 ____D C:\Program Files\WISO
2014-01-01 21:44 - 2014-01-01 21:49 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH
2013-12-30 22:46 - 2013-12-30 22:46 - 00038912 _____ C:\Users\Karina\Desktop\Schichtplan 2014 Horst.xls

==================== One Month Modified Files and Folders =======

2060-08-18 18:02 - 2010-08-01 20:41 - 02023424 _____ (Inprise Corporation) C:\windows\system32\VCL50.BPL
2060-08-18 18:02 - 2010-08-01 20:41 - 01496064 _____ (Inprise Corporation) C:\windows\system32\CC3250MT.DLL
2060-08-18 18:02 - 2010-08-01 20:41 - 00248832 _____ (Inprise Corporation) C:\windows\system32\VCLX50.BPL
2060-08-18 17:40 - 2010-08-01 20:41 - 00909824 _____ (Inprise Corporation) C:\windows\system32\cp3245mt.dll
2014-01-29 17:39 - 2014-01-29 17:33 - 00027520 _____ C:\Users\Karina\Desktop\FRST.txt
2014-01-29 17:38 - 2013-08-05 07:42 - 00000000 ____D C:\FRST
2014-01-29 17:32 - 2014-01-29 17:32 - 01137152 _____ (Farbar) C:\Users\Karina\Desktop\FRST(1).exe
2014-01-29 17:29 - 2013-07-10 11:17 - 01076876 _____ C:\windows\WindowsUpdate.log
2014-01-29 17:26 - 2013-12-06 08:46 - 00000000 ___RD C:\Users\Karina\Dropbox
2014-01-29 17:26 - 2013-12-06 08:41 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Dropbox
2014-01-29 17:22 - 2014-01-23 20:24 - 00001318 _____ C:\windows\Tasks\Plus-HD-4.2-updater.job
2014-01-29 17:22 - 2014-01-23 20:23 - 00002104 _____ C:\windows\Tasks\Plus-HD-4.2-firefoxinstaller.job
2014-01-29 17:22 - 2014-01-23 20:23 - 00002094 _____ C:\windows\Tasks\Plus-HD-4.2-chromeinstaller.job
2014-01-29 17:20 - 2014-01-29 17:20 - 00001994 _____ C:\windows\PFRO.log
2014-01-29 17:20 - 2014-01-23 20:24 - 00001270 _____ C:\windows\Tasks\Plus-HD-4.2-codedownloader.job
2014-01-29 17:20 - 2014-01-23 20:24 - 00001142 _____ C:\windows\Tasks\Plus-HD-4.2-enabler.job
2014-01-29 17:20 - 2012-01-25 21:35 - 00000388 _____ C:\windows\Tasks\Final Media Player Update Checker.job
2014-01-29 17:20 - 2010-04-02 10:19 - 00001094 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-29 17:20 - 2006-11-02 13:58 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-29 17:20 - 2006-11-02 13:45 - 00003216 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 17:20 - 2006-11-02 13:45 - 00003216 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-28 22:20 - 2012-11-23 11:48 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-28 21:42 - 2010-04-02 10:19 - 00001098 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-28 20:10 - 2010-08-10 10:42 - 00000000 ____D C:\Users\Karina\AppData\Roaming\UseNeXT
2014-01-28 20:08 - 2014-01-28 20:05 - 00050785 _____ C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-28 19:58 - 2010-05-02 22:21 - 00000000 ____D C:\Users\Karina\Documents\UseNeXT
2014-01-28 19:57 - 2008-04-16 16:33 - 00112914 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-28 19:56 - 2010-03-19 08:33 - 00000000 ____D C:\Users\Karina\AppData\Roaming\vlc
2014-01-28 19:34 - 2014-01-28 19:34 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 19:34 - 2014-01-28 19:34 - 00000000 _____ C:\windows\setupact.log
2014-01-28 17:58 - 2014-01-23 20:25 - 00000000 ____D C:\Program Files\Audials
2014-01-28 17:35 - 2010-03-19 11:55 - 00000052 _____ C:\windows\system32\DOErrors.log
2014-01-28 17:28 - 2014-01-21 12:18 - 00040776 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamswissarmy.sys
2014-01-28 15:12 - 2010-01-02 20:48 - 00000000 ____D C:\ProgramData\PDFC
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 17:21 - 2014-01-01 21:49 - 00000103 _____ C:\windows\wiso.ini
2014-01-27 15:43 - 2013-03-04 05:41 - 00000000 ____D C:\Program Files\ElsterFormular
2014-01-27 15:40 - 2010-03-18 12:39 - 00000000 ____D C:\Users\Karina
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-24 06:37 - 2014-01-23 20:07 - 00000000 ____D C:\Program Files\maucampo
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:28 - 2014-01-23 20:28 - 00000743 _____ C:\Users\Public\Desktop\Audials 11.lnk
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-23 20:24 - 2014-01-23 20:23 - 00000000 ____D C:\Program Files\Plus-HD-4.2
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:18 - 2014-01-23 20:06 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-23 20:17 - 2014-01-23 20:06 - 00000000 ____D C:\ProgramData\WPM
2014-01-23 20:17 - 2014-01-23 20:06 - 00000000 ____D C:\Program Files\SupTab
2014-01-23 20:17 - 2014-01-23 20:05 - 00000000 ____D C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-23 20:17 - 2013-06-25 06:01 - 00001963 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-23 20:17 - 2013-01-23 20:04 - 00000879 _____ C:\Users\Karina\Desktop\Internet Explorer.lnk
2014-01-23 20:17 - 2011-04-19 10:34 - 00000806 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-23 20:17 - 2010-03-18 13:40 - 00000909 _____ C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-23 20:14 - 2014-01-23 20:07 - 00000000 ____D C:\Program Files\Optimizer Pro
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D C:\Users\Karina\Documents\StreamTransport
2014-01-23 18:37 - 2010-03-18 21:05 - 00143872 _____ C:\Users\Karina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-17 14:03 - 2012-03-29 07:27 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Nitro PDF
2014-01-17 07:22 - 2013-12-06 08:46 - 00000961 _____ C:\Users\Karina\Desktop\Dropbox.lnk
2014-01-17 07:22 - 2013-12-06 08:43 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-16 15:07 - 2014-01-16 14:34 - 420147412 _____ C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 15:06 - 2014-01-16 14:34 - 399320944 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 15:03 - 2014-01-16 14:34 - 419156734 _____ C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 15:00 - 2014-01-16 14:35 - 280959597 _____ C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 13:15 - 2014-01-16 12:53 - 426167326 _____ C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 13:13 - 2014-01-16 12:52 - 422647374 _____ C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:55 - 2014-01-16 12:34 - 390191731 _____ C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:54 - 2014-01-16 12:33 - 412382924 _____ C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 12:33 - 414804923 _____ C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:50 - 2014-01-16 12:29 - 515775422 _____ C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:27 - 2014-01-16 07:14 - 413453745 _____ C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:10 - 2014-01-16 07:02 - 686335370 _____ C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 07:01 - 2014-01-16 06:42 - 416763092 _____ C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:59 - 2014-01-16 06:48 - 203068161 _____ C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:58 - 2014-01-16 06:47 - 206206873 _____ C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:56 - 2014-01-16 06:44 - 140235089 _____ C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:41 - 197738666 _____ C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:40 - 209105662 _____ C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:40 - 207194922 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 23:01 - 2014-01-15 22:53 - 419770112 _____ C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 23:00 - 2014-01-15 22:53 - 269787082 _____ C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:37 - 2014-01-15 19:24 - 223647669 _____ C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:23 - 2013-02-12 14:14 - 00000000 ____D C:\Program Files\PDF24
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:37 - 2014-01-08 22:33 - 136520908 _____ C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 22:22 - 2014-01-08 21:34 - 827329488 _____ C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:39 - 284817112 _____ C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 290677052 _____ C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 282046213 _____ C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:07 - 373592099 _____ C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:06 - 409127775 _____ C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 21:14 - 2014-01-08 20:57 - 204518895 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 21:13 - 2014-01-08 20:58 - 200159427 _____ C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 21:00 - 2014-01-08 20:32 - 452897833 _____ C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:55 - 2014-01-08 20:33 - 418706883 _____ C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:31 - 2014-01-08 20:05 - 351121086 _____ C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 20:26 - 2014-01-08 19:39 - 441094125 _____ C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 20:23 - 2014-01-08 19:36 - 411643595 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 20:20 - 2014-01-08 19:36 - 422671764 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 20:01 - 2014-01-08 19:37 - 206315496 _____ C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:26 - 2014-01-08 18:58 - 403423416 _____ C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 19:25 - 2014-01-08 18:59 - 400611108 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 19:12 - 2014-01-08 18:57 - 203909028 _____ C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:51 - 2014-01-08 18:31 - 415860637 _____ C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-08 18:47 - 2014-01-08 18:34 - 199078752 _____ C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-07 22:39 - 2014-01-07 22:22 - 375114103 _____ C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-07 21:05 - 2010-04-06 12:55 - 00000680 _____ C:\Users\Karina\AppData\Local\d3d9caps.dat
2014-01-02 20:16 - 2010-12-05 18:50 - 00000000 ____D C:\Users\Karina\Desktop\Sarah
2014-01-02 20:02 - 2013-02-21 00:43 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Winamp
2014-01-02 19:51 - 2010-08-03 13:39 - 00000000 ____D C:\Users\Karina\Documents\Briefe
2014-01-02 17:09 - 2010-11-02 18:41 - 00000000 ____D C:\Users\Karina\Documents\DVDVideoSoft
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk
2014-01-02 10:45 - 2006-11-02 13:58 - 00032566 _____ C:\windows\Tasks\SCHEDLGU.TXT
2014-01-01 21:50 - 2014-01-01 21:49 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl
2014-01-01 21:49 - 2014-01-01 21:44 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH
2014-01-01 21:46 - 2014-01-01 21:46 - 00000000 ____D C:\Program Files\WISO
2014-01-01 21:46 - 2010-01-02 20:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-30 22:46 - 2013-12-30 22:46 - 00038912 _____ C:\Users\Karina\Desktop\Schichtplan 2014 Horst.xls
2013-12-30 21:30 - 2013-01-15 21:06 - 00000000 ____D C:\Users\Karina\Desktop\Qualitätshandbuch Ambulant 2011 Kopf und Fusszeile ok

Files to move or delete:
====================
C:\Users\Karina\PhotoCardMaker_1.0.2.exe


Some content of TEMP:
====================
C:\Users\Karina\AppData\Local\temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by Karina at 2014-01-29 17:39:46
Running from C:\Users\Karina\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 2.1.4 - Hewlett-Packard) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05)  MUI (Version: 11.0.05 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.923.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.873.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
Anti-Twin (Installation 13.09.2012) (Version:  - Joerg Rosenthal, Germany)
Audials (Version: 11.0.48200.0 - Audials AG)
Avira Free Antivirus (Version: 14.0.2.286 - Avira)
Broadcom 802.11 Network Adapter (Version: 5.100.235.19 - Broadcom Corporation)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.18.12 - Broadcom Corporation)
BufferChm (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (Version: 2.03.0000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0416.1448.24731 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.04 - Piriform)
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)
CPQ Wallpaper (Version: 1.0.1.1 - Hewlett-Packard)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Access Objects (DAO) 3.5 (Version:  - )
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DivX-Setup (Version: 2.6.1.9 - DivX, LLC)
DJ_AIO_03_F4200_Software (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4220_ProductContext (Version: 110.0.238.000 - Hewlett-Packard) Hidden
Driver Genius Professional Edition (Version: 11.0 - Driver-Soft Inc.)
Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)
EdenCity Download (Version: 12.0 - Edencity AG)
ElsterFormular (Version: 15.0.13345 - Landesfinanzdirektion Thüringen)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
EVEREST Home Edition v2.20 (Version: 2.20 - Lavalys Inc)
F4200 (Version: 110.0.238.000 - Ihr Firmenname) Hidden
F4210_Help (Version: 110.0.238.000 - Hewlett-Packard) Hidden
File Type Assistant (Version:  - Trusted Software) <==== ATTENTION
Final Media Player 2011 (Version:  - Bitberry Software)
Free YouTube Download version 3.1.41.1201 (Version: 3.1.41.1201 - DVDVideoSoft Ltd.)
Google Chrome (Version: 32.0.1700.76 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
GPBaseService (Version: 110.0.180.000 - Hewlett-Packard) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HomePlug-Konfigurationsassistent (Version: 1.0.0.0 - HomePlug)
HP Common Access Service Library (Version: 2.0.6.1 - Hewlett-Packard) Hidden
HP Common Access Service Library (Version: 3.0.22.1 - Hewlett-Packard)
HP Customer Experience Enhancements (Version: 6.0.1.3 - Hewlett-Packard) Hidden
HP Customer Participation Program 11.0 (Version: 11.0 - HP)
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3 (Version: 11.0 - HP)
HP ESU for Microsoft Vista (Version: 3.0.3.1 - Hewlett-Packard)
HP Imaging Device Functions 11.0 (Version: 11.0 - HP)
HP Photosmart Essential 2.5 (Version: 1.03.0000 - Hewlett-Packard) Hidden
HP Photosmart Essential 3.0 (Version: 3.0 - HP)
HP Quick Launch Buttons 6.50 A1 (Version: 6.50 A1 - Hewlett-Packard)
HP Setup (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Smart Web Printing 4.60 (Version: 4.60 - HP)
HP Software Setup (Version: 1.0.0.14 - Hewlett-Packard)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HP User Guides 0133 (Version: 1.01.0000 - Hewlett-Packard)
HP Web Camera (Version: 1.0.0 - Hewlett-Packard) Hidden
HP Webcam (Version: 1.0.25.0 - Roxio)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.) Hidden
HP Webcam Driver (Version: 5.8.50007.0 - Sonix)
HP Wireless Assistant (Version: 3.50.4.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 110.0.180.000 - Hewlett-Packard) Hidden
IDT Audio (Version: 1.0.6300.0 - IDT)
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.)
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.) Hidden
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lager (Version: 1.0.0.0 - Hewlett-Packard) Hidden
LightScribe System Software (Version: 1.18.5.1 - LightScribe)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (Version: 110.0.180.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version:  - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 22.0 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCSetup (Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Nitro Reader 3 (Version: 3.5.2.10 - Nitro)
PDF Complete (Version: 3.5.57 - PDF Complete, Inc.)
PDF24 Creator 6.2.0 (Version:  - PDF24.org)
PhotoCardMaker 1.0.2 (Version:  - Kigosoft Inc.)
PSSWCORE (Version: 2.03.0000 - Hewlett-Packard) Hidden
QuickPar 0.9 (Version: 0.9 - Peter B. Clements)
RealDownloader (Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (Version: 16.0.2 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roxio Activation Module (Version: 1.0 - Roxio) Hidden
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Business (Version: 10.1 - Roxio)
Roxio Creator Business v10 (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.2 - Roxio) Hidden
Roxio MyDVD (Version: 10.1.048 - Roxio) Hidden
Scan (Version: 11.0.0.0 - Hewlett-Packard) Hidden
Screenshot Captor 4.5.00 (Version:  - )
Secunia PSI (3.0.0.4001) (Version: 3.0.0.4001 - Secunia)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Shop for HP Supplies (Version: 11.0 - HP)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
Soda PDF 5 (Version: 5.0.133.9133 - LULU SOFTWARE LIMITED)
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 12.2.2.0 - Synaptics Incorporated)
Toolbox (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software)
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.171 - TuneUp Software) Hidden
Uninstall 1.0.0.1 (Version:  - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
UseNeXT by Tangysoft (Version:  - Tangysoft Ltd.)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Verbindungsassistent (Version: 2.1 - Verbindungsassistent)
Video Downloader (Version: 1.14 - hxxp://www.vgrabber.com)
VideoDownloader version 0.1 (Version: 0.1 - )
VideoToolkit01 (Version: 110.0.171.000 - Hewlett-Packard) Hidden
Vista Default Settings (Version: 2.0.1.1 - Hewlett-Packard)
VLC media player 2.1.1 (Version: 2.1.1 - VideoLAN)
WebReg (Version: 110.0.180.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (Version: 6.5.1.2350 - Broadcom Corporation)
Winamp (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7 - win.rar GmbH)
WISO Steuer-Sparbuch 2014 (Version: 21.01.8499 - Buhl Data Service GmbH)

==================== Restore Points  =========================

19-01-2014 19:43:37 Geplanter Prüfpunkt
20-01-2014 21:10:29 Geplanter Prüfpunkt
22-01-2014 06:49:45 Geplanter Prüfpunkt
23-01-2014 12:10:20 Geplanter Prüfpunkt
23-01-2014 19:23:12 Installed Audials
23-01-2014 19:31:20 Gerätetreiber-Paketinstallation: RapidSolution Software Audio-, Video- und Gamecontroller
23-01-2014 19:32:28 Gerätetreiber-Paketinstallation: Audials AG Netzwerkdienst
28-01-2014 16:54:41 Removed Audials

==================== Hosts content: ==========================

2006-11-02 11:23 - 2013-08-05 08:56 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02A06FC3-11D8-4BC1-9E10-1DA77A774590} - System32\Tasks\PC Performer Manager => Sc.exe start PC Performer Manager
Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1AFCDD92-A8DB-4F96-ADEA-00E4747CF733} - System32\Tasks\Plus-HD-4.2-codedownloader => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-codedownloader.exe [2014-01-23] (Plus HD) <==== ATTENTION
Task: {2FE7D992-CC67-4611-876B-D0DEE0FFF179} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {4061B336-AB14-4E3A-98C6-3B1FAF6634E8} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {44106F55-202F-4986-96B9-9CF23C2DDE73} - System32\Tasks\GoforFilesUpdate => C:\Program Files\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {471A9C33-601C-4860-96F4-6CA3A5AC21BB} - System32\Tasks\Plus-HD-4.2-chromeinstaller => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-chromeinstaller.exe [2014-01-23] (Plus HD) <==== ATTENTION
Task: {50581EF0-BD22-4204-9EAD-ADA48BFD7869} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe [2013-12-11] (TuneUp Software)
Task: {51ED87E9-50CB-4BBA-B1C0-893FB9214143} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-01-14] (Microsoft)
Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {69A3E786-238F-4B35-9076-DF7EFDC1C312} - System32\Tasks\Plus-HD-4.2-firefoxinstaller => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-firefoxinstaller.exe [2014-01-23] (Plus HD) <==== ATTENTION
Task: {6E44BB04-524B-4F50-B72D-64F92811EA4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {73B3960F-A5D3-4C2E-BFCE-210BA439B0B4} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {7666FFCB-C5F4-488E-9DE7-F5A1404C7AB2} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7C5A51E8-1AD7-48C6-8879-257A8A9609F5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {899C5779-CEBA-476B-A8F7-C72142D34D9C} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Karina => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {900E2F2F-ABE6-40B6-B0D5-817C84CFC618} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {93761957-8A00-4121-8897-4990C0EC1FAD} - System32\Tasks\Plus-HD-4.2-enabler => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-enabler.exe [2014-01-23] (Plus HD) <==== ATTENTION
Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {AB0F9207-E0C6-4F90-8F4B-F59F88F56580} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-12] (Adobe Systems Incorporated)
Task: {ABFD1C07-9A8C-414C-B4E5-BEC166E86FEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {BD558A87-D5EC-43CE-A4A9-9128F28EF927} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {D4C4D371-2063-422F-8940-613576189681} - System32\Tasks\Plus-HD-4.2-updater => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-updater.exe [2014-01-23] (Plus HD) <==== ATTENTION
Task: {D9848B2D-97BE-48F5-A9C9-940B4C31C992} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {DE7B5564-CE63-4BD9-A629-D2BFD6EE5508} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {DE9059EE-FC20-4494-9E3A-68ED198FC8A2} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-06-25] (RealNetworks, Inc.)
Task: {E16EA34D-D6E3-4D3E-9004-D0E35674B04D} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {E3DE28D6-FD38-40B4-B2F0-F6825E7E97D2} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {E90BDC79-381E-408E-94EC-950FB0E3D750} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {EB1E2B3E-8F2E-48B6-8F93-1F1286A2D7BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {F4BEFF6F-07F5-457E-8144-9591938004F0} - System32\Tasks\Final Media Player Update Checker => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-03-11] (Bitberry Software)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Final Media Player Update Checker.job => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Plus-HD-4.2-chromeinstaller.job => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-chromeinstaller.exe <==== ATTENTION
Task: C:\windows\Tasks\Plus-HD-4.2-codedownloader.job => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-codedownloader.exe <==== ATTENTION
Task: C:\windows\Tasks\Plus-HD-4.2-enabler.job => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-enabler.exe <==== ATTENTION
Task: C:\windows\Tasks\Plus-HD-4.2-firefoxinstaller.job => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-firefoxinstaller.exe <==== ATTENTION
Task: C:\windows\Tasks\Plus-HD-4.2-updater.job => C:\Program Files\Plus-HD-4.2\Plus-HD-4.2-updater.exe <==== ATTENTION
Task: C:\windows\Tasks\User_Feed_Synchronization-{B8BFD705-AAFE-4AFD-A632-50DA975661F7}.job => C:\windows\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2013-08-07 11:17 - 2013-08-07 05:25 - 00394824 _____ () C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00065024 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2012-03-09 04:56 - 2012-03-09 04:56 - 00037376 _____ () C:\windows\system32\atitmpxx.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Karina\AppData\Roaming\Dropbox\bin\libcef.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-04-05 22:00 - 2012-04-05 22:00 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-12-10 20:53 - 2013-12-10 20:54 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-12-12 06:39 - 2013-12-12 06:39 - 16242056 _____ () C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
2011-03-03 00:37 - 2011-02-20 13:20 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES_419> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES_419> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN_GB> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN_GB> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EL> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EL> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)


System errors:
=============
Error: (01/29/2014 05:31:48 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (01/29/2014 05:22:42 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (01/29/2014 05:20:41 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (01/29/2014 05:20:25 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 28.01.2014 um 22:30:19 unerwartet heruntergefahren.

Error: (01/28/2014 10:00:03 PM) (Source: DCOM) (User: )
Description: {6295DF2D-35EE-11D1-8707-00C04FD93327}

Error: (01/28/2014 07:13:36 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (01/28/2014 05:31:28 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (01/28/2014 05:27:36 PM) (Source: Service Control Manager) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86

Error: (01/28/2014 05:27:05 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/28/2014 05:24:25 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service


Microsoft Office Sessions:
=========================
Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES_419

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES_419

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES

Error: (01/29/2014 05:33:35 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\ES

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN_GB

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN_GB

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EN

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EL

Error: (01/29/2014 05:33:34 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\NMMHKKEGCCAGDLDGIIMEDPICCMGMIEDA\0.0.6.0_0\_LOCALES\EL


CodeIntegrity Errors:
===================================
  Date: 2013-02-01 01:58:28.435
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.780
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.031
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:26.361
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.674
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.050
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:24.099
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:23.412
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.741
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.055
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 78%
Total physical RAM: 1788.06 MB
Available physical RAM: 391.53 MB
Total Pagefile: 3826.62 MB
Available Pagefile: 1822.13 MB
Total Virtual: 2047.88 MB
Available Virtual: 1917.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:132.05 GB) (Free:16.09 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:3.82 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.98 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: EAD9362D)
Partition 1: (Active) - (Size=132 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End Of Log ============================

--- --- ---

--- --- ---

schrauber · 30.01.2014, 16:00

MBAM nochmal laufen lassen, diesmal Funde löschen lassen.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

tillobel · 30.01.2014, 20:25

Hallo, habe alles gemacht, war aber irgendwie komisch, beim herunterfahren zum Neustart wurde jedes Mal ein Update gemacht, kann es sein, dass du etwas sehr tief sitzt und sich immer wieder neu installiert?
Hatte zweimal adw cleaner laufen lassen, und beide hier reingestellt.
Vielleicht kannst du erkennen, was sich da wieder installiert hat beim Update vorm Neustart.
Danke
Gruß

Code:

ATTFilter

# AdwCleaner v3.018 - Bericht erstellt am 30/01/2014 um 18:59:40
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# Benutzername : Karina - KARINA-PC
# Gestartet von : C:\Users\Karina\Downloads\adwcleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gefunden : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\invalidprefs.js
Datei Gefunden : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\11-suche.xml
Datei Gefunden : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\user.js
Datei Gefunden : C:\windows\System32\Tasks\GoforFilesUpdate
Ordner Gefunden C:\Program Files\driver-soft
Ordner Gefunden C:\Program Files\goforfiles
Ordner Gefunden C:\Program Files\optimizer pro
Ordner Gefunden C:\Users\Karina\AppData\Roaming\goforfiles

***** [ Verknüpfungen ] *****

Verknüpfung Gefunden : C:\Users\Public\Desktop\Google Chrome.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\Desktop\Internet Explorer.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )
Verknüpfung Gefunden : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk ( hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T )

***** [ Registrierungsdatenbank ] *****

Daten Gefunden : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command [(Default)] - "C:\Program Files\Google\Chrome\Application\chrome.exe" hxxp://www.sweet-page.com/?type=sc&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T
Schlüssel Gefunden : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gefunden : HKCU\Software\dsiteproducts
Schlüssel Gefunden : HKCU\Software\installedbrowserextensions
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OpenIt Open It!
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Video downloader
Schlüssel Gefunden : HKCU\Software\OCS
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550155275547}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660166276647}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366926602}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\GoforFilesUpdate
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\GoforFilesUpdate
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video downloader

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16496


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\prefs.js ]

Zeile gefunden : user_pref("browser.newtab.url", "hxxp://www.sweet-page.com/newtab/?type=nt&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T");
Zeile gefunden : user_pref("browser.search.defaultenginename", "sweet-page");
Zeile gefunden : user_pref("browser.search.selectedEngine", "sweet-page");
Zeile gefunden : user_pref("browser.startup.homepage", "hxxp://www.sweet-page.com/?type=hp&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T");
Zeile gefunden : user_pref("extensions.crossrider.bic", "13cf86a86db798eaa94099058e36e59d");

[ Datei : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\1uyw98oq.default\prefs.js ]


-\\ Google Chrome v32.0.1700.102

[ Datei : C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gefunden : homepage
Gefunden : search_url
Gefunden : keyword

*************************

AdwCleaner[R0].txt - [6212 octets] - [30/01/2014 18:59:40]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [6272 octets] ##########

2x

Code:

ATTFilter

# AdwCleaner v3.018 - Bericht erstellt am 30/01/2014 um 19:03:54
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# Benutzername : Karina - KARINA-PC
# Gestartet von : C:\Users\Karina\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files\driver-soft
Ordner Gelöscht : C:\Program Files\goforfiles
Ordner Gelöscht : C:\Program Files\optimizer pro
Ordner Gelöscht : C:\Users\Karina\AppData\Roaming\goforfiles
Datei Gelöscht : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\invalidprefs.js
Datei Gelöscht : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\11-suche.xml
Datei Gelöscht : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\user.js
Datei Gelöscht : C:\windows\System32\Tasks\GoforFilesUpdate

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\Users\Public\Desktop\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\Desktop\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Verknüpfung Desinfiziert : C:\Users\Karina\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{44106F55-202F-4986-96B9-9CF23C2DDE73}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{44106F55-202F-4986-96B9-9CF23C2DDE73}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550155275547}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660166276647}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366926602}
Daten Wiederhergestellt : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Schlüssel Gelöscht : HKCU\Software\dsiteproducts
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video downloader
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OpenIt Open It!
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Video downloader

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16496


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\prefs.js ]

Zeile gelöscht : user_pref("browser.newtab.url", "hxxp://www.sweet-page.com/newtab/?type=nt&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "sweet-page");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "sweet-page");
Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://www.sweet-page.com/?type=hp&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T");
Zeile gelöscht : user_pref("extensions.crossrider.bic", "13cf86a86db798eaa94099058e36e59d");

[ Datei : C:\Users\Gast\AppData\Roaming\Mozilla\Firefox\Profiles\1uyw98oq.default\prefs.js ]


-\\ Google Chrome v32.0.1700.102

[ Datei : C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage
Gelöscht : search_url
Gelöscht : keyword

*************************

AdwCleaner[R0].txt - [6352 octets] - [30/01/2014 18:59:40]
AdwCleaner[S0].txt - [5052 octets] - [30/01/2014 19:03:54]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5112 octets] ##########

Code:

ATTFilter

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows Vista (TM) Home Basic x86
Ran by Karina on 30.01.2014 at 19:58:02,74
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{C430996F-4AA8-4AA8-81DE-F54432CD5786}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-956183135-2741987076-3364311956-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220122272247}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220322922202}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111271147}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AB85A01E-1463-4BA4-B129-1C7DD81BE135}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D7372796-5B7D-4C25-A2B3-1BB0C4E108B0}



~~~ Files

Successfully deleted: [File] "C:\windows\System32\Tasks\pc performer manager"



~~~ Folders

Successfully deleted: [Folder] "C:\windows\system32\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{0329B498-1B2F-4EC3-B9D5-786545506CED}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{0B0EE973-7BA3-4135-BFC9-76F13AAE291C}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{0B4CEF26-BA3B-4F89-9516-F3599F99F364}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{147FDE18-ED1D-449D-AD73-49A914F693F9}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{1A5334DC-E0D7-4F47-820D-C06E06F7A790}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{1C9ABEF8-D53F-4C72-AC77-813AEFA6E20B}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{1E063210-38C7-421F-B35F-30A0C9B2E4B4}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{23ACE578-CF1D-47AF-8A56-833E130BEA94}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{25A45D9C-737D-409F-B39A-C06839B72A77}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{2B960914-3AA0-423F-9324-0AE0FD8C92A5}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{2CF54948-2FAE-464E-ACF4-7EFFC8354783}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{2EDFFD9D-8414-489D-89D1-77032107BC8D}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{324B45E2-1F4C-4860-8C74-E95E0D8CA9A7}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{3ADBF8D7-E317-4CBF-81BF-615134DD5D3E}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{3C7B4118-0A12-43F5-8030-02A1A0007DDB}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{4F8651DB-ED86-4332-8D61-D4B5BA328333}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{50658B91-16A5-4145-9B82-AF2FB387BD7D}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{5097BECF-B039-4513-9615-A062B0109C13}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{517FFA9F-FF09-47C3-9EA4-50DF341FB916}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{525609A1-89DF-4176-8866-1CD2E32CCE08}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{56057111-342E-4EE9-8C96-C9C7B7DA65D7}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{57F5E17A-6295-4AD9-AED2-B7D619727247}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{7032190B-01E7-464A-B5EE-201716959FB4}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{724A2EDB-3FEE-486E-9096-B756E7846702}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{737CD572-733F-42D5-9803-D35A1B2221A9}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{74782A88-FA6D-42C4-B737-FED6D19968DF}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{772355EC-F7BB-41EF-8E51-1F1D9DBF669D}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{7758BCEE-AEAF-4E4A-8AEC-6DC67AB20123}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{7A21FC5A-C3A8-4305-A5F7-F9222F31B68E}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{7D72A5CA-2108-451F-AFBB-0865AAC2919A}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{9D93634C-AD73-400D-B377-56A3E4C98973}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{A32F1008-1448-4697-A178-8A57CD9A3F6D}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{A72E2043-8A7D-4696-808B-CEF09015CDC3}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{AC93494F-0A61-4635-B946-1F232B277485}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{CBD9F45A-D9CA-4321-A3EC-F88247B26F22}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{D4A67AA8-1252-405E-BB01-51D5133218C6}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{DBA2C8FF-49ED-4784-8EC0-86D9037ECEF9}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{E0C216DA-EEF8-4E78-AC3B-CC2E502885AA}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{E50FFEF0-DFB5-4467-A21F-281F19FECB7D}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{E87DA9D3-4843-4F6D-A7B6-057AE0E77F64}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{F4906FFC-551F-4B03-819E-4037ADC2FBB0}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{F65767F8-0E30-4AA4-A580-2923E2B28BA1}
Successfully deleted: [Empty Folder] C:\Users\Karina\appdata\local\{FF625026-0EFC-43E1-BFF1-F913F30DD94B}



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Karina\AppData\Roaming\mozilla\firefox\profiles\e20hfb9f.default\extensions\4a36b460-5966-4a44-96b2-c66dc9e96aef@620c1174-9430-4c20-bd46-cf4730b71caf.com
Emptied folder: C:\Users\Karina\AppData\Roaming\mozilla\firefox\profiles\e20hfb9f.default\minidumps [147 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.01.2014 at 20:02:35,24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by Karina (administrator) on KARINA-PC on 30-01-2014 20:06:50
Running from C:\Users\Karina\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
() C:\Windows\System32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(LULU Software) C:\Program Files\Soda PDF 5\HelperService.exe
(LULU Software) C:\Program Files\Soda PDF 5\ConversionService.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Dropbox, Inc.) C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\Hp\Digital Imaging\bin\hpqgpc01.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Farbar) C:\Users\Karina\Desktop\FRST(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PDF Complete] - C:\Program Files\PDF Complete\pdfsty.exe [319000 2008-08-08] (PDF Complete Inc)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2012-01-24] (IDT, Inc.)
HKLM\...\Run: [hpqSRMon] - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [81920 2008-03-13] (Hewlett-Packard)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [PDFPrint] - C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-04-02] (Google Inc.)
HKCU\...\Run: [AudialsNotifier] - C:\Program Files\Audials\Audials 11\AudialsNotifier.exe
HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
HKU\Gast\...\Run: [WindowsWelcomeCenter] - C:\windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2009-05-19] (Hewlett-Packard Company)
HKU\Gast\...\Winlogon: [Shell] [[%%INSTALLTIME%%]]
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll (LULU Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {15BE8BEE-4105-4A79-B385-25068AA967DB} hxxp://dizun95pzobbc.cloudfront.net/VBIMDPlayer.CAB
DPF: {32E7B36C-7960-4A42-B83B-D8AFD0AAEF2B} hxxp://dizun95pzobbc.cloudfront.net/INDBrowser.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1

FireFox:
========
FF ProfilePath: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\1390503926_xpi [2014-01-23]
FF Extension: WOT - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: GutscheinWelle.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\addon@gutscheinwelle.de.xpi [2013-03-24]
FF Extension: Gutscheinsammler.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\alarm@gutscheinsammler.de.xpi [2011-10-19]
FF Extension: Extension_Protected - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi [2014-01-30]
FF Extension: Lightning Speed Dial - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\lightningnewtab@gmail.com.xpi [2014-01-30]
FF Extension: WEB.DE MailCheck - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\toolbar@web.de.xpi [2013-11-26]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-22]
FF Extension: Adblock Plus - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-05-09]
FF HKLM\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files\Soda PDF 5\FFSoda5Ext [2013-02-07]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-06-25]
FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\extensions\lightningnewtab@gmail.com.xpi
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\extensions\lightningnewtab@gmail.com.xpi [2014-01-30]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchProvider: sweet-page
CHR DefaultSearchURL: hxxp://www.sweet-page.com/web/?type=ds&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (RealDownloader) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-01-29]
CHR Extension: (Google Wallet) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-09-08]
CHR Extension: (Lightning speedDial) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkndmigholgfjlniaohblojbhgjbkakn [2014-01-30]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-30]

========================== Services (Whitelisted) =================

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-03-27] (LSI Corporation)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-04-05] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [125496 2011-02-23] (Hewlett-Packard Company)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2013-03-26] (Nitro PDF Software)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [777240 2008-08-08] (PDF Complete Inc)
R2 ProtexisLicensing; C:\windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
R2 Soda PDF 5 Helper Service; C:\Program Files\Soda PDF 5\HelperService.exe [1069408 2013-01-29] (LULU Software)
R2 Soda PDF 5 Service; C:\Program Files\Soda PDF 5\ConversionService.exe [794464 2013-01-29] (LULU Software)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [254034 2012-01-24] (IDT, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1529656 2013-12-11] (TuneUp Software)
R2 WTGService; C:\Program Files\Verbindungsassistent\WTGService.exe [296400 2009-03-03] ()

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [45184 2012-03-05] (Advanced Micro Devices)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
S3 azvusb; C:\windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
R3 btwampfl; C:\windows\system32\drivers\btwampfl.sys [522280 2012-02-20] (Broadcom Corporation.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
S3 mod7700; C:\windows\System32\Drivers\mod7700.sys [819072 2008-06-26] (DiBcom SA)
R2 NPF_devolo; C:\windows\system32\drivers\npf_devolo.sys [35840 2007-02-07] (CACE Technologies)
R3 PSI; C:\windows\System32\DRIVERS\psi_mf.sys [15544 2011-12-16] (Secunia)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765184 2009-05-27] ()
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-07] (Avira GmbH)
S3 tbhsd; C:\windows\System32\drivers\tbhsd.sys [39048 2013-12-18] (RapidSolution Software AG)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software)
U5 AppMgmt; C:\windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Karina\AppData\Local\Temp\catchme.sys [x]
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-30 20:02 - 2014-01-30 20:02 - 00006961 _____ C:\Users\Karina\Desktop\JRT.txt
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D C:\windows\ERUNT
2014-01-30 19:56 - 2014-01-30 19:56 - 01037068 _____ (Thisisu) C:\Users\Karina\Desktop\JRT.exe
2014-01-30 18:59 - 2014-01-30 19:08 - 00000000 ____D C:\AdwCleaner
2014-01-30 18:59 - 2014-01-30 18:59 - 01166132 _____ C:\Users\Karina\Downloads\adwcleaner.exe
2014-01-30 18:12 - 2014-01-30 19:12 - 00000296 _____ C:\windows\Tasks\Digital Sites.job
2014-01-30 18:12 - 2014-01-30 18:43 - 00000000 ____D C:\Users\Karina\AppData\Roaming\DigitalSites
2014-01-30 18:00 - 2014-01-30 18:46 - 00008726 _____ C:\windows\PFRO.log
2014-01-29 21:23 - 2014-01-29 21:23 - 06395960 _____ C:\Users\Karina\Downloads\attachments_20140129212725.zip
2014-01-29 17:33 - 2014-01-30 20:07 - 00027087 _____ C:\Users\Karina\Desktop\FRST.txt
2014-01-29 17:32 - 2014-01-29 17:32 - 01137152 _____ (Farbar) C:\Users\Karina\Desktop\FRST(1).exe
2014-01-28 20:05 - 2014-01-28 20:08 - 00050785 _____ C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:25 - 2014-01-28 17:58 - 00000000 ____D C:\Program Files\Audials
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D C:\Users\Karina\Documents\StreamTransport
2014-01-23 20:07 - 2014-01-24 06:37 - 00000000 ____D C:\Program Files\maucampo
2014-01-23 20:06 - 2014-01-30 18:46 - 00000000 ____D C:\ProgramData\WPM
2014-01-23 20:06 - 2014-01-30 18:13 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-23 20:06 - 2014-01-30 18:13 - 00000000 ____D C:\Program Files\SupTab
2014-01-23 20:05 - 2014-01-30 17:54 - 00000000 ____D C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-16 14:35 - 2014-01-16 15:00 - 280959597 _____ C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:07 - 420147412 _____ C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:06 - 399320944 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:03 - 419156734 _____ C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 13:15 - 426167326 _____ C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 12:52 - 2014-01-16 13:13 - 422647374 _____ C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:34 - 2014-01-16 12:55 - 390191731 _____ C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:54 - 412382924 _____ C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:53 - 414804923 _____ C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:29 - 2014-01-16 12:50 - 515775422 _____ C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:14 - 2014-01-16 07:27 - 413453745 _____ C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:02 - 2014-01-16 07:10 - 686335370 _____ C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:59 - 203068161 _____ C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:47 - 2014-01-16 06:58 - 206206873 _____ C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:44 - 2014-01-16 06:56 - 140235089 _____ C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:42 - 2014-01-16 07:01 - 416763092 _____ C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:41 - 2014-01-16 06:52 - 197738666 _____ C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:52 - 209105662 _____ C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:48 - 207194922 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:01 - 419770112 _____ C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:00 - 269787082 _____ C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:24 - 2014-01-15 19:37 - 223647669 _____ C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:33 - 2014-01-08 22:37 - 136520908 _____ C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 21:39 - 2014-01-08 22:10 - 284817112 _____ C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 290677052 _____ C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 282046213 _____ C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:34 - 2014-01-08 22:22 - 827329488 _____ C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 21:07 - 2014-01-08 21:33 - 373592099 _____ C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:06 - 2014-01-08 21:33 - 409127775 _____ C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 20:58 - 2014-01-08 21:13 - 200159427 _____ C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 20:57 - 2014-01-08 21:14 - 204518895 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 20:33 - 2014-01-08 20:55 - 418706883 _____ C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:32 - 2014-01-08 21:00 - 452897833 _____ C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:05 - 2014-01-08 20:31 - 351121086 _____ C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 19:39 - 2014-01-08 20:26 - 441094125 _____ C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 19:37 - 2014-01-08 20:01 - 206315496 _____ C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:23 - 411643595 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:20 - 422671764 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 18:59 - 2014-01-08 19:25 - 400611108 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 18:58 - 2014-01-08 19:26 - 403423416 _____ C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 18:57 - 2014-01-08 19:12 - 203909028 _____ C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:34 - 2014-01-08 18:47 - 199078752 _____ C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-08 18:31 - 2014-01-08 18:51 - 415860637 _____ C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-07 22:22 - 2014-01-07 22:39 - 375114103 _____ C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-03 23:54 - 2012-07-12 12:45 - 02109952 _____ C:\Users\Karina\Documents\Autogrammsammlung.xls
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk
2014-01-01 21:49 - 2014-01-27 17:21 - 00000103 _____ C:\windows\wiso.ini
2014-01-01 21:49 - 2014-01-01 21:50 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl
2014-01-01 21:46 - 2014-01-01 21:46 - 00000000 ____D C:\Program Files\WISO
2014-01-01 21:44 - 2014-01-01 21:49 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH

==================== One Month Modified Files and Folders =======

2060-08-18 18:02 - 2010-08-01 20:41 - 02023424 _____ (Inprise Corporation) C:\windows\system32\VCL50.BPL
2060-08-18 18:02 - 2010-08-01 20:41 - 01496064 _____ (Inprise Corporation) C:\windows\system32\CC3250MT.DLL
2060-08-18 18:02 - 2010-08-01 20:41 - 00248832 _____ (Inprise Corporation) C:\windows\system32\VCLX50.BPL
2060-08-18 17:40 - 2010-08-01 20:41 - 00909824 _____ (Inprise Corporation) C:\windows\system32\cp3245mt.dll
2014-01-30 20:07 - 2014-01-29 17:33 - 00027087 _____ C:\Users\Karina\Desktop\FRST.txt
2014-01-30 20:05 - 2013-08-05 07:42 - 00000000 ____D C:\FRST
2014-01-30 20:02 - 2014-01-30 20:02 - 00006961 _____ C:\Users\Karina\Desktop\JRT.txt
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D C:\windows\ERUNT
2014-01-30 19:56 - 2014-01-30 19:56 - 01037068 _____ (Thisisu) C:\Users\Karina\Desktop\JRT.exe
2014-01-30 19:43 - 2010-03-18 21:05 - 00176640 _____ C:\Users\Karina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-30 19:42 - 2010-04-02 10:19 - 00001098 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 19:32 - 2013-07-10 11:17 - 01812077 _____ C:\windows\WindowsUpdate.log
2014-01-30 19:25 - 2013-12-06 08:46 - 00000000 ___RD C:\Users\Karina\Dropbox
2014-01-30 19:25 - 2013-12-06 08:41 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Dropbox
2014-01-30 19:23 - 2010-04-02 10:19 - 00001094 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 19:22 - 2012-11-23 11:48 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-30 19:22 - 2012-01-25 21:35 - 00000388 _____ C:\windows\Tasks\Final Media Player Update Checker.job
2014-01-30 19:12 - 2014-01-30 18:12 - 00000296 _____ C:\windows\Tasks\Digital Sites.job
2014-01-30 19:10 - 2006-11-02 13:58 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-30 19:10 - 2006-11-02 13:45 - 00003216 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-30 19:10 - 2006-11-02 13:45 - 00003216 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-30 19:09 - 2006-11-02 13:58 - 00032566 _____ C:\windows\Tasks\SCHEDLGU.TXT
2014-01-30 19:08 - 2014-01-30 18:59 - 00000000 ____D C:\AdwCleaner
2014-01-30 19:07 - 2013-06-25 06:01 - 00001067 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 19:07 - 2013-01-23 20:04 - 00000947 _____ C:\Users\Karina\Desktop\Internet Explorer.lnk
2014-01-30 19:07 - 2011-04-19 10:34 - 00000846 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-30 19:07 - 2010-03-18 13:40 - 00000977 _____ C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 18:59 - 2014-01-30 18:59 - 01166132 _____ C:\Users\Karina\Downloads\adwcleaner.exe
2014-01-30 18:46 - 2014-01-30 18:00 - 00008726 _____ C:\windows\PFRO.log
2014-01-30 18:46 - 2014-01-23 20:06 - 00000000 ____D C:\ProgramData\WPM
2014-01-30 18:43 - 2014-01-30 18:12 - 00000000 ____D C:\Users\Karina\AppData\Roaming\DigitalSites
2014-01-30 18:13 - 2014-01-23 20:06 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-30 18:13 - 2014-01-23 20:06 - 00000000 ____D C:\Program Files\SupTab
2014-01-30 18:00 - 2008-04-17 18:24 - 00000000 ____D C:\windows\Panther
2014-01-30 17:54 - 2014-01-23 20:05 - 00000000 ____D C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-29 22:45 - 2010-08-10 10:42 - 00000000 ____D C:\Users\Karina\AppData\Roaming\UseNeXT
2014-01-29 22:45 - 2010-03-19 08:33 - 00000000 ____D C:\Users\Karina\AppData\Roaming\vlc
2014-01-29 22:41 - 2010-05-02 22:21 - 00000000 ____D C:\Users\Karina\Documents\UseNeXT
2014-01-29 22:04 - 2008-04-16 16:33 - 00112914 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-29 21:37 - 2013-06-25 08:16 - 154862121 _____ C:\Users\Karina\Desktop\Down-Syndrom_ard.mp4
2014-01-29 21:23 - 2014-01-29 21:23 - 06395960 _____ C:\Users\Karina\Downloads\attachments_20140129212725.zip
2014-01-29 17:32 - 2014-01-29 17:32 - 01137152 _____ (Farbar) C:\Users\Karina\Desktop\FRST(1).exe
2014-01-28 20:08 - 2014-01-28 20:05 - 00050785 _____ C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-28 17:58 - 2014-01-23 20:25 - 00000000 ____D C:\Program Files\Audials
2014-01-28 17:35 - 2010-03-19 11:55 - 00000052 _____ C:\windows\system32\DOErrors.log
2014-01-28 15:12 - 2010-01-02 20:48 - 00000000 ____D C:\ProgramData\PDFC
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 17:21 - 2014-01-01 21:49 - 00000103 _____ C:\windows\wiso.ini
2014-01-27 15:43 - 2013-03-04 05:41 - 00000000 ____D C:\Program Files\ElsterFormular
2014-01-27 15:40 - 2010-03-18 12:39 - 00000000 ____D C:\Users\Karina
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-24 06:37 - 2014-01-23 20:07 - 00000000 ____D C:\Program Files\maucampo
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D C:\ProgramData\RapidSolution
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D C:\Users\Karina\Documents\StreamTransport
2014-01-17 14:03 - 2012-03-29 07:27 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Nitro PDF
2014-01-17 07:22 - 2013-12-06 08:46 - 00000961 _____ C:\Users\Karina\Desktop\Dropbox.lnk
2014-01-17 07:22 - 2013-12-06 08:43 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-16 15:07 - 2014-01-16 14:34 - 420147412 _____ C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 15:06 - 2014-01-16 14:34 - 399320944 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 15:03 - 2014-01-16 14:34 - 419156734 _____ C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 15:00 - 2014-01-16 14:35 - 280959597 _____ C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 13:15 - 2014-01-16 12:53 - 426167326 _____ C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 13:13 - 2014-01-16 12:52 - 422647374 _____ C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:55 - 2014-01-16 12:34 - 390191731 _____ C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:54 - 2014-01-16 12:33 - 412382924 _____ C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 12:33 - 414804923 _____ C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:50 - 2014-01-16 12:29 - 515775422 _____ C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:27 - 2014-01-16 07:14 - 413453745 _____ C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:10 - 2014-01-16 07:02 - 686335370 _____ C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 07:01 - 2014-01-16 06:42 - 416763092 _____ C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:59 - 2014-01-16 06:48 - 203068161 _____ C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:58 - 2014-01-16 06:47 - 206206873 _____ C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:56 - 2014-01-16 06:44 - 140235089 _____ C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:41 - 197738666 _____ C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:40 - 209105662 _____ C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:40 - 207194922 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 23:01 - 2014-01-15 22:53 - 419770112 _____ C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 23:00 - 2014-01-15 22:53 - 269787082 _____ C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:37 - 2014-01-15 19:24 - 223647669 _____ C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:23 - 2013-02-12 14:14 - 00000000 ____D C:\Program Files\PDF24
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH                                          ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:37 - 2014-01-08 22:33 - 136520908 _____ C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 22:22 - 2014-01-08 21:34 - 827329488 _____ C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:39 - 284817112 _____ C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 290677052 _____ C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 282046213 _____ C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:07 - 373592099 _____ C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:06 - 409127775 _____ C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 21:14 - 2014-01-08 20:57 - 204518895 _____ C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 21:13 - 2014-01-08 20:58 - 200159427 _____ C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 21:00 - 2014-01-08 20:32 - 452897833 _____ C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:55 - 2014-01-08 20:33 - 418706883 _____ C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:31 - 2014-01-08 20:05 - 351121086 _____ C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 20:26 - 2014-01-08 19:39 - 441094125 _____ C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 20:23 - 2014-01-08 19:36 - 411643595 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 20:20 - 2014-01-08 19:36 - 422671764 _____ C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 20:01 - 2014-01-08 19:37 - 206315496 _____ C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:26 - 2014-01-08 18:58 - 403423416 _____ C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 19:25 - 2014-01-08 18:59 - 400611108 _____ C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 19:12 - 2014-01-08 18:57 - 203909028 _____ C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:51 - 2014-01-08 18:31 - 415860637 _____ C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-08 18:47 - 2014-01-08 18:34 - 199078752 _____ C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-07 22:39 - 2014-01-07 22:22 - 375114103 _____ C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-07 21:05 - 2010-04-06 12:55 - 00000680 _____ C:\Users\Karina\AppData\Local\d3d9caps.dat
2014-01-02 20:16 - 2010-12-05 18:50 - 00000000 ____D C:\Users\Karina\Desktop\Sarah
2014-01-02 20:02 - 2013-02-21 00:43 - 00000000 ____D C:\Users\Karina\AppData\Roaming\Winamp
2014-01-02 19:51 - 2010-08-03 13:39 - 00000000 ____D C:\Users\Karina\Documents\Briefe
2014-01-02 17:09 - 2010-11-02 18:41 - 00000000 ____D C:\Users\Karina\Documents\DVDVideoSoft
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk
2014-01-01 21:50 - 2014-01-01 21:49 - 00000000 ____D C:\Users\Karina\AppData\Local\Buhl
2014-01-01 21:49 - 2014-01-01 21:44 - 00000000 ____D C:\ProgramData\Buhl Data Service GmbH
2014-01-01 21:46 - 2014-01-01 21:46 - 00000000 ____D C:\Program Files\WISO
2014-01-01 21:46 - 2010-01-02 20:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information

Files to move or delete:
====================
C:\Users\Karina\PhotoCardMaker_1.0.2.exe


Some content of TEMP:
====================
C:\Users\Karina\AppData\Local\temp\avgnt.exe
C:\Users\Karina\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-30 19:25

==================== End Of Log ============================

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by Karina at 2014-01-30 20:07:44
Running from C:\Users\Karina\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 2.1.4 - Hewlett-Packard) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05)  MUI (Version: 11.0.05 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.923.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.873.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
Anti-Twin (Installation 13.09.2012) (Version:  - Joerg Rosenthal, Germany)
Avira Free Antivirus (Version: 14.0.2.286 - Avira)
Broadcom 802.11 Network Adapter (Version: 5.100.235.19 - Broadcom Corporation)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.18.12 - Broadcom Corporation)
BufferChm (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (Version: 2.03.0000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0416.1448.24731 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.04 - Piriform)
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)
CPQ Wallpaper (Version: 1.0.1.1 - Hewlett-Packard)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Access Objects (DAO) 3.5 (Version:  - )
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DivX-Setup (Version: 2.6.1.9 - DivX, LLC)
DJ_AIO_03_F4200_Software (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4220_ProductContext (Version: 110.0.238.000 - Hewlett-Packard) Hidden
Driver Genius Professional Edition (Version: 11.0 - Driver-Soft Inc.)
Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)
EdenCity Download (Version: 12.0 - Edencity AG)
ElsterFormular (Version: 15.0.13345 - Landesfinanzdirektion Thüringen)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
EVEREST Home Edition v2.20 (Version: 2.20 - Lavalys Inc)
F4200 (Version: 110.0.238.000 - Ihr Firmenname) Hidden
F4210_Help (Version: 110.0.238.000 - Hewlett-Packard) Hidden
File Type Assistant (Version:  - Trusted Software) <==== ATTENTION
Final Media Player 2011 (Version:  - Bitberry Software)
Free YouTube Download version 3.1.41.1201 (Version: 3.1.41.1201 - DVDVideoSoft Ltd.)
Google Chrome (Version: 32.0.1700.102 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
GPBaseService (Version: 110.0.180.000 - Hewlett-Packard) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HomePlug-Konfigurationsassistent (Version: 1.0.0.0 - HomePlug)
HP Common Access Service Library (Version: 2.0.6.1 - Hewlett-Packard) Hidden
HP Common Access Service Library (Version: 3.0.22.1 - Hewlett-Packard)
HP Customer Experience Enhancements (Version: 6.0.1.3 - Hewlett-Packard) Hidden
HP Customer Participation Program 11.0 (Version: 11.0 - HP)
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3 (Version: 11.0 - HP)
HP ESU for Microsoft Vista (Version: 3.0.3.1 - Hewlett-Packard)
HP Imaging Device Functions 11.0 (Version: 11.0 - HP)
HP Photosmart Essential 2.5 (Version: 1.03.0000 - Hewlett-Packard) Hidden
HP Photosmart Essential 3.0 (Version: 3.0 - HP)
HP Quick Launch Buttons 6.50 A1 (Version: 6.50 A1 - Hewlett-Packard)
HP Setup (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Smart Web Printing 4.60 (Version: 4.60 - HP)
HP Software Setup (Version: 1.0.0.14 - Hewlett-Packard)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HP User Guides 0133 (Version: 1.01.0000 - Hewlett-Packard)
HP Web Camera (Version: 1.0.0 - Hewlett-Packard) Hidden
HP Webcam (Version: 1.0.25.0 - Roxio)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.) Hidden
HP Webcam Driver (Version: 5.8.50007.0 - Sonix)
HP Wireless Assistant (Version: 3.50.4.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 110.0.180.000 - Hewlett-Packard) Hidden
IDT Audio (Version: 1.0.6300.0 - IDT)
IePluginService12.27.0.3326 (Version: 12.27.0.3326 - Cherished Technololgy LIMITED) <==== ATTENTION
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.)
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.) Hidden
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lager (Version: 1.0.0.0 - Hewlett-Packard) Hidden
LightScribe System Software (Version: 1.18.5.1 - LightScribe)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (Version: 110.0.180.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version:  - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 22.0 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCSetup (Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Nitro Reader 3 (Version: 3.5.2.10 - Nitro)
PDF Complete (Version: 3.5.57 - PDF Complete, Inc.)
PDF24 Creator 6.2.0 (Version:  - PDF24.org)
PhotoCardMaker 1.0.2 (Version:  - Kigosoft Inc.)
PSSWCORE (Version: 2.03.0000 - Hewlett-Packard) Hidden
QuickPar 0.9 (Version: 0.9 - Peter B. Clements)
RealDownloader (Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (Version: 16.0.2 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roxio Activation Module (Version: 1.0 - Roxio) Hidden
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Business (Version: 10.1 - Roxio)
Roxio Creator Business v10 (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.2 - Roxio) Hidden
Roxio MyDVD (Version: 10.1.048 - Roxio) Hidden
Scan (Version: 11.0.0.0 - Hewlett-Packard) Hidden
Screenshot Captor 4.5.00 (Version:  - )
Secunia PSI (3.0.0.4001) (Version: 3.0.0.4001 - Secunia)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Shop for HP Supplies (Version: 11.0 - HP)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
Soda PDF 5 (Version: 5.0.133.9133 - LULU SOFTWARE LIMITED)
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden
SupTab (Version: 1.1.1.0 - ) <==== ATTENTION
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 12.2.2.0 - Synaptics Incorporated)
Toolbox (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software)
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.171 - TuneUp Software) Hidden
Uninstall 1.0.0.1 (Version:  - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
UseNeXT by Tangysoft (Version:  - Tangysoft Ltd.)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Verbindungsassistent (Version: 2.1 - Verbindungsassistent)
VideoDownloader version 0.1 (Version: 0.1 - )
VideoToolkit01 (Version: 110.0.171.000 - Hewlett-Packard) Hidden
Vista Default Settings (Version: 2.0.1.1 - Hewlett-Packard)
VLC media player 2.1.1 (Version: 2.1.1 - VideoLAN)
WebReg (Version: 110.0.180.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (Version: 6.5.1.2350 - Broadcom Corporation)
Winamp (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7 - win.rar GmbH)
WISO Steuer-Sparbuch 2014 (Version: 21.01.8499 - Buhl Data Service GmbH)

==================== Restore Points  =========================

20-01-2014 21:10:29 Geplanter Prüfpunkt
22-01-2014 06:49:45 Geplanter Prüfpunkt
23-01-2014 12:10:20 Geplanter Prüfpunkt
23-01-2014 19:23:12 Installed Audials
23-01-2014 19:31:20 Gerätetreiber-Paketinstallation: RapidSolution Software Audio-, Video- und Gamecontroller
23-01-2014 19:32:28 Gerätetreiber-Paketinstallation: Audials AG Netzwerkdienst
28-01-2014 16:54:41 Removed Audials
29-01-2014 22:23:20 Removed Audials

==================== Hosts content: ==========================

2006-11-02 11:23 - 2013-08-05 08:56 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02A06FC3-11D8-4BC1-9E10-1DA77A774590} - \PC Performer Manager No Task File
Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1F496029-3A05-461C-B240-B0B36D6763E2} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {2FE7D992-CC67-4611-876B-D0DEE0FFF179} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {4061B336-AB14-4E3A-98C6-3B1FAF6634E8} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {50581EF0-BD22-4204-9EAD-ADA48BFD7869} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe [2013-12-11] (TuneUp Software)
Task: {51ED87E9-50CB-4BBA-B1C0-893FB9214143} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-01-14] (Microsoft)
Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {673BDDD3-BA3A-4374-8442-6E2BCD795448} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {6E44BB04-524B-4F50-B72D-64F92811EA4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {73B3960F-A5D3-4C2E-BFCE-210BA439B0B4} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {7666FFCB-C5F4-488E-9DE7-F5A1404C7AB2} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7C5A51E8-1AD7-48C6-8879-257A8A9609F5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {900E2F2F-ABE6-40B6-B0D5-817C84CFC618} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {AB0F9207-E0C6-4F90-8F4B-F59F88F56580} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-12] (Adobe Systems Incorporated)
Task: {ABFD1C07-9A8C-414C-B4E5-BEC166E86FEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {C7F79503-9FA3-4D73-8585-CFB6F7259F5E} - System32\Tasks\Digital Sites => C:\Users\Karina\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {D9848B2D-97BE-48F5-A9C9-940B4C31C992} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {DE7B5564-CE63-4BD9-A629-D2BFD6EE5508} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {DE9059EE-FC20-4494-9E3A-68ED198FC8A2} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-06-25] (RealNetworks, Inc.)
Task: {E3DE28D6-FD38-40B4-B2F0-F6825E7E97D2} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {E90BDC79-381E-408E-94EC-950FB0E3D750} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {EB1E2B3E-8F2E-48B6-8F93-1F1286A2D7BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {F4BEFF6F-07F5-457E-8144-9591938004F0} - System32\Tasks\Final Media Player Update Checker => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-03-11] (Bitberry Software)
Task: {FAA15D1E-1D8B-4222-A6F2-91260E6BCD5D} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Karina => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Digital Sites.job => C:\Users\Karina\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\Final Media Player Update Checker.job => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\User_Feed_Synchronization-{B8BFD705-AAFE-4AFD-A632-50DA975661F7}.job => C:\windows\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2012-03-09 04:56 - 2012-03-09 04:56 - 00037376 _____ () C:\windows\system32\atitmpxx.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Karina\AppData\Roaming\Dropbox\bin\libcef.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-04-05 22:00 - 2012-04-05 22:00 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-07-29 00:09 - 2011-07-29 00:09 - 00096112 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2011-03-03 00:37 - 2011-02-20 13:20 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Karina\Desktop\Down-Syndrom_ard.mp4:TOC.WMV

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-02-01 01:58:28.435
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.780
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.031
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:26.361
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.674
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.050
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:24.099
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:23.412
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.741
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.055
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 62%
Total physical RAM: 1788.06 MB
Available physical RAM: 672.1 MB
Total Pagefile: 3826.62 MB
Available Pagefile: 2090.9 MB
Total Virtual: 2047.88 MB
Available Virtual: 1910.13 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:132.05 GB) (Free:15.99 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:3.82 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.98 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: EAD9362D)
Partition 1: (Active) - (Size=132 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End Of Log ============================

schrauber · 31.01.2014, 16:15

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

tillobel · 01.02.2014, 07:56

Guten Morgen, erledigt, habe aber beim FRST Festplatte und USB Stick drangelassen, hoffe es war ok.
JAVA ist wohl nicht ok, und was noch?
Probleme kann ich so nicht erkennen.
Gruß

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=b54ee684137ff042b8d2341d4405bd67
# engine=16889
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-01 02:49:36
# local_time=2014-02-01 03:49:36 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1799 16775165 100 95 19697 161894281 12437 0
# compatibility_mode=5892 16776574 100 100 50170070 228755748 0 0
# scanned=364685
# found=0
# cleaned=0
# scan_time=15564

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.79  
 Windows Vista Service Pack 2 x86 (UAC is enabled)  
 Internet Explorer 9  
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Secunia PSI (3.0.0.4001)   
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 TuneUp Utilities 2012   
 TuneUp Utilities Language Pack (de-DE) 
 CCleaner     
 Java 7 Update 45  
 Java version out of Date! 
 Adobe Flash Player 	11.9.900.170  
 Adobe Reader XI  
 Mozilla Firefox (26.0) 
 Google Chrome 32.0.1700.102  
 Google Chrome 32.0.1700.76  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 Malwarebytes' Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-02-2014 02
Ran by Karina (administrator) on KARINA-PC on 01-02-2014 08:01:58
Running from C:\Users\Karina\Desktop
Microsoft® Windows Vista™ Home Basic  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) ===================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
() C:\Windows\System32\PSIService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(LULU Software) C:\Program Files\Soda PDF 5\HelperService.exe
(LULU Software) C:\Program Files\Soda PDF 5\ConversionService.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
(Dropbox, Inc.) C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\Hp\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\Hp\Digital Imaging\bin\hpqgpc01.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\Karina\Desktop\FRST(3).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PDF Complete] - C:\Program Files\PDF Complete\pdfsty.exe [319000 2008-08-08] (PDF Complete Inc)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2012-01-24] (IDT, Inc.)
HKLM\...\Run: [hpqSRMon] - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [81920 2008-03-13] (Hewlett-Packard)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [PDFPrint] - C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-14] (Hewlett-Packard)
HKU\.DEFAULT\...\Run: [AudialsNotifier] - C:\Program Files\Audials\AudialsNotifier.exe [473352 2013-12-18] ()
HKU\S-1-5-21-956183135-2741987076-3364311956-1001\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-04-02] (Google Inc.)
HKU\S-1-5-21-956183135-2741987076-3364311956-1001\...\Run: [AudialsNotifier] - C:\Program Files\Audials\Audials 11\AudialsNotifier.exe
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Karina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390503882&from=smt&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll (LULU Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {15BE8BEE-4105-4A79-B385-25068AA967DB} hxxp://dizun95pzobbc.cloudfront.net/VBIMDPlayer.CAB
DPF: {32E7B36C-7960-4A42-B83B-D8AFD0AAEF2B} hxxp://dizun95pzobbc.cloudfront.net/INDBrowser.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1

FireFox:
========
FF ProfilePath: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @real.com/nppl3260;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.2.32 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\1390503926_xpi [2014-01-23]
FF Extension: WOT - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: GutscheinWelle.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\addon@gutscheinwelle.de.xpi [2013-03-24]
FF Extension: Gutscheinsammler.de - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\alarm@gutscheinsammler.de.xpi [2011-10-19]
FF Extension: Extension_Protected - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi [2014-01-30]
FF Extension: Lightning Speed Dial - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\lightningnewtab@gmail.com.xpi [2014-01-30]
FF Extension: WEB.DE MailCheck - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\toolbar@web.de.xpi [2013-11-26]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-22]
FF Extension: Adblock Plus - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-05]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-05-09]
FF HKLM\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files\Soda PDF 5\FFSoda5Ext [2013-02-07]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-06-25]
FF HKLM\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\extensions\lightningnewtab@gmail.com.xpi
FF Extension: No Name - C:\Users\Karina\AppData\Roaming\Mozilla\Firefox\Profiles\e20hfb9f.default\extensions\lightningnewtab@gmail.com.xpi [2014-01-30]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-06-10]
FF StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchProvider: sweet-page
CHR DefaultSearchURL: hxxp://www.sweet-page.com/web/?type=ds&ts=1391101978&from=cor&uid=TOSHIBAXMK1656GSY_10OKT0L1TXX10OKT0L1T&q={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (RealDownloader) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-01-29]
CHR Extension: (Google Wallet) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-09-08]
CHR Extension: (Lightning speedDial) - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkndmigholgfjlniaohblojbhgjbkakn [2014-01-30]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\Karina\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-30]

========================== Services (Whitelisted) =================

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-03-27] (LSI Corporation)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-04-05] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [125496 2011-02-23] (Hewlett-Packard Company)
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2013-03-26] (Nitro PDF Software)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [777240 2008-08-08] (PDF Complete Inc)
R2 ProtexisLicensing; C:\windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
R2 Soda PDF 5 Helper Service; C:\Program Files\Soda PDF 5\HelperService.exe [1069408 2013-01-29] (LULU Software)
R2 Soda PDF 5 Service; C:\Program Files\Soda PDF 5\ConversionService.exe [794464 2013-01-29] (LULU Software)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [254034 2012-01-24] (IDT, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1529656 2013-12-11] (TuneUp Software)
R2 WTGService; C:\Program Files\Verbindungsassistent\WTGService.exe [296400 2009-03-03] ()

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [45184 2012-03-05] (Advanced Micro Devices)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
S3 azvusb; C:\windows\System32\DRIVERS\azvusb.sys [44544 2009-08-24] (AzureWave Technologies, Inc.)
R3 btwampfl; C:\windows\system32\drivers\btwampfl.sys [522280 2012-02-20] (Broadcom Corporation.)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
S3 mod7700; C:\windows\System32\Drivers\mod7700.sys [819072 2008-06-26] (DiBcom SA)
R2 NPF_devolo; C:\windows\system32\drivers\npf_devolo.sys [35840 2007-02-07] (CACE Technologies)
R3 PSI; C:\windows\System32\DRIVERS\psi_mf.sys [15544 2011-12-16] (Secunia)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765184 2009-05-27] ()
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-07] (Avira GmbH)
S3 tbhsd; C:\windows\System32\drivers\tbhsd.sys [39048 2013-12-18] (RapidSolution Software AG)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software)
U5 AppMgmt; C:\windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Karina\AppData\Local\Temp\catchme.sys [x]
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
U3 DfSdkS; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-01 08:01 - 2014-02-01 08:01 - 01136640 _____ (Farbar) C:\Users\Karina\Desktop\FRST(3).exe
2014-02-01 08:00 - 2014-02-01 08:01 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST(2).exe
2014-02-01 08:00 - 2014-02-01 08:00 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST(1).exe
2014-02-01 07:59 - 2014-02-01 07:59 - 01136640 _____ (Farbar) C:\Users\Karina\Desktop\FRST.exe
2014-02-01 07:59 - 2014-02-01 07:59 - 00000000 ____D () C:\Users\Karina\Desktop\FRST-OlderVersion
2014-02-01 07:54 - 2014-02-01 07:54 - 00987425 _____ () C:\Users\Karina\Desktop\SecurityCheck.exe
2014-01-31 23:19 - 2014-01-31 23:19 - 02347384 _____ (ESET) C:\Users\Karina\Desktop\esetsmartinstaller_enu.exe
2014-01-30 20:07 - 2014-01-30 20:09 - 00029963 _____ () C:\Users\Karina\Desktop\Addition.txt
2014-01-30 20:02 - 2014-01-30 20:02 - 00006961 _____ () C:\Users\Karina\Desktop\JRT.txt
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\windows\ERUNT
2014-01-30 19:56 - 2014-01-30 19:56 - 01037068 _____ (Thisisu) C:\Users\Karina\Desktop\JRT.exe
2014-01-30 18:59 - 2014-01-30 19:08 - 00000000 ____D () C:\AdwCleaner
2014-01-30 18:59 - 2014-01-30 18:59 - 01166132 _____ () C:\Users\Karina\Downloads\adwcleaner.exe
2014-01-30 18:12 - 2014-02-01 07:36 - 00000296 _____ () C:\windows\Tasks\Digital Sites.job
2014-01-30 18:12 - 2014-01-30 18:43 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\DigitalSites
2014-01-30 18:00 - 2014-01-31 07:01 - 00009480 _____ () C:\windows\PFRO.log
2014-01-29 21:23 - 2014-01-29 21:23 - 06395960 _____ () C:\Users\Karina\Downloads\attachments_20140129212725.zip
2014-01-29 17:33 - 2014-02-01 08:03 - 00026393 _____ () C:\Users\Karina\Desktop\FRST.txt
2014-01-28 20:05 - 2014-01-28 20:08 - 00050785 _____ () C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D () C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D () C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D () C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:25 - 2014-01-28 17:58 - 00000000 ____D () C:\Program Files\Audials
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D () C:\ProgramData\RapidSolution
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D () C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D () C:\Users\Karina\Documents\StreamTransport
2014-01-23 20:07 - 2014-01-24 06:37 - 00000000 ____D () C:\Program Files\maucampo
2014-01-23 20:06 - 2014-01-30 18:46 - 00000000 ____D () C:\ProgramData\WPM
2014-01-23 20:06 - 2014-01-30 18:13 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-23 20:06 - 2014-01-30 18:13 - 00000000 ____D () C:\Program Files\SupTab
2014-01-23 20:05 - 2014-01-30 17:54 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-16 14:35 - 2014-01-16 15:00 - 280959597 _____ () C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:07 - 420147412 _____ () C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:06 - 399320944 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 14:34 - 2014-01-16 15:03 - 419156734 _____ () C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 13:15 - 426167326 _____ () C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 12:52 - 2014-01-16 13:13 - 422647374 _____ () C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:34 - 2014-01-16 12:55 - 390191731 _____ () C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:54 - 412382924 _____ () C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:33 - 2014-01-16 12:53 - 414804923 _____ () C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:29 - 2014-01-16 12:50 - 515775422 _____ () C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:14 - 2014-01-16 07:27 - 413453745 _____ () C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:02 - 2014-01-16 07:10 - 686335370 _____ () C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:59 - 203068161 _____ () C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:47 - 2014-01-16 06:58 - 206206873 _____ () C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:44 - 2014-01-16 06:56 - 140235089 _____ () C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:42 - 2014-01-16 07:01 - 416763092 _____ () C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:41 - 2014-01-16 06:52 - 197738666 _____ () C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:52 - 209105662 _____ () C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:40 - 2014-01-16 06:48 - 207194922 _____ () C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:01 - 419770112 _____ () C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 22:53 - 2014-01-15 23:00 - 269787082 _____ () C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:24 - 2014-01-15 19:37 - 223647669 _____ () C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ () C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ () C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:33 - 2014-01-08 22:37 - 136520908 _____ () C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 21:39 - 2014-01-08 22:10 - 284817112 _____ () C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 290677052 _____ () C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 21:38 - 2014-01-08 22:10 - 282046213 _____ () C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:34 - 2014-01-08 22:22 - 827329488 _____ () C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 21:07 - 2014-01-08 21:33 - 373592099 _____ () C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:06 - 2014-01-08 21:33 - 409127775 _____ () C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 20:58 - 2014-01-08 21:13 - 200159427 _____ () C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 20:57 - 2014-01-08 21:14 - 204518895 _____ () C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 20:33 - 2014-01-08 20:55 - 418706883 _____ () C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:32 - 2014-01-08 21:00 - 452897833 _____ () C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:05 - 2014-01-08 20:31 - 351121086 _____ () C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 19:39 - 2014-01-08 20:26 - 441094125 _____ () C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 19:37 - 2014-01-08 20:01 - 206315496 _____ () C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:23 - 411643595 _____ () C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 19:36 - 2014-01-08 20:20 - 422671764 _____ () C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 18:59 - 2014-01-08 19:25 - 400611108 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 18:58 - 2014-01-08 19:26 - 403423416 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 18:57 - 2014-01-08 19:12 - 203909028 _____ () C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:34 - 2014-01-08 18:47 - 199078752 _____ () C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-08 18:31 - 2014-01-08 18:51 - 415860637 _____ () C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-07 22:22 - 2014-01-07 22:39 - 375114103 _____ () C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-03 23:54 - 2012-07-12 12:45 - 02109952 _____ () C:\Users\Karina\Documents\Autogrammsammlung.xls
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ () C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk

==================== One Month Modified Files and Folders =======

2060-08-18 18:02 - 2010-08-01 20:41 - 02023424 _____ (Inprise Corporation) C:\windows\system32\VCL50.BPL
2060-08-18 18:02 - 2010-08-01 20:41 - 01496064 _____ (Inprise Corporation) C:\windows\system32\CC3250MT.DLL
2060-08-18 18:02 - 2010-08-01 20:41 - 00248832 _____ (Inprise Corporation) C:\windows\system32\VCLX50.BPL
2060-08-18 17:40 - 2010-08-01 20:41 - 00909824 _____ (Inprise Corporation) C:\windows\system32\cp3245mt.dll
2014-02-01 08:03 - 2014-01-29 17:33 - 00026393 _____ () C:\Users\Karina\Desktop\FRST.txt
2014-02-01 08:01 - 2014-02-01 08:01 - 01136640 _____ (Farbar) C:\Users\Karina\Desktop\FRST(3).exe
2014-02-01 08:01 - 2014-02-01 08:00 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST(2).exe
2014-02-01 08:01 - 2013-08-05 07:42 - 00000000 ____D () C:\FRST
2014-02-01 08:00 - 2014-02-01 08:00 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST(1).exe
2014-02-01 07:59 - 2014-02-01 07:59 - 01136640 _____ (Farbar) C:\Users\Karina\Desktop\FRST.exe
2014-02-01 07:59 - 2014-02-01 07:59 - 00000000 ____D () C:\Users\Karina\Desktop\FRST-OlderVersion
2014-02-01 07:54 - 2014-02-01 07:54 - 00987425 _____ () C:\Users\Karina\Desktop\SecurityCheck.exe
2014-02-01 07:47 - 2013-07-10 11:17 - 01218055 _____ () C:\windows\WindowsUpdate.log
2014-02-01 07:42 - 2010-04-02 10:19 - 00001098 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-01 07:42 - 2010-04-02 10:19 - 00001094 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-01 07:37 - 2006-11-02 13:45 - 00003216 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-01 07:37 - 2006-11-02 13:45 - 00003216 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-01 07:36 - 2014-01-30 18:12 - 00000296 _____ () C:\windows\Tasks\Digital Sites.job
2014-02-01 07:36 - 2012-11-23 11:48 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-31 23:26 - 2008-04-16 16:33 - 00112914 _____ () C:\windows\system32\PerfStringBackup.INI
2014-01-31 23:19 - 2014-01-31 23:19 - 02347384 _____ (ESET) C:\Users\Karina\Desktop\esetsmartinstaller_enu.exe
2014-01-31 23:19 - 2013-12-06 08:41 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Dropbox
2014-01-31 23:18 - 2013-12-06 08:46 - 00000000 ___RD () C:\Users\Karina\Dropbox
2014-01-31 23:14 - 2012-01-25 21:35 - 00000388 _____ () C:\windows\Tasks\Final Media Player Update Checker.job
2014-01-31 23:14 - 2006-11-02 13:58 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-01-31 12:44 - 2010-08-10 10:42 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\UseNeXT
2014-01-31 12:31 - 2010-05-02 22:21 - 00000000 ____D () C:\Users\Karina\Documents\UseNeXT
2014-01-31 10:14 - 2010-03-19 08:33 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\vlc
2014-01-31 07:01 - 2014-01-30 18:00 - 00009480 _____ () C:\windows\PFRO.log
2014-01-30 20:09 - 2014-01-30 20:07 - 00029963 _____ () C:\Users\Karina\Desktop\Addition.txt
2014-01-30 20:02 - 2014-01-30 20:02 - 00006961 _____ () C:\Users\Karina\Desktop\JRT.txt
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\windows\ERUNT
2014-01-30 19:56 - 2014-01-30 19:56 - 01037068 _____ (Thisisu) C:\Users\Karina\Desktop\JRT.exe
2014-01-30 19:43 - 2010-03-18 21:05 - 00176640 _____ () C:\Users\Karina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-30 19:09 - 2006-11-02 13:58 - 00032566 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-01-30 19:08 - 2014-01-30 18:59 - 00000000 ____D () C:\AdwCleaner
2014-01-30 19:07 - 2013-06-25 06:01 - 00001067 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-30 19:07 - 2013-01-23 20:04 - 00000947 _____ () C:\Users\Karina\Desktop\Internet Explorer.lnk
2014-01-30 19:07 - 2011-04-19 10:34 - 00000846 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-30 19:07 - 2010-03-18 13:40 - 00000977 _____ () C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 18:59 - 2014-01-30 18:59 - 01166132 _____ () C:\Users\Karina\Downloads\adwcleaner.exe
2014-01-30 18:46 - 2014-01-23 20:06 - 00000000 ____D () C:\ProgramData\WPM
2014-01-30 18:43 - 2014-01-30 18:12 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\DigitalSites
2014-01-30 18:13 - 2014-01-23 20:06 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-30 18:13 - 2014-01-23 20:06 - 00000000 ____D () C:\Program Files\SupTab
2014-01-30 18:00 - 2008-04-17 18:24 - 00000000 ____D () C:\windows\Panther
2014-01-30 17:54 - 2014-01-23 20:05 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\awesomehp
2014-01-29 21:37 - 2013-06-25 08:16 - 154862121 _____ () C:\Users\Karina\Desktop\Down-Syndrom_ard.mp4
2014-01-29 21:23 - 2014-01-29 21:23 - 06395960 _____ () C:\Users\Karina\Downloads\attachments_20140129212725.zip
2014-01-28 20:08 - 2014-01-28 20:05 - 00050785 _____ () C:\Users\Karina\Downloads\FRST.txt
2014-01-28 20:04 - 2014-01-28 20:04 - 01136640 _____ (Farbar) C:\Users\Karina\Downloads\FRST.exe
2014-01-28 17:58 - 2014-01-23 20:25 - 00000000 ____D () C:\Program Files\Audials
2014-01-28 17:35 - 2010-03-19 11:55 - 00000052 _____ () C:\windows\system32\DOErrors.log
2014-01-28 15:12 - 2010-01-02 20:48 - 00000000 ____D () C:\ProgramData\PDFC
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Buhl Data Service
2014-01-27 17:21 - 2014-01-27 17:21 - 00000000 ____D () C:\Users\Karina\AppData\Local\Buhl Data Service
2014-01-27 17:21 - 2014-01-01 21:49 - 00000103 _____ () C:\windows\wiso.ini
2014-01-27 15:43 - 2013-03-04 05:41 - 00000000 ____D () C:\Program Files\ElsterFormular
2014-01-27 15:40 - 2010-03-18 12:39 - 00000000 ____D () C:\Users\Karina
2014-01-27 15:32 - 2014-01-27 15:32 - 00000000 ____D () C:\Users\Karina\Documents\Steuer-Sparbuch
2014-01-24 06:37 - 2014-01-23 20:07 - 00000000 ____D () C:\Program Files\maucampo
2014-01-23 20:31 - 2014-01-23 20:31 - 00000000 ____D () C:\Users\Karina\AppData\Local\CrashRpt
2014-01-23 20:25 - 2014-01-23 20:25 - 00000000 ____D () C:\ProgramData\RapidSolution
2014-01-23 20:21 - 2014-01-23 20:21 - 00000000 ____D () C:\Users\Karina\AppData\Local\RapidSolution
2014-01-23 20:12 - 2014-01-23 20:12 - 00000000 ____D () C:\Users\Karina\Documents\StreamTransport
2014-01-17 14:03 - 2012-03-29 07:27 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Nitro PDF
2014-01-17 07:22 - 2013-12-06 08:46 - 00000961 _____ () C:\Users\Karina\Desktop\Dropbox.lnk
2014-01-17 07:22 - 2013-12-06 08:43 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-16 15:07 - 2014-01-16 14:34 - 420147412 _____ () C:\Users\Karina\Downloads\Es_ist_alles_in_Ordnung_2014-01-15_2015_122688.mp4
2014-01-16 15:06 - 2014-01-16 14:34 - 399320944 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2014-01-10_2145_122688.mp4
2014-01-16 15:03 - 2014-01-16 14:34 - 419156734 _____ () C:\Users\Karina\Downloads\Zwei_mitten_im_Leben_2014-01-15_2015_122688.mp4
2014-01-16 15:00 - 2014-01-16 14:35 - 280959597 _____ () C:\Users\Karina\Downloads\Revolverheld_2014-01-15_2335_122688.mp4
2014-01-16 13:15 - 2014-01-16 12:53 - 426167326 _____ () C:\Users\Karina\Downloads\Die_Masche_mit_der_Liebe_2014-01-12_0600_122688.mp4
2014-01-16 13:13 - 2014-01-16 12:52 - 422647374 _____ () C:\Users\Karina\Downloads\Girls_United_2014-01-14_2015_122688.mp4
2014-01-16 12:55 - 2014-01-16 12:34 - 390191731 _____ () C:\Users\Karina\Downloads\Love_and_Other_Disasters_2014-01-12_2015_122688.mp4
2014-01-16 12:54 - 2014-01-16 12:33 - 412382924 _____ () C:\Users\Karina\Downloads\Nichts_fuer_Feiglinge_2014-01-10_2015_122688.mp4
2014-01-16 12:53 - 2014-01-16 12:33 - 414804923 _____ () C:\Users\Karina\Downloads\Heiraten_ist_auch_keine_Loesung_2014-01-11_2145_122688.mp4
2014-01-16 12:50 - 2014-01-16 12:29 - 515775422 _____ () C:\Users\Karina\Downloads\Twilight_Biss_zum_Morgengrauen_2014-01-10_2015_122688.mp4
2014-01-16 07:27 - 2014-01-16 07:14 - 413453745 _____ () C:\Users\Karina\Downloads\Sommer_in_Rom_2014-01-11_2015_122688.mp4
2014-01-16 07:10 - 2014-01-16 07:02 - 686335370 _____ () C:\Users\Karina\Downloads\Die_Quatsch_Comedy_Show_2014-01-11_2015_122688.mp4
2014-01-16 07:01 - 2014-01-16 06:42 - 416763092 _____ () C:\Users\Karina\Downloads\Mein_Fuehrer_Die_wirklich_wahrste_Wahrheit_ueber_Adolf_2014-01-09_2115_122688.mp4
2014-01-16 06:59 - 2014-01-16 06:48 - 203068161 _____ () C:\Users\Karina\Downloads\Wildes_Skandinavien_Daenemark_2014-01-10_2015_122688.mp4
2014-01-16 06:58 - 2014-01-16 06:47 - 206206873 _____ () C:\Users\Karina\Downloads\WISO_2014-01-13_1925_122688.mp4
2014-01-16 06:56 - 2014-01-16 06:44 - 140235089 _____ () C:\Users\Karina\Downloads\Monitor_2014-01-10_0500_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:41 - 197738666 _____ () C:\Users\Karina\Downloads\BEATZZ_in_Concert_Soehne_Mannheims_2014-01-11_1415_122688.mp4
2014-01-16 06:52 - 2014-01-16 06:40 - 209105662 _____ () C:\Users\Karina\Downloads\Quarks_Co_Krankenhaus_mit_Nebenwirkungen_2014-01-14_2100_122688.mp4
2014-01-16 06:48 - 2014-01-16 06:40 - 207194922 _____ () C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-11_1200_122688.mp4
2014-01-15 23:01 - 2014-01-15 22:53 - 419770112 _____ () C:\Users\Karina\Downloads\Wilsberg_Nackt_im_Netz_2014-01-11_2015_122688.mp4
2014-01-15 23:00 - 2014-01-15 22:53 - 269787082 _____ () C:\Users\Karina\Downloads\Kommissar_Stolberg_Ehebruch_2014-01-11_2145_122688.mp4
2014-01-15 19:37 - 2014-01-15 19:24 - 223647669 _____ () C:\Users\Karina\Downloads\X_Diaries_love_sun_fun_Folge346_2014-01-13_1700_122688.mp4
2014-01-12 23:23 - 2014-01-12 23:23 - 00001658 _____ () C:\Users\Public\Desktop\PDF24 Creator.lnk
2014-01-12 23:23 - 2014-01-12 23:23 - 00001638 _____ () C:\Users\Public\Desktop\PDF24 Fax.lnk
2014-01-12 23:23 - 2013-02-12 14:14 - 00000000 ____D () C:\Program Files\PDF24
2014-01-12 23:22 - 2014-01-12 23:22 - 16189768 _____ (Geek Software GmbH ) C:\Users\Karina\Downloads\pdf24-creator-6.2.0.exe
2014-01-08 22:37 - 2014-01-08 22:33 - 136520908 _____ () C:\Users\Karina\Downloads\FAKT_2014-01-08_0500_122688.mp4
2014-01-08 22:22 - 2014-01-08 21:34 - 827329488 _____ () C:\Users\Karina\Downloads\Hitler_Aufstieg_des_Boesen_2014-01-01_2015_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:39 - 284817112 _____ () C:\Users\Karina\Downloads\The_Beach_Boys_50_Live_in_Concert_2013-12-31_1415_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 290677052 _____ () C:\Users\Karina\Downloads\Nuhr_2013_Der_Jahresrueckblick_2013-12-31_2200_122688.mp4
2014-01-08 22:10 - 2014-01-08 21:38 - 282046213 _____ () C:\Users\Karina\Downloads\P_nk_The_Truth_About_Love_2013-12-31_2300_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:07 - 373592099 _____ () C:\Users\Karina\Downloads\Oscar_2013-12-31_1411_122688.mp4
2014-01-08 21:33 - 2014-01-08 21:06 - 409127775 _____ () C:\Users\Karina\Downloads\Ein_Concierge_zum_Verlieben_2013-12-31_0950_122688.mp4
2014-01-08 21:14 - 2014-01-08 20:57 - 204518895 _____ () C:\Users\Karina\Downloads\Quarks_Co_Inklusion_Behindertes_Lernen_2014-01-07_2100_122688.mp4
2014-01-08 21:13 - 2014-01-08 20:58 - 200159427 _____ () C:\Users\Karina\Downloads\Quarks_Co_Gute_Vorsaetze_die_Wissenschaft_vom_inn_2014-01-04_1200_122688.mp4
2014-01-08 21:00 - 2014-01-08 20:32 - 452897833 _____ () C:\Users\Karina\Downloads\Ein_Vogel_auf_dem_Drahtseil_2013-12-31_0630_122688.mp4
2014-01-08 20:55 - 2014-01-08 20:33 - 418706883 _____ () C:\Users\Karina\Downloads\Damals_war_s_Hartmut_Schulze_Gerlach_laedt_diesmal_zu_2013-12-29_2015_122688.mp4
2014-01-08 20:31 - 2014-01-08 20:05 - 351121086 _____ () C:\Users\Karina\Downloads\Ey_Mann_Wo_is_mein_Auto_2013-12-31_1215_122688.mp4
2014-01-08 20:26 - 2014-01-08 19:39 - 441094125 _____ () C:\Users\Karina\Downloads\Hangover_2013-12-29_2015_122688.mp4
2014-01-08 20:23 - 2014-01-08 19:36 - 411643595 _____ () C:\Users\Karina\Downloads\Die_Pilgerin_Folge2_2014-01-06_2015_122688.mp4
2014-01-08 20:20 - 2014-01-08 19:36 - 422671764 _____ () C:\Users\Karina\Downloads\Die_Pilgerin_Folge1_2014-01-05_2015_122688.mp4
2014-01-08 20:01 - 2014-01-08 19:37 - 206315496 _____ () C:\Users\Karina\Downloads\Der_Weg_der_Pilgerin_Unterwegs_nach_Santiago_de_Compostela_2014-01-05_2145_122688.mp4
2014-01-08 19:26 - 2014-01-08 18:58 - 403423416 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2013-12-27_2145_122688.mp4
2014-01-08 19:25 - 2014-01-08 18:59 - 400611108 _____ () C:\Users\Karina\Downloads\Koelner_Treff_2014-01-05_0950_122688.mp4
2014-01-08 19:12 - 2014-01-08 18:57 - 203909028 _____ () C:\Users\Karina\Downloads\Steffens_entdeckt_Palau_Korallenparadies_der_Suedsee_2014-01-06_1155_122688.mp4
2014-01-08 18:51 - 2014-01-08 18:31 - 415860637 _____ () C:\Users\Karina\Downloads\Ohne_Dich_2014-01-02_2015_122688.mp4
2014-01-08 18:47 - 2014-01-08 18:34 - 199078752 _____ () C:\Users\Karina\Downloads\WISO_2014-01-06_1925_122688.mp4
2014-01-07 22:39 - 2014-01-07 22:22 - 375114103 _____ () C:\Users\Karina\Downloads\Lucky_Luke_Auf_in_den_Wilden_Westen_2014-01-01_0545_122688.mp4
2014-01-07 21:05 - 2010-04-06 12:55 - 00000680 _____ () C:\Users\Karina\AppData\Local\d3d9caps.dat
2014-01-02 20:16 - 2010-12-05 18:50 - 00000000 ____D () C:\Users\Karina\Desktop\Sarah
2014-01-02 20:02 - 2013-02-21 00:43 - 00000000 ____D () C:\Users\Karina\AppData\Roaming\Winamp
2014-01-02 19:51 - 2010-08-03 13:39 - 00000000 ____D () C:\Users\Karina\Documents\Briefe
2014-01-02 17:09 - 2010-11-02 18:41 - 00000000 ____D () C:\Users\Karina\Documents\DVDVideoSoft
2014-01-02 14:08 - 2014-01-02 14:08 - 00000366 _____ () C:\Users\Karina\Desktop\Sound - Verknüpfung.lnk

Files to move or delete:
====================
C:\Users\Karina\PhotoCardMaker_1.0.2.exe


Some content of TEMP:
====================
C:\Users\Karina\AppData\Local\temp\avgnt.exe
C:\Users\Karina\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-31 23:20

==================== End Of Log ============================

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 01-02-2014 02
Ran by Karina at 2014-02-01 08:03:48
Running from C:\Users\Karina\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 2.1.4 - Hewlett-Packard) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05)  MUI (Version: 11.0.05 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.923.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.873.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden
Anti-Twin (Installation 13.09.2012) (Version:  - Joerg Rosenthal, Germany)
Avira Free Antivirus (Version: 14.0.2.286 - Avira)
Broadcom 802.11 Network Adapter (Version: 5.100.235.19 - Broadcom Corporation)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.18.12 - Broadcom Corporation)
BufferChm (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (Version: 2.03.0000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0416.1448.24731 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.04 - Piriform)
Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)
CPQ Wallpaper (Version: 1.0.1.1 - Hewlett-Packard)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Access Objects (DAO) 3.5 (Version:  - )
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DivX-Setup (Version: 2.6.1.9 - DivX, LLC)
DJ_AIO_03_F4200_Software (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4220_ProductContext (Version: 110.0.238.000 - Hewlett-Packard) Hidden
Driver Genius Professional Edition (Version: 11.0 - Driver-Soft Inc.)
Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)
EdenCity Download (Version: 12.0 - Edencity AG)
ElsterFormular (Version: 15.0.13345 - Landesfinanzdirektion Thüringen)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
EVEREST Home Edition v2.20 (Version: 2.20 - Lavalys Inc)
F4200 (Version: 110.0.238.000 - Ihr Firmenname) Hidden
F4210_Help (Version: 110.0.238.000 - Hewlett-Packard) Hidden
File Type Assistant (Version:  - Trusted Software) <==== ATTENTION
Final Media Player 2011 (Version:  - Bitberry Software)
Free YouTube Download version 3.1.41.1201 (Version: 3.1.41.1201 - DVDVideoSoft Ltd.)
Google Chrome (Version: 32.0.1700.102 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
GPBaseService (Version: 110.0.180.000 - Hewlett-Packard) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HomePlug-Konfigurationsassistent (Version: 1.0.0.0 - HomePlug)
HP Common Access Service Library (Version: 2.0.6.1 - Hewlett-Packard) Hidden
HP Common Access Service Library (Version: 3.0.22.1 - Hewlett-Packard)
HP Customer Experience Enhancements (Version: 6.0.1.3 - Hewlett-Packard) Hidden
HP Customer Participation Program 11.0 (Version: 11.0 - HP)
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3 (Version: 11.0 - HP)
HP ESU for Microsoft Vista (Version: 3.0.3.1 - Hewlett-Packard)
HP Imaging Device Functions 11.0 (Version: 11.0 - HP)
HP Photosmart Essential 2.5 (Version: 1.03.0000 - Hewlett-Packard) Hidden
HP Photosmart Essential 3.0 (Version: 3.0 - HP)
HP Quick Launch Buttons 6.50 A1 (Version: 6.50 A1 - Hewlett-Packard)
HP Setup (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Smart Web Printing 4.60 (Version: 4.60 - HP)
HP Software Setup (Version: 1.0.0.14 - Hewlett-Packard)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (Version: 5.003.001.001 - Hewlett-Packard)
HP User Guides 0133 (Version: 1.01.0000 - Hewlett-Packard)
HP Web Camera (Version: 1.0.0 - Hewlett-Packard) Hidden
HP Webcam (Version: 1.0.25.0 - Roxio)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.)
HP Webcam (Version: 1.0.2710 - CyberLink Corp.) Hidden
HP Webcam Driver (Version: 5.8.50007.0 - Sonix)
HP Wireless Assistant (Version: 3.50.4.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 110.0.180.000 - Hewlett-Packard) Hidden
IDT Audio (Version: 1.0.6300.0 - IDT)
IePluginService12.27.0.3326 (Version: 12.27.0.3326 - Cherished Technololgy LIMITED) <==== ATTENTION
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.)
InterVideo WinDVD 8 (Version: 8.5-B0.156 - InterVideo Inc.) Hidden
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lager (Version: 1.0.0.0 - Hewlett-Packard) Hidden
LightScribe System Software (Version: 1.18.5.1 - LightScribe)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version:  - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 22.0 - Mozilla)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCSetup (Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
Nitro Reader 3 (Version: 3.5.2.10 - Nitro)
PDF Complete (Version: 3.5.57 - PDF Complete, Inc.)
PDF24 Creator 6.2.0 (Version:  - PDF24.org)
PhotoCardMaker 1.0.2 (Version:  - Kigosoft Inc.)
PSSWCORE (Version: 2.03.0000 - Hewlett-Packard) Hidden
QuickPar 0.9 (Version: 0.9 - Peter B. Clements)
RealDownloader (Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (Version: 16.0.2 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Roxio Activation Module (Version: 1.0 - Roxio) Hidden
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Business (Version: 10.1 - Roxio)
Roxio Creator Business v10 (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.2 - Roxio) Hidden
Roxio MyDVD (Version: 10.1.048 - Roxio) Hidden
Scan (Version: 11.0.0.0 - Hewlett-Packard) Hidden
Screenshot Captor 4.5.00 (Version:  - )
Secunia PSI (3.0.0.4001) (Version: 3.0.0.4001 - Secunia)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Shop for HP Supplies (Version: 11.0 - HP)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
Soda PDF 5 (Version: 5.0.133.9133 - LULU SOFTWARE LIMITED)
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden
SupTab (Version: 1.1.1.0 - ) <==== ATTENTION
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 12.2.2.0 - Synaptics Incorporated)
Toolbox (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software)
TuneUp Utilities 2012 (Version: 12.0.3600.171 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 12.0.3600.171 - TuneUp Software) Hidden
Uninstall 1.0.0.1 (Version:  - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
UseNeXT by Tangysoft (Version:  - Tangysoft Ltd.)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Verbindungsassistent (Version: 2.1 - Verbindungsassistent)
VideoDownloader version 0.1 (Version: 0.1 - )
VideoToolkit01 (Version: 110.0.171.000 - Hewlett-Packard) Hidden
Vista Default Settings (Version: 2.0.1.1 - Hewlett-Packard)
VLC media player 2.1.1 (Version: 2.1.1 - VideoLAN)
WebReg (Version: 110.0.180.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (Version: 6.5.1.2350 - Broadcom Corporation)
Winamp (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7 - win.rar GmbH)
WISO Steuer-Sparbuch 2014 (Version: 21.01.8499 - Buhl Data Service GmbH)

==================== Restore Points  =========================

20-01-2014 21:10:29 Geplanter Prüfpunkt
22-01-2014 06:49:45 Geplanter Prüfpunkt
23-01-2014 12:10:20 Geplanter Prüfpunkt
23-01-2014 19:23:12 Installed Audials
23-01-2014 19:31:20 Gerätetreiber-Paketinstallation: RapidSolution Software Audio-, Video- und Gamecontroller
23-01-2014 19:32:28 Gerätetreiber-Paketinstallation: Audials AG Netzwerkdienst
28-01-2014 16:54:41 Removed Audials
29-01-2014 22:23:20 Removed Audials
31-01-2014 04:56:03 Windows Update
01-02-2014 02:01:41 Windows Update

==================== Hosts content: ==========================

2006-11-02 11:23 - 2013-08-05 08:56 - 00000027 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {02A06FC3-11D8-4BC1-9E10-1DA77A774590} - \PC Performer Manager No Task File
Task: {18DFD9FC-082E-4E9B-8285-5F21D2B4EDAE} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2FE7D992-CC67-4611-876B-D0DEE0FFF179} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {3BAFB06B-9FF8-49FC-85E5-016066CCDD47} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {4061B336-AB14-4E3A-98C6-3B1FAF6634E8} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {50581EF0-BD22-4204-9EAD-ADA48BFD7869} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files\TuneUp Utilities 2012\OneClick.exe [2013-12-11] (TuneUp Software)
Task: {51ED87E9-50CB-4BBA-B1C0-893FB9214143} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-01-14] (Microsoft)
Task: {5916F864-469C-4391-8604-E4EA141A2699} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {6E44BB04-524B-4F50-B72D-64F92811EA4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {73B3960F-A5D3-4C2E-BFCE-210BA439B0B4} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {7666FFCB-C5F4-488E-9DE7-F5A1404C7AB2} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7C5A51E8-1AD7-48C6-8879-257A8A9609F5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {87964E8E-2E69-43A5-9FCA-08117AF95A87} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Karina => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {8B0E6FAB-F43A-4988-AF0A-A21646C212F0} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {900E2F2F-ABE6-40B6-B0D5-817C84CFC618} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {9ED703A9-5FFD-40D5-895A-4385EE1509DE} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {AB0F9207-E0C6-4F90-8F4B-F59F88F56580} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-12] (Adobe Systems Incorporated)
Task: {ABFD1C07-9A8C-414C-B4E5-BEC166E86FEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {C7F79503-9FA3-4D73-8585-CFB6F7259F5E} - System32\Tasks\Digital Sites => C:\Users\Karina\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {D9848B2D-97BE-48F5-A9C9-940B4C31C992} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {DE7B5564-CE63-4BD9-A629-D2BFD6EE5508} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {DE9059EE-FC20-4494-9E3A-68ED198FC8A2} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => C:\Program Files\Real\RealPlayer\update\realsched.exe [2013-06-25] (RealNetworks, Inc.)
Task: {E3DE28D6-FD38-40B4-B2F0-F6825E7E97D2} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-07-29] ()
Task: {E90BDC79-381E-408E-94EC-950FB0E3D750} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {EB1E2B3E-8F2E-48B6-8F93-1F1286A2D7BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-04-02] (Google Inc.)
Task: {EB6085B0-6CFE-4524-87AF-823369BA74C8} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-956183135-2741987076-3364311956-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {F4BEFF6F-07F5-457E-8144-9591938004F0} - System32\Tasks\Final Media Player Update Checker => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-03-11] (Bitberry Software)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Digital Sites.job => C:\Users\Karina\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\Final Media Player Update Checker.job => C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\User_Feed_Synchronization-{B8BFD705-AAFE-4AFD-A632-50DA975661F7}.job => C:\windows\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2011-03-03 00:37 - 2011-02-20 13:20 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll
2012-03-09 04:56 - 2012-03-09 04:56 - 00037376 _____ () C:\windows\system32\atitmpxx.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Karina\AppData\Roaming\Dropbox\bin\libcef.dll
2012-04-05 21:56 - 2012-04-05 21:56 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2012-04-05 22:00 - 2012-04-05 22:00 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-12-10 20:53 - 2013-12-10 20:54 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Karina\Desktop\Down-Syndrom_ard.mp4:TOC.WMV

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/31/2014 11:26:47 PM) (Source: LoadPerf) (User: )
Description: Performance16

Error: (01/31/2014 11:21:07 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\SAFEBROWSING-TO_DELETE> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/31/2014 11:21:07 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\SAFEBROWSING-BACKUP> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/31/2014 11:21:05 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\CACHE\E\B0> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/31/2014 11:21:05 PM) (Source: Windows Search Service) (User: )
Description: Eintrag <C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\CACHE\E\B0> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (01/31/2014 00:44:36 PM) (Source: MsiInstaller) (User: Karina-PC)
Description: Produkt: Adobe Reader XI  MUI - Update "{AC76BA86-7AD7-FFFF-2550-7A8C40011006}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (02/01/2014 07:36:44 AM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (02/01/2014 07:36:41 AM) (Source: DCOM) (User: )
Description: {6295DF2D-35EE-11D1-8707-00C04FD93327}

Error: (02/01/2014 03:16:17 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: 0x80070bc9Update für Windows Vista (KB976098){DAF0F9D5-5F58-456F-AAB7-CA19538A6952}101

Error: (02/01/2014 03:03:14 AM) (Source: Microsoft-Windows-Servicing) (User: NT-AUTORITÄT)
Description: Windows-Wartung konnte das Paket KB976098 (Update) nicht in den Status Nicht vorhanden(Absent) setzen.

Error: (02/01/2014 03:03:14 AM) (Source: Microsoft-Windows-Servicing) (User: NT-AUTORITÄT)
Description: Windows-Wartung konnte das Paket KB976098 (Update) nicht in den Status Nicht vorhanden(Absent) setzen.

Error: (02/01/2014 03:03:14 AM) (Source: Microsoft-Windows-Servicing) (User: NT-AUTORITÄT)
Description: Windows-Wartung konnte das Paket KB976098 (Update) nicht in den Status Nicht vorhanden(Absent) setzen.

Error: (01/31/2014 11:20:26 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032

Error: (01/31/2014 11:16:27 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (01/31/2014 11:14:23 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (01/31/2014 11:14:08 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 31.01.2014 um 12:52:38 unerwartet heruntergefahren.


Microsoft Office Sessions:
=========================
Error: (01/31/2014 11:26:47 PM) (Source: LoadPerf)(User: )
Description: Performance16

Error: (01/31/2014 11:21:07 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\SAFEBROWSING-TO_DELETE

Error: (01/31/2014 11:21:07 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\SAFEBROWSING-BACKUP

Error: (01/31/2014 11:21:05 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\CACHE\E\B0

Error: (01/31/2014 11:21:05 PM) (Source: Windows Search Service)(User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\KARINA\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\E20HFB9F.DEFAULT\CACHE\E\B0

Error: (01/31/2014 00:44:36 PM) (Source: MsiInstaller)(User: Karina-PC)
Description: Adobe Reader XI  MUI{AC76BA86-7AD7-FFFF-2550-7A8C40011006}1625(NULL)(NULL)


CodeIntegrity Errors:
===================================
  Date: 2013-02-01 01:58:28.435
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.780
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:27.031
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:26.361
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.674
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:25.050
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:24.099
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:23.412
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.741
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-02-01 01:58:22.055
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 74%
Total physical RAM: 1788.06 MB
Available physical RAM: 448.03 MB
Total Pagefile: 3828.62 MB
Available Pagefile: 1728.1 MB
Total Virtual: 2047.88 MB
Available Virtual: 1914.14 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:132.05 GB) (Free:13.82 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:3.81 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.98 GB) FAT32
Drive g: (TOSHIBA EXT) (Fixed) (Total:931.51 GB) (Free:101.45 GB) NTFS
Drive h: () (Removable) (Total:14.94 GB) (Free:0.73 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149 GB) (Disk ID: EAD9362D)
Partition 1: (Active) - (Size=132 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=2 GB) - (Type=0C)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 932 GB) (Disk ID: 9F07E9E1)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 15 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=15 GB) - (Type=0C)

==================== End Of Log ============================

schrauber · 01.02.2014, 17:43

Jep, Java updaten.

Fertig

Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

tillobel · 02.02.2014, 00:41

Hallo, habe die Punkte abgearbeitet.
Beim Herunterladen wurden Updates gemacht.
Beim Neustart kam die Meldung System muss überprüft werden. CHKDSK und dann hat es sehr lange gedauert.
Werde mich noch um JAVA kümmern und dann hoffentlich Ruhe haben.

Danke schön für die Hilfe.

schrauber · 02.02.2014, 07:42

Gern Geschehen

tillobel · 03.02.2014, 19:49

Hallo nochmal,

beim Starten von irgendwelchen Seiten, taucht öfters mal oben in der Leiste
sweet-page..... auf, bei den ganzen Logfiles hast du das aber nicht sehen können, oder?

Unter den Add ons finde ich die aber nicht, steht nur bei der Liste der Suchmaschinen unter google chrome drin, und über entfernen ist es aus der Liste verschwunden.

Soll ich von dem Thema die Schritte nochmal ausführen?

http://www.trojaner-board.de/147627-...entfernen.html

Gruß und danke

Habe nochmal Malware laufen lassen, hat nichts gefunden

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.28.06

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Karina :: KARINA-PC [Administrator]

03.02.2014 19:23:19
mbam-log-2014-02-03 (19-23-19).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 244793
Laufzeit: 18 Minute(n), 14 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

schrauber · 04.02.2014, 13:44

Zitat:

und über entfernen ist es aus der Liste verschwunden.

Also ist es jetzt weg?

tillobel · 04.02.2014, 14:35

War wohl nur eine Suchmaschine, die bei chrome drin war.
Scheinbar ist es ok.
Oder meinst du sicherheitshalber die Punkte abarbeiten?

schrauber · 05.02.2014, 09:20

Nö passt

tillobel · 05.02.2014, 12:34

Ok. Danke schön für die super Hilfe.
LG

02.02.2014, 07:42	#10
schrauber /// the machine /// TB-Ausbilder	Plus HD 4-2 hat mich erwischt, als Programmanhängsel :-( Gern Geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

05.02.2014, 09:20	#14
schrauber /// the machine /// TB-Ausbilder	Plus HD 4-2 hat mich erwischt, als Programmanhängsel :-( Nö passt __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Plus HD 4-2 hat mich erwischt, als Programmanhängsel :-(

Plagegeister aller Art und deren Bekämpfung: Plus HD 4-2 hat mich erwischt, als Programmanhängsel :-(