Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: Laptop extrem langsam

Windows 7: Laptop extrem langsam


Log-Analyse und Auswertung: Windows 7: Laptop extrem langsam

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 18.05.2014, 15:41   #1
Speedy2014
 
Windows 7: Laptop extrem langsam - Standard

Windows 7: Laptop extrem langsam


Hallo,

ich habe meinen Lenovo Laptop seit 3 1/2 Jahren. Er ist seit einigen Monaten extrem langsam. Neu formatieren wäre okay für mich, aber ich habe keine Windows-CD hier. Kann man den Laptop auch ohne formatieren wieder schnell machen? Die Daten sind gesichert, also dürfte alles gelöscht werden. Gmer.txt ist leider leer.

Vielen Dank für die Hilfe

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-05-2014
Ran by Romi (administrator) on ROMI-PC on 18-05-2014 15:31:55
Running from C:\Users\Romi\Downloads
Platform: Microsoft Windows 7 Enterprise  Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\loggingserver.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
() C:\Program Files\AVG Secure Search\vprot.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Dropbox, Inc.) C:\Users\Romi\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(PC-Doctor, Inc.) C:\Program Files\PC-Doctor\pcdrcui.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(PC-Doctor, Inc.) C:\Program Files\PC-Doctor\pcdrrealtime.p5x
(PC-Doctor, Inc.) C:\Program Files\PC-Doctor\pcdrcpu.p5x


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4114368 2009-12-17] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [6223808 2009-12-17] (Lenovo (Beijing) Limited)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [47904 2010-09-22] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41208 2012-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Secure Search\vprot.exe [2557976 2014-04-29] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254896 2012-09-17] (Sun Microsystems, Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [4962320 2014-01-22] (AVG Technologies CZ, s.r.o.)
AppInit_DLLs: c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll => c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll File Not Found
Startup: C:\Users\Romi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Romi\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.claro-search.com/?affID=114506&babsrc=HP_clro&mntrId=2ec66bcb000000000000002682597d63
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x682F1DA5F450CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.claro-search.com/?affID=114506&babsrc=HP_clro&mntrId=2ec66bcb000000000000002682597d63
URLSearchHook: HKLM - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files\softonic-de3\tbsoft.dll No File
URLSearchHook: HKCU - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files\softonic-de3\tbsoft.dll No File
SearchScopes: HKLM - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431245
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431245
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.claro-search.com/?q={searchTerms}&affID=114506&babsrc=SP_clro&mntrId=2ec66bcb000000000000002682597d63
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.claro-search.com/?q={searchTerms}&affID=114506&babsrc=SP_clro&mntrId=2ec66bcb000000000000002682597d63
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2431245
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
BHO: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll (Wajam)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files\softonic-de3\tbsoft.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll No File
Toolbar: HKLM - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files\softonic-de3\tbsoft.dll No File
Toolbar: HKLM - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll No File
Toolbar: HKLM - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
DPF: {9E2CD2C3-4DDA-4473-B904-B8E6D0DBAB86} hxxp://consumersupport.lenovo.com/smartdownloading/cab/npdueng.cab
DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Romi\AppData\Roaming\Mozilla\Firefox\Profiles\0hsu6duq.default
FF user.js: detected! => C:\Users\Romi\AppData\Roaming\Mozilla\Firefox\Profiles\0hsu6duq.default\user.js
FF NewTab: hxxp://www.claro-search.com/?affID=114506&babsrc=NT_clro&mntrId=2ec66bcb000000000000002682597d63
FF Homepage: hxxp://isearch.avg.com/?cid={6060F083-8D82-4889-B801-BB96FC53D723}&mid=0c9050f400e747d6b2e9a113f084fe0b-25b097fd69b0d57d200fd462cd17f9f95425031b&lang=de&ds=AVG&pr=fr&d=2013-09-25 23:46:28&v=18.0.5.292&pid=avg&sg=0&sap=hp
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.0\\npsitesafety.dll No File
FF Plugin: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @lenovo.com/dueng,version=2.0 - C:\Windows\system32\lenovo\update\npdueng.dll (Lenovo)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 - C:\Program Files\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\Romi\AppData\Roaming\Mozilla\Firefox\Profiles\0hsu6duq.default\searchplugins\claro.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Romi\AppData\Roaming\Mozilla\Firefox\Profiles\0hsu6duq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-04-24]
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Romi\AppData\Roaming\Mozilla\Firefox\Profiles\0hsu6duq.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2012-10-22]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-10]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-05-10]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-10]
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.0.443
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\18.1.0.443 [2014-04-29]
FF HKCU\...\Firefox\Extensions: [{58bd07eb-0ee0-4df0-8121-dc9b693373df}] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension

Chrome: 
=======
CHR HomePage: hxxp://www.claro-search.com/?affID=114506&babsrc=HP_clro&mntrId=2ec66bcb000000000000002682597d63
CHR RestoreOnStartup: "hxxp://www.claro-search.com/?affID=114506&babsrc=HP_clro&mntrId=2ec66bcb000000000000002682597d63"
CHR DefaultSearchURL: {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR Extension: (No Name) - C:\Users\Romi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl [2013-01-25]
CHR Extension: (Skype Extension) - C:\Users\Romi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-05-18]
CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Romi\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-06-21]
CHR HKLM\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\Romi\AppData\Local\Wajam\Chrome\wajam.crx [2012-10-05]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\...\Chrome\Extension: [pgafcinpmmpklohkojmllohdhomoefph] - C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.crx [2013-05-14]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3788816 2014-01-22] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater18.1.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\ToolbarUpdater.exe [1801240 2014-04-29] (AVG Secure Search)
S3 WajamUpdater; C:\Program Files\Wajam\Updater\WajamUpdater.exe [109064 2012-10-05] (Wajam)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [21256 2009-09-03] (Lenovo Corporation)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [210712 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [149272 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22808 2014-01-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-11-01] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42272 2014-04-29] (AVG Technologies)
S2 SCRCAMHRDRV; C:\Windows\System32\DRIVERS\SCRCAMHRDRV.sys [234800 2010-03-01] (Windows (R) Server 2003 DDK provider)
R3 PCDSRVC{3037D694-FD904ACA-06020200}_0; \??\c:\program files\pc-doctor\pcdsrvc.pkms [X]
S3 StarOpen; No ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-18 15:31 - 2014-05-18 15:33 - 00017847 _____ () C:\Users\Romi\Downloads\FRST.txt
2014-05-18 15:31 - 2014-05-18 15:31 - 00000000 ____D () C:\FRST
2014-05-18 15:28 - 2014-05-18 15:28 - 01056768 _____ (Farbar) C:\Users\Romi\Downloads\FRST.exe
2014-05-18 15:20 - 2014-05-18 15:23 - 00000470 _____ () C:\Users\Romi\Desktop\defogger_disable.log
2014-05-18 15:20 - 2014-05-18 15:20 - 00000000 _____ () C:\Users\Romi\defogger_reenable
2014-05-18 15:18 - 2014-05-18 15:18 - 00050477 _____ () C:\Users\Romi\Desktop\Defogger.exe
2014-05-17 13:44 - 2014-05-17 13:44 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-17 13:41 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-17 13:41 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-17 13:41 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-17 12:56 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-17 12:56 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-17 12:56 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-17 12:56 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-17 12:56 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-17 12:56 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-17 12:56 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-17 12:56 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-05-17 12:56 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-17 12:56 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-17 12:56 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-17 12:56 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-17 12:55 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-17 12:55 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-17 12:45 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-10 20:17 - 2014-05-18 14:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-10 20:16 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-10 11:31 - 2014-05-18 15:21 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-05 18:52 - 2014-05-05 18:56 - 00000000 ____D () C:\Users\Romi\Desktop\Briest
2014-04-30 00:37 - 2014-04-30 00:37 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-30 00:37 - 2014-04-30 00:37 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-30 00:37 - 2014-04-30 00:37 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-30 00:37 - 2014-04-30 00:37 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-30 00:37 - 2014-04-30 00:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-29 23:53 - 2014-04-29 23:53 - 00000000 ____D () C:\ProgramData\AVG Secure Search

==================== One Month Modified Files and Folders =======

2014-05-18 15:34 - 2011-09-11 23:51 - 00000466 _____ () C:\Windows\Tasks\SystemToolsDailyTest.job
2014-05-18 15:33 - 2014-05-18 15:31 - 00017847 _____ () C:\Users\Romi\Downloads\FRST.txt
2014-05-18 15:32 - 2009-07-14 06:34 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-18 15:32 - 2009-07-14 06:34 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-18 15:31 - 2014-05-18 15:31 - 00000000 ____D () C:\FRST
2014-05-18 15:28 - 2014-05-18 15:28 - 01056768 _____ (Farbar) C:\Users\Romi\Downloads\FRST.exe
2014-05-18 15:27 - 2010-09-10 16:01 - 01936331 _____ () C:\Windows\WindowsUpdate.log
2014-05-18 15:23 - 2014-05-18 15:20 - 00000470 _____ () C:\Users\Romi\Desktop\defogger_disable.log
2014-05-18 15:21 - 2014-05-10 11:31 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-18 15:20 - 2014-05-18 15:20 - 00000000 _____ () C:\Users\Romi\defogger_reenable
2014-05-18 15:20 - 2010-09-10 16:04 - 00000000 ____D () C:\Users\Romi
2014-05-18 15:18 - 2014-05-18 15:18 - 00050477 _____ () C:\Users\Romi\Desktop\Defogger.exe
2014-05-18 15:11 - 2011-09-11 23:51 - 00000528 _____ () C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2014-05-18 15:08 - 2011-05-17 02:07 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-18 15:07 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-18 15:06 - 2011-05-18 00:14 - 00000000 ____D () C:\Users\Romi\AppData\Roaming\Dropbox
2014-05-18 15:06 - 2010-12-23 23:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-05-18 15:04 - 2011-05-18 00:19 - 00000000 ___RD () C:\Users\Romi\Dropbox
2014-05-18 15:00 - 2013-05-31 22:10 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-05-18 15:00 - 2011-05-17 02:07 - 00001090 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-18 14:59 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-18 14:58 - 2009-07-14 06:39 - 00204892 _____ () C:\Windows\setupact.log
2014-05-18 14:56 - 2014-05-10 20:17 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-18 14:56 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-05-17 13:51 - 2012-04-11 11:00 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-17 13:51 - 2010-09-10 17:06 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-17 13:50 - 2013-08-14 00:16 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-17 13:45 - 2010-09-10 17:31 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-17 13:44 - 2014-05-17 13:44 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-17 12:51 - 2012-04-11 11:00 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-17 12:51 - 2011-12-16 22:52 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-17 12:18 - 2011-05-18 00:15 - 00000000 ____D () C:\Users\Romi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-17 12:11 - 2012-04-24 21:35 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-10 12:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-05-10 10:37 - 2010-09-10 16:09 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-10 10:33 - 2012-12-15 14:15 - 00000000 ____D () C:\Users\Romi\AppData\Local\AVG Secure Search
2014-05-09 09:06 - 2014-05-17 12:55 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:04 - 2014-05-17 12:55 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-06 05:25 - 2014-05-17 13:41 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 05:07 - 2014-05-17 13:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 04:10 - 2014-05-17 13:41 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-05 18:56 - 2014-05-05 18:52 - 00000000 ____D () C:\Users\Romi\Desktop\Briest
2014-04-30 00:41 - 2013-11-20 02:34 - 00259913 _____ () C:\Windows\IE11_main.log
2014-04-30 00:37 - 2014-04-30 00:37 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-30 00:37 - 2014-04-30 00:37 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-30 00:37 - 2014-04-30 00:37 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-30 00:37 - 2014-04-30 00:37 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-30 00:37 - 2014-04-30 00:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-30 00:37 - 2014-04-30 00:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-30 00:37 - 2014-04-30 00:37 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-29 23:53 - 2014-04-29 23:53 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-04-29 23:53 - 2013-09-25 23:46 - 00000000 ____D () C:\Program Files\AVG Secure Search
2014-04-29 23:53 - 2013-06-26 16:10 - 00003728 _____ () C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2014-04-29 23:52 - 2012-12-15 14:14 - 00042272 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx86.sys

Files to move or delete:
====================
C:\Users\Romi\CTX.DAT


Some content of TEMP:
====================
C:\Users\Romi\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzmpiyo.dll
C:\Users\Romi\AppData\Local\Temp\FP_PL_PFS_INSTALLER.exe
C:\Users\Romi\AppData\Local\Temp\GLF8DC.tmp.ConduitEngineSetup.exe
C:\Users\Romi\AppData\Local\Temp\GoogleChromeInstaller.exe
C:\Users\Romi\AppData\Local\Temp\jre-6u23-windows-i586-iftw-rv.exe
C:\Users\Romi\AppData\Local\Temp\jre-6u25-windows-i586-iftw-rv.exe
C:\Users\Romi\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Romi\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Romi\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Romi\AppData\Local\Temp\oi_{045B1DEF-4431-4F1F-84A9-6362D525E5DA}.exe
C:\Users\Romi\AppData\Local\Temp\ose00000.exe
C:\Users\Romi\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe
C:\Users\Romi\AppData\Local\Temp\Shortcut_sweetim.exe
C:\Users\Romi\AppData\Local\Temp\SIMEEI2Installer.exe
C:\Users\Romi\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Romi\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Romi\AppData\Local\Temp\softonic-de3.exe
C:\Users\Romi\AppData\Local\Temp\uninst1.exe
C:\Users\Romi\AppData\Local\Temp\uttE305.tmp.exe
C:\Users\Romi\AppData\Local\Temp\wajam_download.exe
C:\Users\Romi\AppData\Local\Temp\wajam_install.exe
C:\Users\Romi\AppData\Local\Temp\ytb.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe
[2014-05-17 12:56] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-10 11:51

==================== End Of Log ============================
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version:17-05-2014
Ran by Romi at 2014-05-18 15:35:07
Running from C:\Users\Romi\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5 Design Premium (HKLM\...\{A1BC7068-C1BA-410F-8B9A-DB807C803DE2}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader 9.5.4 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A95000000001}) (Version: 9.5.4 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - )
Apple Application Support (HKLM\...\{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}) (Version: 1.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}) (Version: 3.2.0.47 - Apple Inc.)
Apple Software Update (HKLM\...\{C41300B9-185D-475E-BFEC-39EF732F19B1}) (Version: 2.1.2.120 - Apple Inc.)
ArchiCAD 13 GER (HKLM\...\001FFF1FFF13FF00FF0201F00F02F000-R1) (Version:  - Graphisoft)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4336 - AVG Technologies)
AVG 2014 (Version: 14.0.3950 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4336 - AVG Technologies) Hidden
AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.1.0.443 - AVG Technologies)
BitTorrent (HKLM\...\BitTorrent) (Version: 7.1.0 - )
Bonjour (HKLM\...\{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}) (Version: 2.0.3.0 - Apple Inc.)
Broadcom 802.11 Wireless Driver (HKLM\...\{8991E763-21F5-4DEA-A938-5D9D77DCB488}) (Version: 1.0.0.0 - )
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Cisco AnyConnect VPN Client (HKLM\...\{0474CEF2-37AE-441D-8FDE-A1EF7EAD01B9}) (Version: 2.5.1025 - Cisco Systems, Inc.)
Conduit Engine (HKLM\...\conduitEngine) (Version:  - Conduit Ltd.) <==== ATTENTION
Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
ElsterFormular (HKLM\...\ElsterFormular) (Version: 15.0.13315 - Landesfinanzdirektion Thüringen)
Energy Management (HKLM\...\{AE1E24C2-E720-42D5-B8E1-48F71A97B4DB}) (Version: 5.3.0.8 - Lenovo)
GIMP 2.6.10 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.10 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.137 - Google Inc.)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
Internet Explorer Toolbar 4.6 by SweetPacks (HKLM\...\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}) (Version: 4.6.0004 - SweetIM Technologies Ltd.) <==== ATTENTION
iTunes (HKLM\...\{2CE5A2E7-3437-4CE7-BCF4-85ED6EEFF9E4}) (Version: 10.0.1.22 - Apple Inc.)
Java Auto Updater (Version: 2.0.7.2 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 39 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216039FF}) (Version: 6.0.390 - Oracle)
Lenovo Drivers Update Utility (HKLM\...\Lenovo Drivers Update Utility_is1) (Version:  - DGTSoft Inc.)
Lenovo ThinkVantage Toolbox (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5849.23 - PC-Doctor, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
MobileMe Control Panel (HKLM\...\{AEBBFC67-7A03-4DF3-9E71-BA5C9EB4FBEF}) (Version: 3.1.3.0 - Apple Inc.)
Mozilla Firefox 29.0 (x86 de) (HKLM\...\Mozilla Firefox 29.0 (x86 de)) (Version: 29.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
Mozilla Thunderbird (3.1.3) (HKLM\...\Mozilla Thunderbird (3.1.3)) (Version: 3.1.3 (de) - Mozilla)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.4.1 - Frank Heindörfer, Philip Chinery)
Pixlr-o-matic (HKLM\...\Pixlromatic) (Version: 1.0 - UNKNOWN)
Pixlr-o-matic (Version: 1.0 - UNKNOWN) Hidden
QuickTime (HKLM\...\{E7004147-2CCA-431C-AA05-2AB166B9785D}) (Version: 7.68.75.0 - Apple Inc.)
RarZilla Free Unrar (HKLM\...\RarZilla Free Unrar) (Version: 2.90 - Philipp Winterberg)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30117 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
SweetPacks bundle uninstaller (HKLM\...\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}) (Version: 1.0.0000 - SweetIM Technologies Ltd.) <==== ATTENTION
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2720451F-5D04-43EC-AB1F-26D948FD971B}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Virtual DJ - Atomix Productions (HKLM\...\Virtual DJ - Atomix Productions) (Version:  - )
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
Wajam (HKLM\...\Wajam) (Version: 1.51 - Wajam) <==== ATTENTION
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)

==================== Restore Points  =========================

19-03-2014 19:44:37 Windows Update
23-03-2014 14:06:31 Windows Update
25-03-2014 20:49:00 Windows Backup
06-04-2014 13:18:43 Windows Update
06-04-2014 13:23:03 Windows Backup
06-04-2014 13:52:30 Windows Update
06-04-2014 18:18:49 Windows Backup
06-04-2014 20:25:10 Windows Update
10-04-2014 22:16:35 Windows Update
29-04-2014 22:01:46 Windows Backup
29-04-2014 22:32:24 Windows Update
05-05-2014 16:46:16 Windows Backup
10-05-2014 08:34:37 Windows Update
10-05-2014 18:15:30 Windows Update
17-05-2014 10:23:24 Windows Backup
17-05-2014 11:39:26 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {102356AA-E969-46FE-81FE-643AB1B6AF8D} - System32\Tasks\{C8507317-4BE4-4AF3-944E-EA58E9073EFA} => C:\Program Files\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {25E3D80B-AC81-4E5F-A22A-535FFC051C1A} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect <==== ATTENTION
Task: {418ADD14-44B1-445A-A13B-DAB4B835A63A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-17] (Adobe Systems Incorporated)
Task: {7C62E3B3-D067-4730-A510-2E0089006CB1} - System32\Tasks\{979E9D53-AB7E-45AE-A91A-0D5E9B3E8C8F} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/en/go/help.faq.installer?LastError=1618
Task: {808443C3-319A-4B6D-85FF-40E3382B51A9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {9CE76659-939C-4ADC-A0B8-8E978CB9FA7F} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.)
Task: {A2AAB09A-D777-4243-B606-7C153ED32F94} - System32\Tasks\AdobeAAMUpdater-1.0-Romi-PC-Romi => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {BD97CBC3-BE46-4C2C-8A08-BF1329B6186F} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {CDF925BD-33F3-43D5-ADBD-62DB18C0F780} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-17] (Google Inc.)
Task: {D497ADAF-683F-4F3E-A6C5-561165072A99} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\Windows\TEMP\{CBFC41E1-49A3-4A5A-BCDC-847A5A4CDDB8}.exe
Task: {D64EE1A7-F2CA-4DFF-AC28-90A2D708C24C} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\PC-Doctor\uaclauncher.exe [2011-06-27] (PC-Doctor, Inc.)
Task: {E72D8A19-D4EC-472A-AB09-8051A10F63E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-17] (Google Inc.)
Task: {F6869B3E-1910-422C-A98F-67619C2384EE} - System32\Tasks\PCDEventLauncher => C:\Program Files\PC-Doctor\sessionchecker.exe [2011-06-27] (PC-Doctor, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\Windows\TEMP\{CBFC41E1-49A3-4A5A-BCDC-847A5A4CDDB8}.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\PC-Doctor\uaclauncher.exe
Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\PC-Doctor\uaclauncher.exe

==================== Loaded Modules (whitelisted) =============

2014-04-29 23:53 - 2014-04-29 23:52 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\loggingserver.exe
2014-04-29 23:53 - 2014-04-29 23:52 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.0\log4cplusU.dll
2010-09-10 17:43 - 2008-12-20 03:20 - 00063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll
2010-09-10 17:43 - 2008-12-20 03:20 - 00051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll
2013-09-25 23:46 - 2014-04-29 23:52 - 02557976 _____ () C:\Program Files\AVG Secure Search\vprot.exe
2014-05-18 15:02 - 2014-05-18 15:02 - 00041984 _____ () c:\users\romi\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzmpiyo.dll
2013-10-19 01:55 - 2013-10-19 01:55 - 25100288 _____ () C:\Users\Romi\AppData\Roaming\Dropbox\bin\libcef.dll
2014-05-10 11:31 - 2014-05-10 11:32 - 03845232 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00506448 _____ () C:\Program Files\PC-Doctor\libAsapiCSharp.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00105040 _____ () C:\Program Files\PC-Doctor\libCSharpCommonCS.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00019536 _____ () C:\Program Files\PC-Doctor\libGapiCSharp.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00029776 _____ () C:\Program Files\PC-Doctor\libDataStoreCSharp.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00096848 _____ () C:\Program Files\PC-Doctor\libTonopahClientCSharp.dll
2011-06-27 17:54 - 2011-06-27 17:54 - 00032336 _____ () C:\Program Files\PC-Doctor\pcdcsharpcommon.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:820563D3

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Romi\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: BitTorrent => "C:\Program Files\BitTorrent\BitTorrent.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Sweetpacks Communicator => C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe
MSCONFIG\startupreg: WinampAgent => "C:\Program Files\Winamp\winampa.exe"

==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows
Description: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2014 03:34:36 PM) (Source: PC-Doctor) (EventID: 1) (User: )
Description: (2412) Asapi: (15:34:36:3910)(2412) S3LogPusherPlugin.Helper - Error -- 334 Unable to storage the test log to medium

Error: (05/18/2014 03:15:56 PM) (Source: PC-Doctor) (EventID: 1) (User: )
Description: (2412) Asapi: (15:15:56:5060)(2412) engine.EngineLink - Error -- 81 Invalid connection to client

Error: (05/18/2014 03:00:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Transactions, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=x86" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (05/18/2014 03:00:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "AspNetMMCExt, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (05/18/2014 03:00:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Runtime.Remoting, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (05/18/2014 03:00:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Web.Mobile, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (05/18/2014 03:00:43 PM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to execute command from the offline queue: uninstall "System.Web.Services, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (05/10/2014 02:00:59 PM) (Source: PC-Doctor) (EventID: 1) (User: )
Description: (4544) Asapi: (14:00:59:1250)(4544) S3LogPusherPlugin.Helper - Error -- 340 Unable to storage the test log to medium

Error: (05/10/2014 10:50:19 AM) (Source: PC-Doctor) (EventID: 1) (User: )
Description: (5948) Asapi: (10:50:19:0430)(5948) enumerator - Error -- 116 pcdrsysinfosoftware: Module timed out after 130603 milliseconds and was terminated

Error: (05/10/2014 10:50:19 AM) (Source: PC-Doctor) (EventID: 1) (User: )
Description: (5948) Asapi: (10:50:19:0430)(5948) Matrix.ModuleImp - Error -- 54 Unable to get information from module due to failed exec.


System errors:
=============
Error: (05/18/2014 02:59:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ScreenCamera HR" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1058

Error: (05/18/2014 02:59:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Audio" wurde nicht richtig gestartet.

Error: (05/18/2014 02:58:12 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (05/18/2014 02:58:12 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (05/17/2014 00:12:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ScreenCamera HR" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1058

Error: (05/17/2014 00:12:01 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (05/17/2014 00:12:01 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (05/10/2014 10:33:05 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (05/05/2014 06:35:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "ScreenCamera HR" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1058

Error: (05/05/2014 06:34:58 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================
Error: (04/27/2011 04:21:12 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6550.5004, Microsoft Office Version: 12.0.6425.1000. This session lasted 1282 seconds with 60 seconds of active time.  This session ended with a crash.


==================== Memory info =========================== 

Percentage of memory in use: 57%
Total physical RAM: 1788.2 MB
Available physical RAM: 754.68 MB
Total Pagefile: 3576.41 MB
Available Pagefile: 2136.79 MB
Total Virtual: 2047.88 MB
Available Virtual: 1906.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:100.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: C3FFC3FF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 15:20 on 18/05/2014 (Romi)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

 

Themen zu Windows 7: Laptop extrem langsam
4d36e972-e325-11ce-bfc1-08002be10318, association, avg antivirus, avg security toolbar, chromium, flash player, newtab, pup.optional.montera.a, pup.optional.opencandy, pup.optional.opencandy.a, pup.optional.softonic.a, pup.optional.sweetim, pup.optional.wajam.a, secure search, services.exe, software, svchost.exe, trojan.rotbrow.a, trojan.rotbrowse, vtoolbarupdater, win32/downloadsponsor.a, win32/driverboss.b, win32/softonicdownloader.a, win32/toolbar.babylon.e, win32/toolbar.babylon.h, win32/toolbar.conduit.b, win32/toolbar.conduit.y, win32/wajam.a, win32/wajam.c, windows


« Notebook braucht fast 2 Minuten zum runterfahren | Windows 7: Haufenweise Autostart- und Program-Data-Fehlermeldungen beim Hochfahren + sonstige Abnormalitäten »


Ähnliche Themen: Windows 7: Laptop extrem langsam


  1. Laptop extrem langsam
    Log-Analyse und Auswertung - 18.11.2015 (25)
  2. Windows 7: Laptop extrem langsam
    Log-Analyse und Auswertung - 24.09.2015 (12)
  3. Windows Vista: Laptop extrem langsam und ständig die Meldung "Wenig Speicherplatz"
    Log-Analyse und Auswertung - 02.07.2015 (46)
  4. LapTop und Internet ist extrem Langsam
    Log-Analyse und Auswertung - 04.04.2015 (1)
  5. Windows 7: Laptop seit wenigen Tagen extrem langsam
    Log-Analyse und Auswertung - 26.04.2014 (3)
  6. Laptop extrem langsam
    Plagegeister aller Art und deren Bekämpfung - 16.03.2014 (23)
  7. Windows 7: Laptop extrem langsam
    Alles rund um Windows - 03.02.2014 (3)
  8. Laptop extrem langsam - CPU Auslastung 100%
    Plagegeister aller Art und deren Bekämpfung - 31.07.2013 (9)
  9. Laptop windows 7 fährt extrem langsam hoch
    Log-Analyse und Auswertung - 15.05.2013 (27)
  10. Laptop mit Vista extrem langsam
    Alles rund um Windows - 22.03.2013 (5)
  11. Laptop plötzlich extrem langsam
    Log-Analyse und Auswertung - 13.04.2011 (17)
  12. CPU-Auslastung 100% Laptop extrem langsam
    Plagegeister aller Art und deren Bekämpfung - 19.03.2011 (1)
  13. hilfe bei meinen laptop - extrem langsam
    Log-Analyse und Auswertung - 25.06.2009 (0)
  14. Laptop extrem langsam
    Log-Analyse und Auswertung - 14.02.2009 (2)
  15. noch zu retten ?? laptop ist extrem langsam
    Mülltonne - 25.05.2008 (0)
  16. Laptop nach dem Start extrem langsam...
    Log-Analyse und Auswertung - 18.05.2008 (10)
  17. Laptop fährt extrem langsam hoch
    Log-Analyse und Auswertung - 20.06.2007 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Laptop extrem langsam - Hallo, ich habe meinen Lenovo Laptop seit 3 1/2 Jahren. Er ist seit einigen Monaten extrem langsam. Neu formatieren wäre okay für mich, aber ich habe keine Windows-CD hier. Kann - Windows 7: Laptop extrem langsam...
Archiv
Du betrachtest: Windows 7: Laptop extrem langsam auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131