| |
| |||||||
Alles rund um Windows: Windows 7 Booten bricht abWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
04.02.2014, 22:01
| #16 |
| /// TB-Ausbilder /// Anleitungs-Guru  |  Windows 7 Booten bricht ab [gelöst] Hallo Ralf! Freut mich, dass Dein PC wieder geht! Auch wenn Dir meine Hilfe nicht viel genützt hat...  Mach jetzt bitte mal ein FRST Log. Das schaut sich dann Cosinus an. Er wird dann auch ggf. weitere Schritte mit Dir durchgehen. Das darf ich als Student noch nicht mit Dir alleine. Wenn Du insgesamt am Ende zufrieden warst, kannst Du hier Deine Meinung sagen und evtl. das Board unterstützen. Alles Gute!  Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
|
|
05.02.2014, 01:18
| #17 |
 | Windows 7 Booten bricht ab [gelöst] Gut, hier die FRST Datei:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-02-2014
Ran by **** (administrator) on HEIM-PC on 05-02-2014 01:11:52
Running from C:\Users\****\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(Infowatch) C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
() C:\Windows\System32\XSrvSetup.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NEC Electronics Corporation) C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(ArcSoft, Inc.) C:\Program Files\ArcSoft\TotalMedia 3.5\TMMonitor.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\klwtblfs.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [NUSB3MON] - C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-10-21] (NEC Electronics Corporation)
HKLM\...\Run: [ArcSoft Connection Service] - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [RemoteControl8] - C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-07-16] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] - C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [75048 2009-08-28] (cyberlink)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-08-25] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1246544 2010-11-03] (Logitech, Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Eraser] - C:\Program Files\Eraser\Eraser.exe [980920 2012-05-22] (The Eraser Project)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\klogon: C:\Windows\system32\klogon.dll (Kaspersky Lab ZAO)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\Run: [Video Performer63600.exe] - "C:\Users\****~1\AppData\Local\Temp\Video Performer63600.exe" /XML="C:\Users\****~1\AppData\Local\Temp\B7BA.tmp" /STP=0:2 <===== ATTENTION
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\MountPoints2: {43658060-b806-11df-abb4-806e6f6e6963} - E:\Run.exe
==================== Internet (Whitelisted) ====================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {02CF5479-CEBD-45F5-95D4-2AEFDA04EE89} URL =
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL =
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: No Name - {53707962-6F74-2D53-2644-206D7942484F} - No File
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - No Name - !{62d40876-df18-411f-9d34-a9dd7a197bc5} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Tcpip\Parameters: [DhcpNameServer] 80.69.100.110 80.69.100.214
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.19 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 - C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\****\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\****\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://www.ch-aviation.ch/portal/"
CHR DefaultSearchKeyword: r
CHR DefaultSearchProvider: Web Search
CHR DefaultSearchURL: hxxp://www.google.com
CHR Plugin: (Chrome PDF Viewer) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\gears.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\gcswf32.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.2.733_0\plugin/npUrlAdvisor.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.2.733_0\plugin/npVKPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.2.733_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\np-mswmp.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin3.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin4.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin5.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin7.dll No File
CHR Plugin: (Octoshape Streaming Services) - C:\Users\****\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Yahoo! activeX Plug-in Bridge) - C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\****\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.16) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-06-11]
CHR Extension: (Virtuelle Tastatur) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-06-11]
CHR Extension: (Anti-Banner) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2013-06-11]
CHR HKLM\...\Chrome\Extension: [bhnjjbcnbmjmhgpliahlamecmbejpaol] - C:\Users\****\AppData\Local\CRE\bhnjjbcnbmjmhgpliahlamecmbejpaol.crx [2013-06-11]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\urladvisor.crx [2012-12-18]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\virtkbd.crx [2012-12-18]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\ab.crx [2012-12-18]
CHR HKCU\...\Chrome\Extension: [bhnjjbcnbmjmhgpliahlamecmbejpaol] - C:\Users\****\AppData\Local\CRE\bhnjjbcnbmjmhgpliahlamecmbejpaol.crx [2012-12-18]
CHR StartMenuInternet: Google Chrome - C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992 2009-12-21] (Infowatch)
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 JMB36X; C:\Windows\System32\XSrvSetup.exe [65536 2009-08-06] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3673944 2011-11-18] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe" [X]
S2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [X]
==================== Drivers (Whitelisted) ====================
S3 AF9035BDA; C:\Windows\System32\Drivers\AF9035BDA.sys [368000 2010-09-04] (AfaTech )
R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2013-06-02] (Wondershare)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [101904 2010-07-15] (ATI Technologies, Inc.)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [88632 2009-12-14] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [39352 2009-12-14] (Infowatch)
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [99440 2009-10-29] (JMicron Technology Corp.)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [135984 2011-10-20] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [13104 2011-10-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [585560 2013-06-11] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [23856 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [19984 2009-11-02] (Kaspersky Lab)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files\CyberLink\PowerDVD8\000.fcl [87536 2009-08-28] (CyberLink Corp.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-05 01:10 - 2014-02-05 01:11 - 00019874 _____ () C:\Users\****\Downloads\FRST.txt
2014-02-05 01:10 - 2014-02-05 01:10 - 01137152 _____ (Farbar) C:\Users\****\Downloads\FRST.exe
2014-02-05 01:08 - 2014-02-05 01:08 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2014-02-04 20:51 - 2014-02-04 20:51 - 00002182 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-01-31 19:23 - 2014-01-31 19:23 - 00000000 ____D () C:\Windows\system32\%PersonalRootCertificateFolder%
2014-01-31 14:02 - 2014-02-04 11:51 - 00000000 ____D () C:\Program Files\Tweaking.com - Windows Repair
2014-01-31 13:53 - 2014-02-04 11:12 - 00000000 ____D () C:\Users\****\Downloads\tweaking.com_windows_repair_aio
2014-01-31 13:38 - 2014-01-31 13:38 - 02903255 _____ () C:\Users\****\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-31 12:15 - 2014-01-31 12:15 - 00448512 _____ (OldTimer Tools) C:\Users\****\Downloads\TFC.exe
2014-01-30 22:06 - 2014-01-30 22:07 - 00001820 _____ () C:\sc-cleaner.txt
2014-01-30 22:06 - 2014-01-30 22:06 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\****\Downloads\sc-cleaner.exe
2014-01-30 21:41 - 2014-01-30 21:41 - 00013520 ____N () C:\bootsqm.dat
2014-01-30 21:03 - 2014-02-05 01:11 - 00000000 ____D () C:\FRST
2014-01-30 20:58 - 2014-01-30 20:58 - 01166132 _____ () C:\Users\****\Downloads\adwcleaner.exe
2014-01-30 20:42 - 2014-01-30 20:42 - 00006298 _____ () C:\Users\****\Desktop\JRT.txt
2014-01-30 20:39 - 2014-02-04 11:43 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 20:12 - 2014-01-30 20:12 - 04101441 _____ () C:\Users\****\Downloads\tdsskiller.zip
2014-01-30 19:36 - 2014-01-30 19:43 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-30 19:36 - 2014-01-30 19:36 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-30 19:35 - 2014-02-04 11:51 - 00000000 ____D () C:\Users\****\Desktop\mbar
2014-01-30 19:33 - 2014-01-30 19:33 - 00000340 _____ () C:\AdwCleaner[R2].txt
2014-01-30 13:53 - 2014-01-30 13:53 - 01037068 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-01-30 13:51 - 2014-01-30 13:51 - 12589848 _____ (Malwarebytes Corp.) C:\Users\****\Downloads\mbar-1.07.0.1009.exe
2014-01-30 13:43 - 2014-01-30 13:43 - 00013507 _____ () C:\Users\****\Downloads\MemTest4.zip
2014-01-30 13:39 - 2014-01-30 13:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\****\Downloads\tdsskiller.exe
2014-01-30 12:58 - 2014-02-04 23:42 - 00000000 ____D () C:\AdwCleaner
2014-01-30 11:46 - 2014-02-05 01:08 - 00000560 _____ () C:\Windows\setupact.log
2014-01-30 11:46 - 2014-01-30 11:46 - 00109280 _____ () C:\Users\****\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-30 11:46 - 2014-01-30 11:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-30 11:45 - 2014-01-31 13:59 - 00001796 _____ () C:\Windows\PFRO.log
2014-01-30 11:45 - 2014-01-30 11:46 - 00408696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 01:27 - 2014-02-04 11:51 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-01-30 01:27 - 2014-01-30 01:27 - 00002147 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-30 01:27 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-01-30 01:27 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean(27442).exe
2014-01-30 01:26 - 2014-01-30 01:26 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\****\Downloads\spybot-2.2.25.exe
2014-01-30 01:01 - 2014-02-05 01:07 - 00135177 _____ () C:\Windows\WindowsUpdate.log
2014-01-19 21:36 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-19 21:36 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-19 21:36 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-19 21:36 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-19 21:35 - 2014-01-19 21:36 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-10 10:24 - 2014-02-04 11:10 - 00000000 ____D () C:\Users\****\AppData\Local\DVDVideoSoft_Ltd
2014-01-10 10:05 - 2014-01-10 10:26 - 00000000 ____D () C:\Users\****\AppData\Roaming\DVDVideoSoft
==================== One Month Modified Files and Folders =======
2014-02-05 01:11 - 2014-02-05 01:10 - 00019874 _____ () C:\Users\****\Downloads\FRST.txt
2014-02-05 01:11 - 2014-01-30 21:03 - 00000000 ____D () C:\FRST
2014-02-05 01:10 - 2014-02-05 01:10 - 01137152 _____ (Farbar) C:\Users\****\Downloads\FRST.exe
2014-02-05 01:08 - 2014-02-05 01:08 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2014-02-05 01:08 - 2014-01-30 11:46 - 00000560 _____ () C:\Windows\setupact.log
2014-02-05 01:08 - 2013-04-11 15:46 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-05 01:08 - 2010-11-24 23:21 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-05 01:08 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-05 01:07 - 2014-01-30 01:01 - 00135177 _____ () C:\Windows\WindowsUpdate.log
2014-02-05 01:01 - 2012-04-01 09:34 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-05 00:51 - 2010-11-24 23:21 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-04 23:52 - 2009-07-14 05:34 - 00014784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-04 23:52 - 2009-07-14 05:34 - 00014784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-04 23:42 - 2014-01-30 12:58 - 00000000 ____D () C:\AdwCleaner
2014-02-04 22:01 - 2012-04-01 09:34 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-04 22:01 - 2011-07-10 10:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-04 21:27 - 2010-09-04 10:37 - 01498742 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-04 20:51 - 2014-02-04 20:51 - 00002182 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-02-04 12:08 - 2010-09-04 10:32 - 00000000 ____D () C:\Users\****
2014-02-04 11:57 - 2011-01-14 00:40 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-02-04 11:51 - 2014-01-31 14:02 - 00000000 ____D () C:\Program Files\Tweaking.com - Windows Repair
2014-02-04 11:51 - 2014-01-30 19:35 - 00000000 ____D () C:\Users\****\Desktop\mbar
2014-02-04 11:51 - 2014-01-30 01:27 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-02-04 11:51 - 2013-08-16 12:47 - 00000000 ____D () C:\Program Files\TrueCrypt
2014-02-04 11:51 - 2013-04-12 13:52 - 00000000 ____D () C:\Program Files\Eraser
2014-02-04 11:51 - 2013-04-11 15:50 - 00000000 ___RD () C:\Backup
2014-02-04 11:51 - 2012-08-19 21:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-04 11:51 - 2010-12-04 23:41 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-04 11:51 - 2010-12-04 19:29 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-04 11:51 - 2009-07-14 09:56 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-04 11:51 - 2009-07-14 09:56 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-04 11:51 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-04 11:51 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\de
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 __RSD () C:\Windows\Media
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ras
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Msdtc
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\icsxml
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\com
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Cursors
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-04 11:50 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\twain_32
2014-02-04 11:50 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\TAPI
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ias
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system
2014-02-04 11:49 - 2013-11-11 12:50 - 00000000 ____D () C:\Users\****\AppData\Roaming\vlc
2014-02-04 11:49 - 2013-05-20 01:36 - 00000000 ___SD () C:\Users\****\Documents\Passwords Database
2014-02-04 11:49 - 2009-07-14 09:57 - 00000000 ____D () C:\Windows\ShellNew
2014-02-04 11:49 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\de-DE
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\addins
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\IME
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-02-04 11:45 - 2011-06-18 17:13 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-04 11:45 - 2011-06-18 17:12 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-04 11:45 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\restore
2014-02-04 11:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-04 11:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2014-02-04 11:44 - 2010-09-04 10:51 - 00000000 ____D () C:\Windows\RaidTool
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\schemas
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\PLA
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-04 11:43 - 2014-01-30 20:39 - 00000000 ____D () C:\Windows\ERUNT
2014-02-04 11:43 - 2011-08-13 16:04 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Octoshape Streaming Services
2014-02-04 11:43 - 2011-08-10 18:28 - 00000000 ____D () C:\Users\****\AppData\Local\Microsoft Help
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Users\****\AppData\Roaming\picpick
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PicPick
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Program Files\PicPick
2014-02-04 11:43 - 2011-04-02 15:25 - 00000000 ____D () C:\Program Files\Veetle
2014-02-04 11:43 - 2011-02-28 17:18 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ATCBOX
2014-02-04 11:43 - 2011-02-22 21:50 - 00000000 ____D () C:\Program Files\SopCast
2014-02-04 11:43 - 2010-12-08 10:48 - 00000000 ____D () C:\Program Files\QuickTime
2014-02-04 11:43 - 2010-12-04 23:43 - 00000000 ____D () C:\Windows\de
2014-02-04 11:43 - 2010-12-04 19:34 - 00000000 ____D () C:\Program Files\Microsoft Baseline Security Analyzer 2
2014-02-04 11:43 - 2010-11-24 23:22 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-02-04 11:43 - 2010-11-24 23:22 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-02-04 11:43 - 2010-09-04 11:16 - 00000000 ____D () C:\Users\****\AppData\Roaming\ArcSoft
2014-02-04 11:43 - 2010-09-04 11:07 - 00000000 ____D () C:\Windows\CheckSur
2014-02-04 11:43 - 2010-09-04 10:32 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:43 - 2010-09-04 10:32 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:42 - 2013-11-18 01:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox 4.0 Beta 11
2014-02-04 11:42 - 2012-06-17 23:17 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-04 11:42 - 2011-12-06 00:06 - 00000000 ____D () C:\Program Files\dradio-Recorder
2014-02-04 11:42 - 2011-08-10 18:31 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-04 11:42 - 2011-06-18 15:48 - 00000000 ____D () C:\Program Files\Common Files\Tobit
2014-02-04 11:42 - 2011-01-13 23:14 - 00000000 ____D () C:\Users\****\AppData\Roaming\K-Meleon
2014-02-04 11:42 - 2011-01-13 23:14 - 00000000 ____D () C:\Program Files\K-Meleon
2014-02-04 11:42 - 2010-09-04 11:56 - 00000000 ____D () C:\Program Files\Common Files\CyberLink
2014-02-04 11:39 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\registration
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\winrm
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\WCN
2014-02-04 11:27 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-04 11:27 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Web
2014-02-04 11:27 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Vss
2014-02-04 11:26 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\slmgr
2014-02-04 11:26 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\spp
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\spool
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Speech
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\SMI
2014-02-04 11:25 - 2010-09-04 11:15 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NetworkList
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\MUI
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\IME
2014-02-04 11:21 - 2012-12-19 16:12 - 00000000 ____D () C:\Windows\system32\Adobe
2014-02-04 11:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Speech
2014-02-04 11:19 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\Performance
2014-02-04 11:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\security
2014-02-04 11:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Resources
2014-02-04 11:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Help
2014-02-04 11:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Globalization
2014-02-04 11:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Branding
2014-02-04 11:12 - 2014-01-31 13:53 - 00000000 ____D () C:\Users\****\Downloads\tweaking.com_windows_repair_aio
2014-02-04 11:12 - 2010-12-04 22:37 - 00000000 ____D () C:\Users\****\SecurityScans
2014-02-04 11:12 - 2010-09-08 19:48 - 00000000 ____D () C:\Users\Public\CyberLink
2014-02-04 11:12 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\AppCompat
2014-02-04 11:11 - 2012-07-11 12:31 - 00000000 ____D () C:\Users\****\AppData\Roaming\Orbit
2014-02-04 11:11 - 2011-12-06 00:06 - 00000000 ____D () C:\Users\****\AppData\Roaming\phonostar GmbH
2014-02-04 11:11 - 2011-08-13 16:04 - 00000000 ____D () C:\Users\****\AppData\Roaming\Octoshape
2014-02-04 11:11 - 2010-12-04 19:29 - 00000000 ____D () C:\Users\****\AppData\Roaming\Malwarebytes
2014-02-04 11:11 - 2010-11-29 23:28 - 00000000 ____D () C:\Users\****\AppData\Roaming\Mozilla
2014-02-04 11:11 - 2010-11-24 23:21 - 00000000 ____D () C:\Users\****\AppData\Roaming\Adobe
2014-02-04 11:11 - 2010-11-24 21:14 - 00000000 ____D () C:\Users\****\AppData\Roaming\Panda Security
2014-02-04 11:11 - 2010-09-04 10:32 - 00000000 ____D () C:\Users\****\AppData\Local\VirtualStore
2014-02-04 11:10 - 2014-01-10 10:24 - 00000000 ____D () C:\Users\****\AppData\Local\DVDVideoSoft_Ltd
2014-02-04 11:10 - 2011-02-28 17:17 - 00000000 ____D () C:\Users\****\AppData\Local\Apps\2.0
2014-02-04 11:10 - 2010-11-24 23:21 - 00000000 ____D () C:\Users\****\AppData\Local\Google
2014-02-04 11:10 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-02-04 11:09 - 2011-09-16 13:26 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-04 11:09 - 2011-08-07 17:56 - 00000000 ____D () C:\Program Files\Xvid
2014-02-04 11:09 - 2011-06-18 15:48 - 00000000 ____D () C:\Program Files\Tobit Radio.fx
2014-02-04 11:09 - 2011-02-17 12:10 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-02-04 11:09 - 2010-12-08 10:48 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 11:09 - 2010-12-04 23:42 - 00000000 ____D () C:\Program Files\Windows Live
2014-02-04 11:09 - 2010-12-04 19:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-04 11:09 - 2010-12-01 01:05 - 00000000 ____D () C:\Program Files\Yahoo!
2014-02-04 11:09 - 2010-11-30 22:04 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 11:09 - 2010-11-24 23:22 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-04 11:09 - 2010-09-04 11:16 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-02-04 11:09 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-04 11:08 - 2011-07-04 15:13 - 00000000 ____D () C:\Program Files\MSECache
2014-02-04 11:08 - 2010-12-04 23:42 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-04 11:08 - 2010-09-04 11:03 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-04 11:08 - 2010-09-04 10:52 - 00000000 ____D () C:\Program Files\NEC Electronics
2014-02-04 11:08 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-02-04 11:08 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\MSBuild
2014-02-04 11:07 - 2013-06-11 01:07 - 00000000 ____D () C:\Program Files\Kaspersky Lab
2014-02-04 11:07 - 2012-06-17 14:53 - 00000000 ____D () C:\Program Files\Java
2014-02-04 11:07 - 2011-08-10 18:29 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-04 11:07 - 2011-07-04 15:14 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-04 11:07 - 2010-11-24 23:21 - 00000000 ____D () C:\Program Files\Google
2014-02-04 11:07 - 2010-09-04 10:50 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-04 11:07 - 2010-09-04 10:49 - 00000000 ____D () C:\Program Files\Intel
2014-02-04 11:07 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Microsoft Games
2014-02-04 11:06 - 2010-12-04 23:02 - 00000000 ____D () C:\Program Files\Common Files\Windows Live
2014-02-04 11:06 - 2010-09-04 11:55 - 00000000 ____D () C:\Program Files\CyberLink
2014-02-04 11:06 - 2010-09-04 10:50 - 00000000 ____D () C:\Program Files\Common Files\postureAgent
2014-02-04 11:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-02-04 11:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-04 11:05 - 2013-11-22 17:11 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-04 11:05 - 2013-06-11 01:07 - 00000000 ____D () C:\Program Files\Common Files\InfoWatch
2014-02-04 11:05 - 2012-04-24 23:06 - 00000000 ____D () C:\Program Files\Ashampoo
2014-02-04 11:05 - 2011-08-10 18:28 - 00000000 __RHD () C:\MSOCache
2014-02-04 11:05 - 2011-06-15 22:08 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-02-04 11:05 - 2011-06-15 22:08 - 00000000 ____D () C:\Program Files\Adobe
2014-02-04 11:05 - 2010-10-19 09:26 - 00000000 ____D () C:\Program Files\ATI
2014-02-04 11:05 - 2010-10-19 09:25 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-04 11:05 - 2010-10-19 09:25 - 00000000 ____D () C:\ATI
2014-02-04 11:05 - 2010-09-04 11:15 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft
2014-02-04 11:05 - 2010-09-04 11:15 - 00000000 ____D () C:\Program Files\ArcSoft
2014-02-04 11:05 - 2010-09-04 10:51 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-02-01 12:10 - 2010-10-15 18:33 - 00000000 ____D () C:\Windows\Minidump
2014-02-01 11:25 - 2013-08-09 12:05 - 00000000 ____D () C:\Users\****\AppData\Roaming\Apowersoft
2014-02-01 11:25 - 2010-09-04 11:17 - 00000000 ____D () C:\Users\****\AppData\Roaming\Macromedia
2014-02-01 11:24 - 2010-11-29 23:28 - 00000000 ____D () C:\Users\****\AppData\Local\Mozilla
2014-02-01 11:17 - 2013-08-09 12:05 - 00000000 ____D () C:\Program Files\Apowersoft
2014-01-31 22:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-01-31 19:23 - 2014-01-31 19:23 - 00000000 ____D () C:\Windows\system32\%PersonalRootCertificateFolder%
2014-01-31 14:11 - 2013-08-14 13:49 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-01-31 13:59 - 2014-01-30 11:45 - 00001796 _____ () C:\Windows\PFRO.log
2014-01-31 13:38 - 2014-01-31 13:38 - 02903255 _____ () C:\Users\****\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-31 12:15 - 2014-01-31 12:15 - 00448512 _____ (OldTimer Tools) C:\Users\****\Downloads\TFC.exe
2014-01-30 22:07 - 2014-01-30 22:06 - 00001820 _____ () C:\sc-cleaner.txt
2014-01-30 22:06 - 2014-01-30 22:06 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\****\Downloads\sc-cleaner.exe
2014-01-30 21:47 - 2009-07-14 05:53 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-30 21:41 - 2014-01-30 21:41 - 00013520 ____N () C:\bootsqm.dat
2014-01-30 20:58 - 2014-01-30 20:58 - 01166132 _____ () C:\Users\****\Downloads\adwcleaner.exe
2014-01-30 20:42 - 2014-01-30 20:42 - 00006298 _____ () C:\Users\****\Desktop\JRT.txt
2014-01-30 20:12 - 2014-01-30 20:12 - 04101441 _____ () C:\Users\****\Downloads\tdsskiller.zip
2014-01-30 19:43 - 2014-01-30 19:36 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-30 19:36 - 2014-01-30 19:36 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-30 19:33 - 2014-01-30 19:33 - 00000340 _____ () C:\AdwCleaner[R2].txt
2014-01-30 13:53 - 2014-01-30 13:53 - 01037068 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-01-30 13:51 - 2014-01-30 13:51 - 12589848 _____ (Malwarebytes Corp.) C:\Users\****\Downloads\mbar-1.07.0.1009.exe
2014-01-30 13:43 - 2014-01-30 13:43 - 00013507 _____ () C:\Users\****\Downloads\MemTest4.zip
2014-01-30 13:39 - 2014-01-30 13:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\****\Downloads\tdsskiller.exe
2014-01-30 11:46 - 2014-01-30 11:46 - 00109280 _____ () C:\Users\****\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-30 11:46 - 2014-01-30 11:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-30 11:46 - 2014-01-30 11:45 - 00408696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 04:18 - 2011-01-13 23:14 - 00000000 ____D () C:\Users\****\AppData\Local\K-Meleon
2014-01-30 02:07 - 2010-12-04 19:01 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-30 01:45 - 2009-07-14 03:05 - 00106412 _____ () C:\Windows\system32\perfc009(27441).dat
2014-01-30 01:27 - 2014-01-30 01:27 - 00002147 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-30 01:26 - 2014-01-30 01:26 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\****\Downloads\spybot-2.2.25.exe
2014-01-20 09:47 - 2010-11-25 13:08 - 00000000 ____D () C:\Users\****\AppData\Local\Adobe
2014-01-19 21:41 - 2013-10-26 08:58 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-19 21:36 - 2014-01-19 21:35 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-10 10:26 - 2014-01-10 10:05 - 00000000 ____D () C:\Users\****\AppData\Roaming\DVDVideoSoft
Some content of TEMP:
====================
C:\Users\****\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-29 15:04
==================== End Of Log ============================
und die Additional: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-02-2014
Ran by **** at 2014-02-05 01:12:08
Running from C:\Users\****\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky PURE 2.0 (Enabled - Out of date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky PURE 2.0 (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky PURE 2.0 (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
==================== Installed Programs ======================
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133 - Adobe Systems, Inc.)
ArcSoft TotalMedia 3.5 (Version: 3.5.28.291 - ArcSoft)
Ashampoo WinOptimizer 6.60 (Version: 6.6.0 - Ashampoo GmbH & Co. KG)
ATCBOXlive! (HKCU Version: 0.2.0.0 - ATCBOX)
ATI Catalyst Install Manager (Version: 3.0.790.0 - ATI Technologies, Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0825.2146.37182 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2010.0825.2146.37182 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0825.2146.37182 - ATI Technologies, Inc.) Hidden
CCC Help English (Version: 2010.0825.2145.37182 - ATI) Hidden
ccc-core-static (Version: 2010.0825.2146.37182 - Ihr Firmenname) Hidden
ccc-utility (Version: 2010.0825.2146.37182 - ATI) Hidden
CCleaner (Version: 4.08 - Piriform)
CyberLink BD & 3D Advisor 2.0 (Version: - )
CyberLink PowerDVD 8 (Version: 8.0.3228 - CyberLink Corp.)
CyberLink PowerDVD 8 (Version: 8.0.3228 - CyberLink Corp.) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (Version: - Microsoft)
dradio-Recorder Version 3.02.2 (Version: - )
Eraser 6.0.10.2620 (Version: 6.0.2620 - The Eraser Project)
Gigabyte Raid Cinfigurer (Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
Google Chrome (HKCU Version: 8.0.552.237 - Google Inc.)
Google Earth (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Intel(R) Control Center (Version: 1.2.0.1006 - Intel Corporation)
Intel(R) Management Engine Components (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 9.5.0.1037 - Intel Corporation)
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky PURE 2.0 (Version: 12.0.2.733 - Kaspersky Lab)
Kaspersky PURE 2.0 (Version: 12.0.2.733 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Security Scan Plus (Version: 3.8.130.8 - McAfee, Inc.)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Baseline Security Analyzer 2.2 (Version: 2.2.2170 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel Viewer (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.17.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.17.0 - NEC Electronics Corporation) Hidden
Octoshape Streaming Services (HKCU Version: - Octoshape ApS)
PicPick (Version: 3.0.4 - Wiziple software)
QuickShare (Version: 1.6.1.714 - Linkury Inc.) <==== ATTENTION
QuickTime (Version: 7.69.80.9 - Apple Inc.)
Revo Uninstaller 1.92 (Version: 1.92 - VS Revo Group)
SopCast 3.3.2 (Version: 3.3.2 - www.sopcast.com)
Spybot - Search & Destroy (Version: 2.2.25 - Safer-Networking Ltd.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TrueCrypt (Version: 7.1a - TrueCrypt Foundation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2010 (KB2494150) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (Version: - Microsoft)
Veetle TV (Version: 0.9.19 - Veetle, Inc)
Visual C++ 9.0 CRT (x86) WinSXS MSM (Version: 9.0 - Microsoft Corporation) Hidden
VLC media player 2.0.8 (Version: 2.0.8 - VideoLAN)
WDR RadioRecorder (Version: - Tobit.Software)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
==================== Restore Points =========================
26-01-2014 19:13:59 Windows-Sicherung
30-01-2014 00:03:49 Revo Uninstaller's restore point - Mozilla Firefox 26.0 (x86 de)
30-01-2014 00:06:17 Revo Uninstaller's restore point - Mozilla Firefox 26.0 (x86 de)
30-01-2014 00:13:58 Revo Uninstaller's restore point - Apowersoft kostenloser Bildschirmrekorder V1.2.4
30-01-2014 03:16:05 Revo Uninstaller's restore point - K-Meleon 1.5.4 de-DE (nur entfernen)
31-01-2014 13:12:38 Tweaking.com - Windows Repair
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {32700E9D-CE37-4F7C-8AF0-97207D75FE7D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-04] (Adobe Systems Incorporated)
Task: {41DA2388-66FC-4793-85AF-0526CE9F5979} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {836915BF-C6BF-4B4A-A49C-7568052630B9} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {AC811728-8193-41E7-BDEA-731B459DE629} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-24] (Google Inc.)
Task: {B456BA6F-3F92-4D62-837D-E33070E8E824} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {BF59ED7E-C37A-4A1F-87F1-6CA41B29278E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {C4267CB0-E1EA-4481-874E-9D808AA3998B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-24] (Google Inc.)
Task: {E00A2E76-4640-4D29-A800-03D5050B6051} - System32\Tasks\RunAsStdUser Task => C:\Program Files\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe
Task: {E0946C3F-58EB-4595-837A-B4068307327E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-08-30 21:23 - 2012-08-30 21:23 - 00459192 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\dblite.dll
2014-01-30 01:27 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-01-30 01:27 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2010-09-04 11:15 - 2007-04-19 08:33 - 00035584 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\uPiApi.dll
2009-07-13 22:03 - 2009-07-14 02:15 - 00364544 _____ () C:\Windows\system32\msjetoledb40.dll
2010-09-04 11:15 - 2008-11-26 15:59 - 00131584 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\AbilisWinUsb.dll
2010-09-04 11:15 - 2008-10-22 15:01 - 00200704 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\VendorCmdRW.dll
2010-08-04 14:58 - 2010-08-04 14:58 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-08-25 20:44 - 2010-08-25 20:44 - 00270336 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2010-09-04 10:51 - 2009-10-02 12:18 - 00058880 _____ () C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2011-01-14 00:40 - 2011-01-08 04:35 - 04049976 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\pdf.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 01475128 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avcodec-52.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00099896 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avutil-50.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00197688 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avformat-52.dll
2014-01-30 01:27 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-01-30 01:27 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-01-30 01:27 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/04/2014 11:39:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WO6FW.exe, Version: 1.0.0.0, Zeitstempel: 0x4aa86f1c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb10c6
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x14e0
Startzeit der fehlerhaften Anwendung: 0xWO6FW.exe0
Pfad der fehlerhaften Anwendung: WO6FW.exe1
Pfad des fehlerhaften Moduls: WO6FW.exe2
Berichtskennung: WO6FW.exe3
Error: (02/04/2014 11:37:57 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WO6FW.exe, Version: 1.0.0.0, Zeitstempel: 0x4aa86f1c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb10c6
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0xed0
Startzeit der fehlerhaften Anwendung: 0xWO6FW.exe0
Pfad der fehlerhaften Anwendung: WO6FW.exe1
Pfad des fehlerhaften Moduls: WO6FW.exe2
Berichtskennung: WO6FW.exe3
Error: (02/04/2014 08:51:42 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 0.0.0.0, Zeitstempel: 0x4d27c1b0
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xe30
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3
Error: (02/04/2014 08:36:33 PM) (Source: Windows Backup) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "G:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
Error: (02/04/2014 10:59:20 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2014 10:59:16 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:59:14 AM) (Source: Wininit) (User: )
Description: Ein kritischer Systemprozess C:\Windows\system32\lsass.exe ist fehlgeschlagen mit den Statuscode 255. Der Computer muss neu gestartet werden.
Error: (02/04/2014 10:57:21 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2014 10:57:19 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:57:17 AM) (Source: Wininit) (User: )
Description: Ein kritischer Systemprozess C:\Windows\system32\lsass.exe ist fehlgeschlagen mit den Statuscode 255. Der Computer muss neu gestartet werden.
System errors:
=============
Error: (02/05/2014 01:09:26 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/05/2014 01:09:26 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Updating Service erreicht.
Error: (02/05/2014 01:08:56 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/05/2014 01:08:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/05/2014 01:08:55 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.
Error: (02/05/2014 01:06:54 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (02/04/2014 11:45:04 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/04/2014 00:14:19 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/04/2014 00:14:19 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Updating Service erreicht.
Error: (02/04/2014 00:13:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
Error: (02/04/2014 11:39:13 PM) (Source: Application Error)(User: )
Description: WO6FW.exe1.0.0.04aa86f1cKERNELBASE.dll6.1.7601.1822951fb10c60eedfade0000812f14e001cf21f9e95b62f1C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exeC:\Windows\system32\KERNELBASE.dll2b3e3d2e-8ded-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 11:37:57 PM) (Source: Application Error)(User: )
Description: WO6FW.exe1.0.0.04aa86f1cKERNELBASE.dll6.1.7601.1822951fb10c60eedfade0000812fed001cf21f9becbe837C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exeC:\Windows\system32\KERNELBASE.dllfde24441-8dec-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 08:51:42 PM) (Source: Application Error)(User: )
Description: chrome.exe0.0.0.04d27c1b0unknown0.0.0.000000000c000000500000000e3001cf21e08f2708dfC:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exeunknownc480bc99-8dd5-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 08:36:33 PM) (Source: Windows Backup)(User: )
Description: G:\Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)
Error: (02/04/2014 10:59:20 AM) (Source: ATIeRecord)(User: )
Description:
Error: (02/04/2014 10:59:16 AM) (Source: Schedule)(User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:59:14 AM) (Source: Wininit)(User: )
Description: C:\Windows\system32\lsass.exe255
Error: (02/04/2014 10:57:21 AM) (Source: ATIeRecord)(User: )
Description:
Error: (02/04/2014 10:57:19 AM) (Source: Schedule)(User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:57:17 AM) (Source: Wininit)(User: )
Description: C:\Windows\system32\lsass.exe255
CodeIntegrity Errors:
===================================
Date: 2013-06-07 16:08:23.000
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.998
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.996
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.990
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.987
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.985
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.979
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.977
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.974
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.968
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 3579.48 MB
Available physical RAM: 2188.39 MB
Total Pagefile: 7157.26 MB
Available Pagefile: 5464.24 MB
Total Virtual: 2047.88 MB
Available Virtual: 1918.43 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:540.79 GB) (Free:489.9 GB) NTFS
Drive d: (Daten) (Fixed) (Total:390.62 GB) (Free:390.43 GB) NTFS
Drive e: (GSP1RMCPRFRER_DE_DVD) (CDROM) (Total:2.34 GB) (Free:0 GB) UDF
Drive g: (VERBATIM) (Fixed) (Total:465.65 GB) (Free:119 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: DF7D657B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=541 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=391 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 06CC59EE)
Partition 1: (Not Active) - (Size=466 GB) - (Type=0C)
==================== End Of Log ============================
|
|
05.02.2014, 01:23
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™  | Windows 7 Booten bricht ab [gelöst] Malware seh ich da so nicht, aber wenn ich sowas sehe:
__________________Zitat:
 Das gleiche wenn ich TuneUp oder ähnliche Systemverhunzer sehe  Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ |
|
05.02.2014, 01:36
| #19 |
| | Windows 7 Booten bricht ab [gelöst] Ich könnte dir eine Tüte reichen... mbar hat nichts gefunden. Hier das Logfile: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.02.04.13
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16736
**** :: HEIM-PC [administrator]
05.02.2014 01:26:40
mbar-log-2014-02-05 (01-26-40).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 206849
Time elapsed: 6 minute(s), 22 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
05.02.2014, 09:51
| #20 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7 Booten bricht ab [gelöst]Zitat:
Adware/Junkware/Toolbars entfernen 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
06.02.2014, 00:14
| #21 |
| | Windows 7 Booten bricht ab [gelöst] Good evening, ich hoffe es geht heute wieder besser  hier der/die/das adwcleaner-log: Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 05/02/2014 um 23:48:56
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzername : **** - HEIM-PC
# Gestartet von : C:\Users\****\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16736
-\\ Mozilla Firefox v
-\\ Google Chrome v
[ Datei : C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R10].txt - [316 octets] - [31/01/2014 12:17:47]
AdwCleaner[R11].txt - [2279 octets] - [04/02/2014 22:40:40]
AdwCleaner[R12].txt - [1058 octets] - [05/02/2014 23:47:36]
AdwCleaner[R9].txt - [316 octets] - [30/01/2014 21:48:59]
AdwCleaner[S0].txt - [2290 octets] - [04/02/2014 23:42:35]
AdwCleaner[S1].txt - [980 octets] - [05/02/2014 23:48:56]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1039 octets] ##########
Soll ich trotzdem ein frisches FRST schicken, oder hast Du noch eine Idee, wo die sich versteckt haben kann. |
|
06.02.2014, 00:38
| #22 | ||
| /// TB-Ausbilder /// Anleitungs-Guru | Windows 7 Booten bricht ab [gelöst]Zitat:
Zitat:
Bitte Tools immer vom Desktop starten. Schau mal im Download-Ordner nach den Logs  FRST bitte anschließend wie von Cosinus gerfordert |
|
06.02.2014, 00:55
| #23 |
| | Windows 7 Booten bricht ab [gelöst] Da bin ich wieder zu blöd für. Wenn ich das Programm downloade, landet es in meinem Download-Ordner. Ziehe ich es von da auf den Desktop, steht in der txt trotzdem als Startort Code:
ATTFilter Gestartet von : C:\Users\****\Downloads\adwcleaner.exe
Es ist ein Kreuz... Ich mache morgen weiter. Gute Nacht. |
|
06.02.2014, 01:47
| #24 | |
| /// TB-Ausbilder /// Anleitungs-Guru | Windows 7 Booten bricht ab [gelöst]Zitat:
Normalerweise sollte auf dem Desktop auch das JRT-Log liegen, selbst wenn Du das Tool von "woanders" ausführst. Führst Du es zweimal aus, wird das erste Log vor dem Scanergebnis des zweiten Laufs gelöscht. Bei FRST z.B. ist es so: Da wo Du es ausführst (Download) würdest Du auch das Log finden. Schau einfach mal in Ruhe morgen... Geändert von deeprybka (06.02.2014 um 01:53 Uhr) |
|
06.02.2014, 15:13
| #25 |
| | Windows 7 Booten bricht ab [gelöst] So, die Zeit hat hier leider gar nichts geheilt. Fakt ist: 1.) Ich kann den Download-Zielordner nicht verändern, weil ich recht oben im Browser keine Menüanzeige, sondern Kaspersky Modul zur Link-Untersuchung, Virtuelle Tastatur und Schraubenschlüssel habe. 2.) JRT habe ich zwar auf dem Desktop aber auch nach erneutem Durchlauf wird kein Log-File erstellt. Irgendwann ist das Programm einfach fertig und das Fenster schliesst sich. Wie soll ich denn jetzt weiter verfahren? Bei anderen geht es doch auch!!! |
|
06.02.2014, 15:19
| #26 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7 Booten bricht ab [gelöst]Zitat:
Zudem hat man auch die Möglichkeit Dateien auf den Desktop zu verschieben
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2014, 16:28
| #27 |
| | Windows 7 Booten bricht ab [gelöst] Ich bemühe mich wirklich, alles genau so zu machen, wie ihr es vorgebt. Aber ich finde kein Browsermenü. Und ich den Hilfedateien von Chrome, werde ich immer wieder auf diesen Menübutton verwiesen. Es ist halt einfach keiner da. Und weiterhin kein JRT-Log. Was ich also jetzt anbieten kann ist folgendes: ADWCleaner-Log: Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 06/02/2014 um 15:37:04
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzername : **** - HEIM-PC
# Gestartet von : C:\Users\****\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16736
-\\ Mozilla Firefox v
-\\ Google Chrome v
[ Datei : C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R10].txt - [316 octets] - [31/01/2014 12:17:47]
AdwCleaner[R11].txt - [2279 octets] - [04/02/2014 22:40:40]
AdwCleaner[R12].txt - [1058 octets] - [05/02/2014 23:47:36]
AdwCleaner[R13].txt - [1178 octets] - [06/02/2014 00:43:55]
AdwCleaner[R14].txt - [1299 octets] - [06/02/2014 15:32:09]
AdwCleaner[R9].txt - [316 octets] - [30/01/2014 21:48:59]
AdwCleaner[S0].txt - [2290 octets] - [04/02/2014 23:42:35]
AdwCleaner[S1].txt - [1104 octets] - [05/02/2014 23:48:56]
AdwCleaner[S2].txt - [1239 octets] - [06/02/2014 00:44:26]
AdwCleaner[S3].txt - [1220 octets] - [06/02/2014 15:37:04]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1280 octets] ##########
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-02-2014
Ran by **** (administrator) on HEIM-PC on 06-02-2014 16:24:55
Running from C:\Users\****\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(Infowatch) C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
() C:\Windows\System32\XSrvSetup.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NEC Electronics Corporation) C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(ArcSoft, Inc.) C:\Program Files\ArcSoft\TotalMedia 3.5\TMMonitor.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\klwtblfs.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-10-02] (Intel Corporation)
HKLM\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [NUSB3MON] - C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-10-21] (NEC Electronics Corporation)
HKLM\...\Run: [ArcSoft Connection Service] - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [RemoteControl8] - C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-07-16] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] - C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [75048 2009-08-28] (cyberlink)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-08-25] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1246544 2010-11-03] (Logitech, Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Eraser] - C:\Program Files\Eraser\Eraser.exe [980920 2012-05-22] (The Eraser Project)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\klogon: C:\Windows\system32\klogon.dll (Kaspersky Lab ZAO)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\Run: [Video Performer63600.exe] - "C:\Users\****~1\AppData\Local\Temp\Video Performer63600.exe" /XML="C:\Users\****~1\AppData\Local\Temp\B7BA.tmp" /STP=0:2 <===== ATTENTION
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3666224 2013-09-20] (Safer-Networking Ltd.)
HKU\S-1-5-21-2546021727-1158181519-2853444584-1000\...\MountPoints2: {43658060-b806-11df-abb4-806e6f6e6963} - E:\Run.exe
==================== Internet (Whitelisted) ====================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {02CF5479-CEBD-45F5-95D4-2AEFDA04EE89} URL =
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL =
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: No Name - {53707962-6F74-2D53-2644-206D7942484F} - No File
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - No Name - !{62d40876-df18-411f-9d34-a9dd7a197bc5} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Tcpip\Parameters: [DhcpNameServer] 80.69.100.110 80.69.100.214
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.19 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 - C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\****\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\****\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox 4.0 Beta 11\firefox.exe
Chrome:
=======
CHR HomePage:
CHR RestoreOnStartup: "hxxp://www.ch-aviation.ch/portal/"
CHR DefaultSearchKeyword: r
CHR DefaultSearchProvider: Web Search
CHR DefaultSearchURL: hxxp://www.google.com
CHR Plugin: (Chrome PDF Viewer) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\gears.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\gcswf32.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.2.733_0\plugin/npUrlAdvisor.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.2.733_0\plugin/npVKPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.2.733_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\np-mswmp.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin3.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin4.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin5.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox 4.0 Beta 11\plugins\npqtplugin7.dll No File
CHR Plugin: (Octoshape Streaming Services) - C:\Users\****\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Yahoo! activeX Plug-in Bridge) - C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\****\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.16) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-06-11]
CHR Extension: (Virtuelle Tastatur) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-06-11]
CHR Extension: (Anti-Banner) - C:\Users\****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2013-06-11]
CHR HKLM\...\Chrome\Extension: [bhnjjbcnbmjmhgpliahlamecmbejpaol] - C:\Users\****\AppData\Local\CRE\bhnjjbcnbmjmhgpliahlamecmbejpaol.crx [2013-06-11]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\urladvisor.crx [2012-12-18]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\virtkbd.crx [2012-12-18]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\ChromeExt\ab.crx [2012-12-18]
CHR HKCU\...\Chrome\Extension: [bhnjjbcnbmjmhgpliahlamecmbejpaol] - C:\Users\****\AppData\Local\CRE\bhnjjbcnbmjmhgpliahlamecmbejpaol.crx [2012-12-18]
CHR StartMenuInternet: Google Chrome - C:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992 2009-12-21] (Infowatch)
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 JMB36X; C:\Windows\System32\XSrvSetup.exe [65536 2009-08-06] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3673944 2011-11-18] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe" [X]
S2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [X]
==================== Drivers (Whitelisted) ====================
S3 AF9035BDA; C:\Windows\System32\Drivers\AF9035BDA.sys [368000 2010-09-04] (AfaTech )
R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2013-06-02] (Wondershare)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [101904 2010-07-15] (ATI Technologies, Inc.)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [88632 2009-12-14] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [39352 2009-12-14] (Infowatch)
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [99440 2009-10-29] (JMicron Technology Corp.)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [135984 2011-10-20] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [13104 2011-10-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [585560 2013-06-11] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [23856 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [19984 2009-11-02] (Kaspersky Lab)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files\CyberLink\PowerDVD8\000.fcl [87536 2009-08-28] (CyberLink Corp.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-06 16:23 - 2014-02-06 16:25 - 00020418 _____ () C:\Users\****\Desktop\FRST.txt
2014-02-06 16:21 - 2014-02-06 16:21 - 00000000 ____D () C:\Users\****\Desktop\FRST-OlderVersion
2014-02-06 16:04 - 2014-02-06 16:04 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2014-02-06 15:31 - 2014-02-06 15:31 - 01166132 _____ () C:\Users\****\Desktop\adwcleaner.exe
2014-02-05 23:53 - 2014-02-04 08:38 - 01037530 _____ (Thisisu) C:\Users\****\Desktop\JRT_NEW.exe
2014-02-05 01:26 - 2014-02-05 01:26 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-05 01:10 - 2014-02-06 16:21 - 01139200 _____ (Farbar) C:\Users\****\Desktop\FRST.exe
2014-02-04 20:51 - 2014-02-04 20:51 - 00002182 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-01-31 19:23 - 2014-01-31 19:23 - 00000000 ____D () C:\Windows\system32\%PersonalRootCertificateFolder%
2014-01-31 14:02 - 2014-02-04 11:51 - 00000000 ____D () C:\Program Files\Tweaking.com - Windows Repair
2014-01-31 13:53 - 2014-02-04 11:12 - 00000000 ____D () C:\Users\****\Downloads\tweaking.com_windows_repair_aio
2014-01-31 13:38 - 2014-01-31 13:38 - 02903255 _____ () C:\Users\****\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-31 12:15 - 2014-01-31 12:15 - 00448512 _____ (OldTimer Tools) C:\Users\****\Downloads\TFC.exe
2014-01-30 22:06 - 2014-01-30 22:07 - 00001820 _____ () C:\sc-cleaner.txt
2014-01-30 22:06 - 2014-01-30 22:06 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\****\Downloads\sc-cleaner.exe
2014-01-30 21:03 - 2014-02-06 16:24 - 00000000 ____D () C:\FRST
2014-01-30 20:39 - 2014-02-04 11:43 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 20:12 - 2014-01-30 20:12 - 04101441 _____ () C:\Users\****\Downloads\tdsskiller.zip
2014-01-30 19:36 - 2014-02-05 01:33 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-30 19:36 - 2014-02-05 01:25 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-30 19:35 - 2014-02-05 01:33 - 00000000 ____D () C:\Users\****\Desktop\mbar
2014-01-30 19:33 - 2014-01-30 19:33 - 00000340 _____ () C:\AdwCleaner[R2].txt
2014-01-30 13:53 - 2014-01-30 13:53 - 01037068 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-01-30 13:51 - 2014-01-30 13:51 - 12589848 _____ (Malwarebytes Corp.) C:\Users\****\Downloads\mbar-1.07.0.1009.exe
2014-01-30 13:43 - 2014-01-30 13:43 - 00013507 _____ () C:\Users\****\Downloads\MemTest4.zip
2014-01-30 13:39 - 2014-01-30 13:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\****\Downloads\tdsskiller.exe
2014-01-30 12:58 - 2014-02-06 15:37 - 00000000 ____D () C:\AdwCleaner
2014-01-30 11:46 - 2014-02-06 16:04 - 00000952 _____ () C:\Windows\setupact.log
2014-01-30 11:46 - 2014-01-30 11:46 - 00109280 _____ () C:\Users\****\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-30 11:46 - 2014-01-30 11:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-30 11:45 - 2014-01-31 13:59 - 00001796 _____ () C:\Windows\PFRO.log
2014-01-30 11:45 - 2014-01-30 11:46 - 00408696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 01:27 - 2014-02-04 11:51 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-01-30 01:27 - 2014-01-30 01:27 - 00002147 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-30 01:27 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-01-30 01:27 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean(27442).exe
2014-01-30 01:26 - 2014-01-30 01:26 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\****\Downloads\spybot-2.2.25.exe
2014-01-30 01:01 - 2014-02-06 16:08 - 00365759 _____ () C:\Windows\WindowsUpdate.log
2014-01-19 21:36 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-19 21:36 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-19 21:36 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-19 21:36 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-19 21:35 - 2014-01-19 21:36 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-10 10:24 - 2014-02-04 11:10 - 00000000 ____D () C:\Users\****\AppData\Local\DVDVideoSoft_Ltd
2014-01-10 10:05 - 2014-01-10 10:26 - 00000000 ____D () C:\Users\****\AppData\Roaming\DVDVideoSoft
==================== One Month Modified Files and Folders =======
2014-02-06 16:25 - 2014-02-06 16:23 - 00020418 _____ () C:\Users\****\Desktop\FRST.txt
2014-02-06 16:24 - 2014-01-30 21:03 - 00000000 ____D () C:\FRST
2014-02-06 16:21 - 2014-02-06 16:21 - 00000000 ____D () C:\Users\****\Desktop\FRST-OlderVersion
2014-02-06 16:21 - 2014-02-05 01:10 - 01139200 _____ (Farbar) C:\Users\****\Desktop\FRST.exe
2014-02-06 16:12 - 2009-07-14 05:34 - 00014784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-06 16:12 - 2009-07-14 05:34 - 00014784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-06 16:08 - 2014-01-30 01:01 - 00365759 _____ () C:\Windows\WindowsUpdate.log
2014-02-06 16:05 - 2013-04-11 15:46 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-06 16:04 - 2014-02-06 16:04 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2014-02-06 16:04 - 2014-01-30 11:46 - 00000952 _____ () C:\Windows\setupact.log
2014-02-06 16:04 - 2010-11-24 23:21 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-06 16:04 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-06 16:01 - 2012-04-01 09:34 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-06 15:51 - 2010-11-24 23:21 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-06 15:37 - 2014-01-30 12:58 - 00000000 ____D () C:\AdwCleaner
2014-02-06 15:31 - 2014-02-06 15:31 - 01166132 _____ () C:\Users\****\Desktop\adwcleaner.exe
2014-02-05 01:33 - 2014-01-30 19:36 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-05 01:33 - 2014-01-30 19:35 - 00000000 ____D () C:\Users\****\Desktop\mbar
2014-02-05 01:26 - 2014-02-05 01:26 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-05 01:25 - 2014-01-30 19:36 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-04 22:01 - 2012-04-01 09:34 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-04 22:01 - 2011-07-10 10:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-04 21:27 - 2010-09-04 10:37 - 01498742 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-04 20:51 - 2014-02-04 20:51 - 00002182 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-02-04 12:08 - 2010-09-04 10:32 - 00000000 ____D () C:\Users\****
2014-02-04 11:57 - 2011-01-14 00:40 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-02-04 11:51 - 2014-01-31 14:02 - 00000000 ____D () C:\Program Files\Tweaking.com - Windows Repair
2014-02-04 11:51 - 2014-01-30 01:27 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-02-04 11:51 - 2013-08-16 12:47 - 00000000 ____D () C:\Program Files\TrueCrypt
2014-02-04 11:51 - 2013-04-12 13:52 - 00000000 ____D () C:\Program Files\Eraser
2014-02-04 11:51 - 2013-04-11 15:50 - 00000000 ___RD () C:\Backup
2014-02-04 11:51 - 2012-08-19 21:13 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-04 11:51 - 2010-12-04 23:41 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-02-04 11:51 - 2010-12-04 19:29 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-04 11:51 - 2009-07-14 09:56 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-04 11:51 - 2009-07-14 09:56 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-04 11:51 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-04 11:51 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\de
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-04 11:51 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\DVD Maker
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 __RSD () C:\Windows\Media
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ras
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Msdtc
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\icsxml
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\com
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Cursors
2014-02-04 11:51 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-04 11:50 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\twain_32
2014-02-04 11:50 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\TAPI
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ias
2014-02-04 11:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system
2014-02-04 11:49 - 2013-11-11 12:50 - 00000000 ____D () C:\Users\****\AppData\Roaming\vlc
2014-02-04 11:49 - 2013-05-20 01:36 - 00000000 ___SD () C:\Users\****\Documents\Passwords Database
2014-02-04 11:49 - 2009-07-14 09:57 - 00000000 ____D () C:\Windows\ShellNew
2014-02-04 11:49 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\de-DE
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\Offline Web Pages
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\addins
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-04 11:49 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Public\Libraries
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\IME
2014-02-04 11:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-02-04 11:45 - 2011-06-18 17:13 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-04 11:45 - 2011-06-18 17:12 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-04 11:45 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\restore
2014-02-04 11:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-04 11:45 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2014-02-04 11:44 - 2010-09-04 10:51 - 00000000 ____D () C:\Windows\RaidTool
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\schemas
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\PLA
2014-02-04 11:44 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-04 11:43 - 2014-01-30 20:39 - 00000000 ____D () C:\Windows\ERUNT
2014-02-04 11:43 - 2011-08-13 16:04 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Octoshape Streaming Services
2014-02-04 11:43 - 2011-08-10 18:28 - 00000000 ____D () C:\Users\****\AppData\Local\Microsoft Help
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Users\****\AppData\Roaming\picpick
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PicPick
2014-02-04 11:43 - 2011-05-11 15:12 - 00000000 ____D () C:\Program Files\PicPick
2014-02-04 11:43 - 2011-04-02 15:25 - 00000000 ____D () C:\Program Files\Veetle
2014-02-04 11:43 - 2011-02-28 17:18 - 00000000 ____D () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ATCBOX
2014-02-04 11:43 - 2011-02-22 21:50 - 00000000 ____D () C:\Program Files\SopCast
2014-02-04 11:43 - 2010-12-08 10:48 - 00000000 ____D () C:\Program Files\QuickTime
2014-02-04 11:43 - 2010-12-04 23:43 - 00000000 ____D () C:\Windows\de
2014-02-04 11:43 - 2010-12-04 19:34 - 00000000 ____D () C:\Program Files\Microsoft Baseline Security Analyzer 2
2014-02-04 11:43 - 2010-11-24 23:22 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-02-04 11:43 - 2010-11-24 23:22 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-02-04 11:43 - 2010-09-04 11:16 - 00000000 ____D () C:\Users\****\AppData\Roaming\ArcSoft
2014-02-04 11:43 - 2010-09-04 11:07 - 00000000 ____D () C:\Windows\CheckSur
2014-02-04 11:43 - 2010-09-04 10:32 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-04 11:43 - 2010-09-04 10:32 - 00000000 ___RD () C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-04 11:42 - 2013-11-18 01:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox 4.0 Beta 11
2014-02-04 11:42 - 2012-06-17 23:17 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-04 11:42 - 2011-12-06 00:06 - 00000000 ____D () C:\Program Files\dradio-Recorder
2014-02-04 11:42 - 2011-08-10 18:31 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-02-04 11:42 - 2011-06-18 15:48 - 00000000 ____D () C:\Program Files\Common Files\Tobit
2014-02-04 11:42 - 2011-01-13 23:14 - 00000000 ____D () C:\Users\****\AppData\Roaming\K-Meleon
2014-02-04 11:42 - 2011-01-13 23:14 - 00000000 ____D () C:\Program Files\K-Meleon
2014-02-04 11:42 - 2010-09-04 11:56 - 00000000 ____D () C:\Program Files\Common Files\CyberLink
2014-02-04 11:39 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\registration
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\winrm
2014-02-04 11:27 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\WCN
2014-02-04 11:27 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-04 11:27 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Web
2014-02-04 11:27 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Vss
2014-02-04 11:26 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\slmgr
2014-02-04 11:26 - 2009-07-14 09:47 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\spp
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\spool
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Speech
2014-02-04 11:26 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\SMI
2014-02-04 11:25 - 2010-09-04 11:15 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NetworkList
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\MUI
2014-02-04 11:25 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\IME
2014-02-04 11:21 - 2012-12-19 16:12 - 00000000 ____D () C:\Windows\system32\Adobe
2014-02-04 11:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Speech
2014-02-04 11:19 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\Performance
2014-02-04 11:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\security
2014-02-04 11:19 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Resources
2014-02-04 11:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Help
2014-02-04 11:14 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Globalization
2014-02-04 11:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Branding
2014-02-04 11:12 - 2014-01-31 13:53 - 00000000 ____D () C:\Users\****\Downloads\tweaking.com_windows_repair_aio
2014-02-04 11:12 - 2010-12-04 22:37 - 00000000 ____D () C:\Users\****\SecurityScans
2014-02-04 11:12 - 2010-09-08 19:48 - 00000000 ____D () C:\Users\Public\CyberLink
2014-02-04 11:12 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\AppCompat
2014-02-04 11:11 - 2012-07-11 12:31 - 00000000 ____D () C:\Users\****\AppData\Roaming\Orbit
2014-02-04 11:11 - 2011-12-06 00:06 - 00000000 ____D () C:\Users\****\AppData\Roaming\phonostar GmbH
2014-02-04 11:11 - 2011-08-13 16:04 - 00000000 ____D () C:\Users\****\AppData\Roaming\Octoshape
2014-02-04 11:11 - 2010-12-04 19:29 - 00000000 ____D () C:\Users\****\AppData\Roaming\Malwarebytes
2014-02-04 11:11 - 2010-11-29 23:28 - 00000000 ____D () C:\Users\****\AppData\Roaming\Mozilla
2014-02-04 11:11 - 2010-11-24 23:21 - 00000000 ____D () C:\Users\****\AppData\Roaming\Adobe
2014-02-04 11:11 - 2010-11-24 21:14 - 00000000 ____D () C:\Users\****\AppData\Roaming\Panda Security
2014-02-04 11:11 - 2010-09-04 10:32 - 00000000 ____D () C:\Users\****\AppData\Local\VirtualStore
2014-02-04 11:10 - 2014-01-10 10:24 - 00000000 ____D () C:\Users\****\AppData\Local\DVDVideoSoft_Ltd
2014-02-04 11:10 - 2011-02-28 17:17 - 00000000 ____D () C:\Users\****\AppData\Local\Apps\2.0
2014-02-04 11:10 - 2010-11-24 23:21 - 00000000 ____D () C:\Users\****\AppData\Local\Google
2014-02-04 11:10 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-02-04 11:09 - 2011-09-16 13:26 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-04 11:09 - 2011-08-07 17:56 - 00000000 ____D () C:\Program Files\Xvid
2014-02-04 11:09 - 2011-06-18 15:48 - 00000000 ____D () C:\Program Files\Tobit Radio.fx
2014-02-04 11:09 - 2011-02-17 12:10 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-02-04 11:09 - 2010-12-08 10:48 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-04 11:09 - 2010-12-04 23:42 - 00000000 ____D () C:\Program Files\Windows Live
2014-02-04 11:09 - 2010-12-04 19:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-04 11:09 - 2010-12-01 01:05 - 00000000 ____D () C:\Program Files\Yahoo!
2014-02-04 11:09 - 2010-11-30 22:04 - 00000000 ____D () C:\ProgramData\Apple
2014-02-04 11:09 - 2010-11-24 23:22 - 00000000 ____D () C:\ProgramData\Adobe
2014-02-04 11:09 - 2010-09-04 11:16 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-02-04 11:09 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-04 11:08 - 2011-07-04 15:13 - 00000000 ____D () C:\Program Files\MSECache
2014-02-04 11:08 - 2010-12-04 23:42 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-02-04 11:08 - 2010-09-04 11:03 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-04 11:08 - 2010-09-04 10:52 - 00000000 ____D () C:\Program Files\NEC Electronics
2014-02-04 11:08 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-02-04 11:08 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\MSBuild
2014-02-04 11:07 - 2013-06-11 01:07 - 00000000 ____D () C:\Program Files\Kaspersky Lab
2014-02-04 11:07 - 2012-06-17 14:53 - 00000000 ____D () C:\Program Files\Java
2014-02-04 11:07 - 2011-08-10 18:29 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-02-04 11:07 - 2011-07-04 15:14 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-04 11:07 - 2010-11-24 23:21 - 00000000 ____D () C:\Program Files\Google
2014-02-04 11:07 - 2010-09-04 10:50 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-04 11:07 - 2010-09-04 10:49 - 00000000 ____D () C:\Program Files\Intel
2014-02-04 11:07 - 2009-07-14 05:52 - 00000000 ____D () C:\Program Files\Microsoft Games
2014-02-04 11:06 - 2010-12-04 23:02 - 00000000 ____D () C:\Program Files\Common Files\Windows Live
2014-02-04 11:06 - 2010-09-04 11:55 - 00000000 ____D () C:\Program Files\CyberLink
2014-02-04 11:06 - 2010-09-04 10:50 - 00000000 ____D () C:\Program Files\Common Files\postureAgent
2014-02-04 11:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-02-04 11:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-04 11:05 - 2013-11-22 17:11 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-04 11:05 - 2013-06-11 01:07 - 00000000 ____D () C:\Program Files\Common Files\InfoWatch
2014-02-04 11:05 - 2012-04-24 23:06 - 00000000 ____D () C:\Program Files\Ashampoo
2014-02-04 11:05 - 2011-08-10 18:28 - 00000000 __RHD () C:\MSOCache
2014-02-04 11:05 - 2011-06-15 22:08 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-02-04 11:05 - 2011-06-15 22:08 - 00000000 ____D () C:\Program Files\Adobe
2014-02-04 11:05 - 2010-10-19 09:26 - 00000000 ____D () C:\Program Files\ATI
2014-02-04 11:05 - 2010-10-19 09:25 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-04 11:05 - 2010-10-19 09:25 - 00000000 ____D () C:\ATI
2014-02-04 11:05 - 2010-09-04 11:15 - 00000000 ____D () C:\Program Files\Common Files\ArcSoft
2014-02-04 11:05 - 2010-09-04 11:15 - 00000000 ____D () C:\Program Files\ArcSoft
2014-02-04 11:05 - 2010-09-04 10:51 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-02-04 08:38 - 2014-02-05 23:53 - 01037530 _____ (Thisisu) C:\Users\****\Desktop\JRT_NEW.exe
2014-02-01 12:10 - 2010-10-15 18:33 - 00000000 ____D () C:\Windows\Minidump
2014-02-01 11:25 - 2013-08-09 12:05 - 00000000 ____D () C:\Users\****\AppData\Roaming\Apowersoft
2014-02-01 11:25 - 2010-09-04 11:17 - 00000000 ____D () C:\Users\****\AppData\Roaming\Macromedia
2014-02-01 11:24 - 2010-11-29 23:28 - 00000000 ____D () C:\Users\****\AppData\Local\Mozilla
2014-02-01 11:17 - 2013-08-09 12:05 - 00000000 ____D () C:\Program Files\Apowersoft
2014-01-31 22:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-01-31 19:23 - 2014-01-31 19:23 - 00000000 ____D () C:\Windows\system32\%PersonalRootCertificateFolder%
2014-01-31 14:11 - 2013-08-14 13:49 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-01-31 13:59 - 2014-01-30 11:45 - 00001796 _____ () C:\Windows\PFRO.log
2014-01-31 13:38 - 2014-01-31 13:38 - 02903255 _____ () C:\Users\****\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-31 12:15 - 2014-01-31 12:15 - 00448512 _____ (OldTimer Tools) C:\Users\****\Downloads\TFC.exe
2014-01-30 22:07 - 2014-01-30 22:06 - 00001820 _____ () C:\sc-cleaner.txt
2014-01-30 22:06 - 2014-01-30 22:06 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\****\Downloads\sc-cleaner.exe
2014-01-30 21:47 - 2009-07-14 05:53 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-30 20:12 - 2014-01-30 20:12 - 04101441 _____ () C:\Users\****\Downloads\tdsskiller.zip
2014-01-30 19:33 - 2014-01-30 19:33 - 00000340 _____ () C:\AdwCleaner[R2].txt
2014-01-30 13:53 - 2014-01-30 13:53 - 01037068 _____ (Thisisu) C:\Users\****\Downloads\JRT.exe
2014-01-30 13:51 - 2014-01-30 13:51 - 12589848 _____ (Malwarebytes Corp.) C:\Users\****\Downloads\mbar-1.07.0.1009.exe
2014-01-30 13:43 - 2014-01-30 13:43 - 00013507 _____ () C:\Users\****\Downloads\MemTest4.zip
2014-01-30 13:39 - 2014-01-30 13:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\****\Downloads\tdsskiller.exe
2014-01-30 11:46 - 2014-01-30 11:46 - 00109280 _____ () C:\Users\****\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-30 11:46 - 2014-01-30 11:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-30 11:46 - 2014-01-30 11:45 - 00408696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 04:18 - 2011-01-13 23:14 - 00000000 ____D () C:\Users\****\AppData\Local\K-Meleon
2014-01-30 02:07 - 2010-12-04 19:01 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-30 01:45 - 2009-07-14 03:05 - 00106412 _____ () C:\Windows\system32\perfc009(27441).dat
2014-01-30 01:27 - 2014-01-30 01:27 - 00002147 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-30 01:26 - 2014-01-30 01:26 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\****\Downloads\spybot-2.2.25.exe
2014-01-20 09:47 - 2010-11-25 13:08 - 00000000 ____D () C:\Users\****\AppData\Local\Adobe
2014-01-19 21:41 - 2013-10-26 08:58 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-19 21:36 - 2014-01-19 21:35 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-10 10:26 - 2014-01-10 10:05 - 00000000 ____D () C:\Users\****\AppData\Roaming\DVDVideoSoft
Some content of TEMP:
====================
C:\Users\****\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-29 15:04
==================== End Of Log ============================
und Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 05-02-2014
Ran by **** at 2014-02-06 16:25:09
Running from C:\Users\****\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky PURE 2.0 (Enabled - Out of date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky PURE 2.0 (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky PURE 2.0 (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
==================== Installed Programs ======================
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133 - Adobe Systems, Inc.)
ArcSoft TotalMedia 3.5 (Version: 3.5.28.291 - ArcSoft)
Ashampoo WinOptimizer 6.60 (Version: 6.6.0 - Ashampoo GmbH & Co. KG)
ATCBOXlive! (HKCU Version: 0.2.0.0 - ATCBOX)
ATI Catalyst Install Manager (Version: 3.0.790.0 - ATI Technologies, Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0825.2146.37182 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2010.0825.2146.37182 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0825.2146.37182 - ATI Technologies, Inc.) Hidden
CCC Help English (Version: 2010.0825.2145.37182 - ATI) Hidden
ccc-core-static (Version: 2010.0825.2146.37182 - Ihr Firmenname) Hidden
ccc-utility (Version: 2010.0825.2146.37182 - ATI) Hidden
CCleaner (Version: 4.08 - Piriform)
CyberLink BD & 3D Advisor 2.0 (Version: - )
CyberLink PowerDVD 8 (Version: 8.0.3228 - CyberLink Corp.)
CyberLink PowerDVD 8 (Version: 8.0.3228 - CyberLink Corp.) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (Version: - Microsoft)
dradio-Recorder Version 3.02.2 (Version: - )
Eraser 6.0.10.2620 (Version: 6.0.2620 - The Eraser Project)
Gigabyte Raid Cinfigurer (Version: 1.00.0001 - GIGABYTE Technologies, Inc.)
Google Chrome (HKCU Version: 8.0.552.237 - Google Inc.)
Google Earth (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Intel(R) Control Center (Version: 1.2.0.1006 - Intel Corporation)
Intel(R) Management Engine Components (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 9.5.0.1037 - Intel Corporation)
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky PURE 2.0 (Version: 12.0.2.733 - Kaspersky Lab)
Kaspersky PURE 2.0 (Version: 12.0.2.733 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Security Scan Plus (Version: 3.8.130.8 - McAfee, Inc.)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Baseline Security Analyzer 2.2 (Version: 2.2.2170 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel Viewer (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.17.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (Version: 1.0.17.0 - NEC Electronics Corporation) Hidden
Octoshape Streaming Services (HKCU Version: - Octoshape ApS)
PicPick (Version: 3.0.4 - Wiziple software)
QuickShare (Version: 1.6.1.714 - Linkury Inc.) <==== ATTENTION
QuickTime (Version: 7.69.80.9 - Apple Inc.)
Revo Uninstaller 1.92 (Version: 1.92 - VS Revo Group)
SopCast 3.3.2 (Version: 3.3.2 - www.sopcast.com)
Spybot - Search & Destroy (Version: 2.2.25 - Safer-Networking Ltd.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TrueCrypt (Version: 7.1a - TrueCrypt Foundation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2010 (KB2494150) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (Version: - Microsoft)
Veetle TV (Version: 0.9.19 - Veetle, Inc)
Visual C++ 9.0 CRT (x86) WinSXS MSM (Version: 9.0 - Microsoft Corporation) Hidden
VLC media player 2.0.8 (Version: 2.0.8 - VideoLAN)
WDR RadioRecorder (Version: - Tobit.Software)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
==================== Restore Points =========================
26-01-2014 19:13:59 Windows-Sicherung
30-01-2014 00:03:49 Revo Uninstaller's restore point - Mozilla Firefox 26.0 (x86 de)
30-01-2014 00:06:17 Revo Uninstaller's restore point - Mozilla Firefox 26.0 (x86 de)
30-01-2014 00:13:58 Revo Uninstaller's restore point - Apowersoft kostenloser Bildschirmrekorder V1.2.4
30-01-2014 03:16:05 Revo Uninstaller's restore point - K-Meleon 1.5.4 de-DE (nur entfernen)
31-01-2014 13:12:38 Tweaking.com - Windows Repair
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {32700E9D-CE37-4F7C-8AF0-97207D75FE7D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-04] (Adobe Systems Incorporated)
Task: {41DA2388-66FC-4793-85AF-0526CE9F5979} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {836915BF-C6BF-4B4A-A49C-7568052630B9} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {AC811728-8193-41E7-BDEA-731B459DE629} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-24] (Google Inc.)
Task: {B456BA6F-3F92-4D62-837D-E33070E8E824} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {BF59ED7E-C37A-4A1F-87F1-6CA41B29278E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {C4267CB0-E1EA-4481-874E-9D808AA3998B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-24] (Google Inc.)
Task: {E00A2E76-4640-4D29-A800-03D5050B6051} - System32\Tasks\RunAsStdUser Task => C:\Program Files\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe
Task: {E0946C3F-58EB-4595-837A-B4068307327E} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-08-30 21:23 - 2012-08-30 21:23 - 00459192 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\dblite.dll
2012-04-24 23:06 - 2010-02-12 09:37 - 00633696 _____ () C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\ContextHandler.dll
2014-01-30 01:27 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-01-30 01:27 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2012-08-30 21:24 - 2012-08-30 21:24 - 02126264 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtCore4.dll
2012-08-30 21:24 - 2012-08-30 21:24 - 07422392 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtGui4.dll
2012-08-30 21:24 - 2012-08-30 21:24 - 02453944 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtDeclarative4.dll
2012-08-30 21:24 - 2012-08-30 21:24 - 01270200 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtScript4.dll
2012-08-30 21:24 - 2012-08-30 21:24 - 00192952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtSql4.dll
2012-08-30 21:24 - 2012-08-30 21:24 - 00795064 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\QtNetwork4.dll
2011-09-05 18:36 - 2011-09-05 18:36 - 00025088 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\imageformats\qgif4.dll
2011-09-05 18:36 - 2011-09-05 18:36 - 00180224 _____ () C:\Program Files\Kaspersky Lab\Kaspersky PURE 2.0\imageformats\qjpeg4.dll
2010-09-04 11:15 - 2007-04-19 08:33 - 00035584 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\uPiApi.dll
2009-07-13 22:03 - 2009-07-14 02:15 - 00364544 _____ () C:\Windows\system32\msjetoledb40.dll
2010-09-04 11:15 - 2008-11-26 15:59 - 00131584 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\AbilisWinUsb.dll
2010-09-04 11:15 - 2008-10-22 15:01 - 00200704 _____ () C:\Program Files\ArcSoft\TotalMedia 3.5\VendorCmdRW.dll
2010-09-04 10:51 - 2009-10-02 12:18 - 00058880 _____ () C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-01-30 01:27 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2010-08-04 14:58 - 2010-08-04 14:58 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-08-25 20:44 - 2010-08-25 20:44 - 00270336 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-01-30 01:27 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-01-30 01:27 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2011-01-14 00:40 - 2011-01-08 04:35 - 04049976 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\pdf.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 01475128 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avcodec-52.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00099896 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avutil-50.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00197688 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\avformat-52.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00462904 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\libglesv2.dll
2011-01-14 00:40 - 2011-01-08 04:34 - 00123960 _____ () C:\Users\****\AppData\Local\Google\Chrome\Application\8.0.552.237\libegl.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/04/2014 11:39:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WO6FW.exe, Version: 1.0.0.0, Zeitstempel: 0x4aa86f1c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb10c6
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0x14e0
Startzeit der fehlerhaften Anwendung: 0xWO6FW.exe0
Pfad der fehlerhaften Anwendung: WO6FW.exe1
Pfad des fehlerhaften Moduls: WO6FW.exe2
Berichtskennung: WO6FW.exe3
Error: (02/04/2014 11:37:57 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: WO6FW.exe, Version: 1.0.0.0, Zeitstempel: 0x4aa86f1c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb10c6
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x0000812f
ID des fehlerhaften Prozesses: 0xed0
Startzeit der fehlerhaften Anwendung: 0xWO6FW.exe0
Pfad der fehlerhaften Anwendung: WO6FW.exe1
Pfad des fehlerhaften Moduls: WO6FW.exe2
Berichtskennung: WO6FW.exe3
Error: (02/04/2014 08:51:42 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 0.0.0.0, Zeitstempel: 0x4d27c1b0
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xe30
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3
Error: (02/04/2014 08:36:33 PM) (Source: Windows Backup) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "G:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
Error: (02/04/2014 10:59:20 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2014 10:59:16 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:59:14 AM) (Source: Wininit) (User: )
Description: Ein kritischer Systemprozess C:\Windows\system32\lsass.exe ist fehlgeschlagen mit den Statuscode 255. Der Computer muss neu gestartet werden.
Error: (02/04/2014 10:57:21 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
Error: (02/04/2014 10:57:19 AM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:57:17 AM) (Source: Wininit) (User: )
Description: Ein kritischer Systemprozess C:\Windows\system32\lsass.exe ist fehlgeschlagen mit den Statuscode 255. Der Computer muss neu gestartet werden.
System errors:
=============
Error: (02/06/2014 04:05:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/06/2014 04:05:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/06/2014 04:05:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.
Error: (02/06/2014 02:12:06 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/06/2014 00:46:15 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/06/2014 00:46:12 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intel(R) Rapid Storage Technology" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/06/2014 00:46:12 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Intel(R) Rapid Storage Technology erreicht.
Error: (02/06/2014 00:25:38 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/05/2014 11:51:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (02/05/2014 10:39:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SBSD Security Center Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
Error: (02/04/2014 11:39:13 PM) (Source: Application Error)(User: )
Description: WO6FW.exe1.0.0.04aa86f1cKERNELBASE.dll6.1.7601.1822951fb10c60eedfade0000812f14e001cf21f9e95b62f1C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exeC:\Windows\system32\KERNELBASE.dll2b3e3d2e-8ded-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 11:37:57 PM) (Source: Application Error)(User: )
Description: WO6FW.exe1.0.0.04aa86f1cKERNELBASE.dll6.1.7601.1822951fb10c60eedfade0000812fed001cf21f9becbe837C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\WO6FW.exeC:\Windows\system32\KERNELBASE.dllfde24441-8dec-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 08:51:42 PM) (Source: Application Error)(User: )
Description: chrome.exe0.0.0.04d27c1b0unknown0.0.0.000000000c000000500000000e3001cf21e08f2708dfC:\Users\****\AppData\Local\Google\Chrome\Application\chrome.exeunknownc480bc99-8dd5-11e3-b980-6cf049b8fc5c
Error: (02/04/2014 08:36:33 PM) (Source: Windows Backup)(User: )
Description: G:\Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)
Error: (02/04/2014 10:59:20 AM) (Source: ATIeRecord)(User: )
Description:
Error: (02/04/2014 10:59:16 AM) (Source: Schedule)(User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:59:14 AM) (Source: Wininit)(User: )
Description: C:\Windows\system32\lsass.exe255
Error: (02/04/2014 10:57:21 AM) (Source: ATIeRecord)(User: )
Description:
Error: (02/04/2014 10:57:19 AM) (Source: Schedule)(User: )
Description: Schedule error: 0Initialize call failed, bailing out
Error: (02/04/2014 10:57:17 AM) (Source: Wininit)(User: )
Description: C:\Windows\system32\lsass.exe255
CodeIntegrity Errors:
===================================
Date: 2013-06-07 16:08:23.000
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.998
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.996
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.990
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.987
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.985
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.979
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.977
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.974
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-07 16:08:22.968
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 36%
Total physical RAM: 3579.48 MB
Available physical RAM: 2263.53 MB
Total Pagefile: 7157.26 MB
Available Pagefile: 5273.95 MB
Total Virtual: 2047.88 MB
Available Virtual: 1918.47 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:540.79 GB) (Free:488.28 GB) NTFS
Drive d: (Daten) (Fixed) (Total:390.62 GB) (Free:390.43 GB) NTFS
Drive g: (VERBATIM) (Fixed) (Total:465.65 GB) (Free:122.76 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: DF7D657B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=541 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=391 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 466 GB) (Disk ID: 06CC59EE)
Partition 1: (Not Active) - (Size=466 GB) - (Type=0C)
==================== End Of Log ============================
|
|
06.02.2014, 16:40
| #28 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7 Booten bricht ab [gelöst] Anleitung 1:1 umgesetzt? Ich verweise mal auf: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.02.2014, 17:07
| #29 |
| | Windows 7 Booten bricht ab [gelöst] Ich schrieb ja, ich bemühe mich... ;-) Allein das Ergebnis ist das gleiche. Es gibt keine Log-Datei. Dafür einen Trojaneralarm. Bei "checking Internet Explorer" schlug mein Kaspersky an und vermeldete: PDM:Trojan.Win32.StartPage.a Gelöscht. JRT brach ab. Tool erneut gestartet (natürlich mit den richtigen Rechten). Wieder Trojaneralarm an der gleichen Stelle. Diesmal Quarantäne. JRT brach ab. |
|
06.02.2014, 23:44
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 7 Booten bricht ab [gelöst] Virenscanner mal deaktivieren bevor man JRT startet
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Windows 7 Booten bricht ab |
| abgesicherte, abgesicherten, automatische, blaue, booten, bricht, fehler, funktionier, funktioniert, konnte, liebe, lieben, maximal, menge, modus, nicht mehr, problem, rechner, schwarz, systemwiederherstellung, update, vollständig, wechsel, windows, windows 7, zwischen |
Linear-Darstellung
