| |  CPU ist immer zu über 70% ausgelastet
 Hallo mein intel centrino2 windows vista ist immer augelastet obwohl nur teamspeak läuft.
kann mir da jemand helfen die ganze sache zu verbessern ?
Der laptop hat keine CD fach. ich poste hier mal die log.fiels die ich gemacht habe. HTML-Code: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-10-2014
Ran by BurkiTrade (administrator) on BURKITRADE-MSI on 06-10-2014 10:45:12
Running from C:\Users\BurkiTrade\Downloads
Loaded Profile: BurkiTrade (Available profiles: BurkiTrade & Gast)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Micro-Star International Co., Ltd.) C:\Program Files\System Control Manager\MSIService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Micro-Star International Co., Ltd.) C:\Program Files\System Control Manager\MGSysCtrl.exe
(Micro-Star Int’l Co., Ltd.) C:\Program Files\MSI\MSI S-Bar Utilities\S-Bar.exe
() C:\Program Files\MSI\EasyFace Logon\KillAutoAP.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRst.exe
() C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRun.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Bandoo Media, inc) C:\Program Files\SearchCore for Browsers\SearchCore for Browsers\datamngrUI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosHdpProc.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-10] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [ETDWare] => \Elantech\ETDCtrl.exe
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [83336 2009-07-22] (TOSHIBA CORPORATION)
HKLM\...\Run: [MGSysCtrl] => C:\Program Files\System Control Manager\MGSysCtrl.exe [2068480 2009-07-24] (Micro-Star International Co., Ltd.)
HKLM\...\Run: [MSI S-Bar Utilities] => C:\Program Files\MSI\MSI S-Bar Utilities\S-Bar.exe [331264 2009-07-30] (Micro-Star Int’l Co., Ltd.)
HKLM\...\Run: [EasyFace Agent] => C:\Program Files\MSI\EasyFace Logon\KillAutoAP.exe [348160 2009-07-16] ()
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [BEWINTERNET-CHSessionManager] => "C:\Program Files\Internet Everywhere\IEWCH_8.0\SessionManager\SessionManager.exe"
HKLM\...\Run: [Wireless] => C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRst.exe [81920 2008-07-01] ()
HKLM\...\Run: [WirelessZeroTouch] => C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRun.exe [184320 2008-07-16] ()
HKLM\...\Run: [DATAMNGR] => C:\Program Files\SearchCore for Browsers\SearchCore for Browsers\datamngrUI.exe [1700752 2011-09-27] (Bandoo Media, inc)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-09-05] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [TU] => C:\Users\BurkiTrade\AppData\Roaming\SDIV 2.0\Prot\tu\tu.exe [133536 2012-10-28] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [DataMgr] => C:\Users\BurkiTrade\AppData\Roaming\DataMgr\DataMgr.exe [168264 2012-10-14] (HTTO Group, Ltd.)
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [SSync] => C:\Users\BurkiTrade\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [OMESupervisor] => C:\Users\BurkiTrade\AppData\Local\omesuperv.exe [2239256 2013-12-24] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [SCheck] => C:\Users\BurkiTrade\AppData\Roaming\SCheck\SCheck.exe [37376 2013-12-09] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [Snoozer] => C:\Users\BurkiTrade\AppData\Roaming\Snz\Snz.exe [1209626 2013-12-24] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\Run: [Intermediate] => C:\Users\BurkiTrade\AppData\Roaming\Intermediate\Intermediate.exe [37376 2013-12-09] ()
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\MountPoints2: {233c5f4f-507d-11e0-8f18-006073e5fbb4} - E:\AutoRun.exe
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\MountPoints2: {233c5f55-507d-11e0-8f18-006073e5fbb4} - E:\AutoRun.exe
HKU\S-1-5-21-2746290780-1698468266-31462175-1000\...\MountPoints2: {66d0a495-1970-11e0-b691-006073e5fbb4} - E:\MicroLauncher.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\Users\BurkiTrade\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://search.fbdownloader.com/?channel=sfch203fbdgy18
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = hxxp://search.imesh.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ch.msn.com/default.aspx?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://search.fbdownloader.com/?channel=sfch203fbdgy18
URLSearchHook: HKCU - (No Name) - {64ead72b-ffd4-4e01-aa3a-4c71665d73e4} - No File
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=102&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=102&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfch203fbdgy18&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3320133&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP32495356-B7E6-45B7-809A-17AABCAE45DC&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0388404D-6072-4CEB-B521-8F090FEAEE57} URL = hxxp://klit.startnow.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=741&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.4.0&install_country=CH&install_date=20120101&user_guid=31B0D4465B51463AA3D11A8731B2D68C&machine_id=92dc6dcbf91ff356b22601dbdd4e5ae7&browser=IE&os=win&os_version=6.1-x86-SP1&iesrc={referrer:source}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {30750DD1-EADD-4cf1-A485-C736C96936AB} URL = hxxp://search.etoolkit.com/search?q={searchTerms}&id=02613bcdbc6a3b8c9375d79b61553d10d95&s=p
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfch203fbdgy18&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=102&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = hxxp://www2.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80772&lng=de
SearchScopes: HKCU - {D1F8D3AB-2E64-497A-BA0F-92E8387FAEE3} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=IMH6&o=2467&src=kw&q={searchTerms}&locale=&apn_ptnrs=^A45&apn_dtid=^YYYYYY^YY^CH&apn_uid=92c7f1b6-ccfc-4bd0-8ae9-6fafd43e410c&apn_sauid=E16E9033-A3F5-406C-AB9F-6ECC9D71A15B&atb=sysid%3D406%3Aappid%3D102%3Auc
BHO: No Name -> {11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} -> C:\PROGRA~1\SITERA~1\SiteRank.dll No File
BHO: Babylon toolbar helper -> {2EECD738-5844-4a99-B4B6-146BF802613B} -> C:\Program Files\BabylonToolbar\BabylonToolbar\1.8.4.9\bh\BabylonToolbar.dll No File
BHO: FBDownloader -> {553318DA-D010-469E-84B1-496563CAE1BF} -> No File
BHO: ToolKit IE Helper -> {70EA269E-56DF-49C2-86B2-1A1924ED88B4} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: SearchCore for Browsers -> {9D717F81-9148-4f12-8568-69135F087DB0} -> C:\Program Files\SearchCore for Browsers\SearchCore for Browsers\BrowserConnection.dll (Bandoo Media, inc)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - eToolKit Toolbar - {D3B22A92-87A2-47b6-B3E6-A64877B5C242} - No File
Toolbar: HKLM - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin -> C:\Users\BurkiTrade\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF HKLM\...\Firefox\Extensions: [siteranker@siteranker.com] - C:\Program Files\SiteRanker\firefox
Chrome:
=======
CHR HomePage: Default -> 79BA29CF5EC39E5FB46EB199EAD1DA3B9EA9926C7DA6EF75B8BEEDE06952720E
CHR DefaultSearchKeyword: Default -> BC829658E8E930604DF175AFC290D4043E0C25E3C5E91A6E6DAA6948D79AC892
CHR DefaultSearchURL: Default -> 9248845E9E4B5881C2E4C04D3D1DA6C0D87DEA9B1A10F5A4CC6494DD39E431FE
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\37.0.2062.124\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll No File
CHR Plugin: (PDF-XChange Viewer) - C:\Program Files\Mozilla Firefox\plugins\npPDFXCviewNPPlugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Citrix Online Web Deployment Plugin 1.0.0.104) - C:\Users\BurkiTrade\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\windows\system32\npDeployJava1.dll No File
CHR CustomProfile: C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-07]
CHR Extension: (Google Drive) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-07]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]
CHR Extension: (YouTube) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-07]
CHR Extension: (Google-Suche) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-07]
CHR Extension: (OfferMosquito) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk [2013-03-29]
CHR Extension: (AdBlock) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-30]
CHR Extension: (Google Wallet) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR Extension: (Google Mail) - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-07]
CHR HKLM\...\Chrome\Extension: [cljghnkcnkhedlnhdgbcbefjoapionoc] - C:\Users\BurkiTrade\AppData\Local\eToolKit\Beemp3.crx []
CHR HKLM\...\Chrome\Extension: [dnlhamhiejpiajljicfphhpiahoojipl] - C:\Users\BurkiTrade\AppData\Local\eToolKit\FacebookShare.crx []
CHR HKLM\...\Chrome\Extension: [dnnajmlhehgnkclpdlggknanmcplloej] - C:\Program Files\PutLockerDownloader\PutLockerDownloader10.crx []
CHR HKLM\...\Chrome\Extension: [dpmoonohndgmmnlcnjajheaahmnjlbmj] - C:\Users\BurkiTrade\AppData\Local\eToolKit\FacebookStatus.crx []
CHR HKLM\...\Chrome\Extension: [eelchhiiipbeleiimmhpdfbagkcjdmdm] - C:\Users\BurkiTrade\AppData\Local\eToolKit\FacebookChat.crx []
CHR HKLM\...\Chrome\Extension: [fppahmlkambbejgkiidklamcmhealjag] - C:\Users\BurkiTrade\AppData\Local\eToolKit\FacebookLike.crx []
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\BURKIT~1\AppData\Local\Temp\ccex.crx []
CHR HKLM\...\Chrome\Extension: [iaagjcfjefodfnlpnmopkkbpgclipnpn] - C:\Users\BurkiTrade\AppData\Local\eToolKit\eOffers.crx []
CHR HKLM\...\Chrome\Extension: [jchankggehakkafdlalgmfbodgfilnbg] - C:\Users\BurkiTrade\AppData\Local\eToolKit\FacebookMain.crx []
CHR HKLM\...\Chrome\Extension: [jedcimnjemkbmkkngncfgfpjgfcapimk] - C:\Users\BurkiTrade\AppData\Local\eToolKit\Extmanager.crx []
CHR HKLM\...\Chrome\Extension: [koalekbhpbggkcfhkkbolikjoaobbppi] - C:\Program Files\PutLockerDownloader\PutLockerDownloader10.crx []
CHR HKCU\...\Chrome\Extension: [gbmdkmlcnbapgegninelmjbfibaghdmk] - C:\Users\BurkiTrade\AppData\Local\Google\Chrome\User Data\Default\ext_offermosquito\ext_offermosquito.crx [2013-12-19]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-09-05] (Avira Operations GmbH & Co. KG)
S2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
S2 FTRTSVC; C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [90112 2009-11-12] (France Telecom SA) [File not signed]
R2 Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [File not signed]
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S2 SystemStoreService; "C:\Program Files\SoftwareUpdater\SystemStore.exe" -displayname "System Store" -servicename "SystemStoreService" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [97648 2014-07-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [136216 2014-06-13] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [37352 2013-12-22] (Avira Operations GmbH & Co. KG)
S4 DNE; C:\windows\System32\DRIVERS\dne2000.sys [125584 2008-08-25] (Deterministic Networks, Inc.)
R3 ETD; C:\windows\system32\DRIVERS\ETD.sys [91136 2009-06-18] (ELAN Microelectronic Corp.)
S3 GTUHSBUS; C:\windows\System32\DRIVERS\gtuhsbus.sys [66560 2009-08-04] (Option N.V.) [File not signed]
S3 GTUHSNDISIPXP; C:\windows\System32\DRIVERS\gtuhs51.sys [107520 2009-08-04] (Option N.V.) [File not signed]
S3 GTUHSSER; C:\windows\System32\DRIVERS\gtuhsser.sys [8064 2009-08-04] (Option N.V.)
R3 HBtnKey; C:\windows\System32\DRIVERS\tkbtnpn.sys [7463 2007-10-30] (Lenovo)
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2012-01-23] (Intel Corporation)
S3 RTHDMIAzAudService; C:\windows\System32\drivers\RtHDMIV.sys [159776 2009-06-24] (Realtek Semiconductor Corp.)
R1 ssmdrv; C:\windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
S3 usbser; C:\windows\System32\DRIVERS\usbmdm.sys [28160 2008-07-16] (Microsoft Corporation) [File not signed]
S3 rcvpn; system32\DRIVERS\rcvpn.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-06 10:45 - 2014-10-06 10:45 - 00022583 _____ () C:\Users\BurkiTrade\Downloads\FRST.txt
2014-10-06 10:45 - 2014-10-06 10:45 - 00000000 ____D () C:\FRST
2014-10-06 10:43 - 2014-10-06 10:43 - 00380416 _____ () C:\Users\BurkiTrade\Downloads\Gmer-19357.exe
2014-10-06 10:42 - 2014-10-06 10:42 - 01101312 _____ (Farbar) C:\Users\BurkiTrade\Downloads\FRST.exe
2014-10-06 10:41 - 2014-10-06 10:44 - 00000456 _____ () C:\Users\BurkiTrade\Downloads\defogger_disable.log
2014-10-06 10:41 - 2014-10-06 10:41 - 00000000 _____ () C:\Users\BurkiTrade\defogger_reenable
2014-10-06 10:40 - 2014-10-06 10:40 - 00050477 _____ () C:\Users\BurkiTrade\Downloads\Defogger.exe
2014-10-06 08:40 - 2014-10-06 08:41 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{149D8DFD-B027-4749-BEA5-67C627A81852}
2014-10-02 08:04 - 2014-10-02 08:05 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{28CFAF03-49DB-49A7-84DA-58367ADBAEFC}
2014-10-01 08:29 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-10-01 08:22 - 2014-10-01 08:22 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{1DE28EE0-DE16-432A-A523-6DA1C4A2DDAF}
2014-09-30 10:14 - 2014-09-30 10:14 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{7C099144-F807-49B8-AE42-00140ACEA1E4}
2014-09-29 09:09 - 2014-09-29 09:10 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{320ECFB9-5BC8-4DB9-ABEE-B37EE2C12036}
2014-09-25 08:19 - 2014-09-25 08:20 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{12D30914-B34D-44D5-BD03-A6376FAA8A48}
2014-09-24 08:27 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-09-24 08:20 - 2014-09-24 08:20 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{8BEAB795-2D90-4C5A-958B-6A00A8233E6C}
2014-09-23 07:57 - 2014-09-23 07:57 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{3B433542-8A6A-4555-A379-3D883AC3AB7F}
2014-09-22 08:49 - 2014-09-22 08:49 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{ECCE258C-4EEA-41E3-8378-426D3B230E97}
2014-09-19 08:36 - 2014-09-19 08:36 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{8F6D11EA-9304-42DE-AC49-07C5A53F9095}
2014-09-18 08:40 - 2014-09-18 08:40 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{B6F86167-9EF5-4701-803B-59B32E4DCEF9}
2014-09-17 08:05 - 2014-09-17 08:05 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{C4A39528-663D-4563-A231-55720F4B00D6}
2014-09-16 08:06 - 2014-09-16 08:06 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-16 07:56 - 2014-09-16 07:57 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{15E6BD40-FA21-446B-8E09-F2AF98A099B4}
2014-09-15 08:43 - 2014-09-15 08:44 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{8396ABC6-0001-4FD7-A448-55D11A00271C}
2014-09-15 08:15 - 2014-09-15 08:15 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{EC851C0C-CD87-490F-B460-884679BF9DA9}
2014-09-12 07:57 - 2014-09-12 07:57 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{C88BF637-087E-49B4-B6AB-ADD1F326A867}
2014-09-11 17:55 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-09-11 17:55 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-09-11 17:54 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-09-11 17:54 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-09-11 17:54 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-09-11 17:54 - 2014-08-18 23:57 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-09-11 17:54 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-09-11 17:54 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-09-11 17:54 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-09-11 17:54 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-09-11 17:54 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-09-11 17:54 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-09-11 17:54 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-09-11 17:54 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-09-11 17:54 - 2014-08-18 23:36 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-09-11 17:54 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-09-11 17:54 - 2014-08-18 23:30 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-09-11 17:54 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-09-11 17:54 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-09-11 17:54 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-09-11 17:54 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-09-11 17:54 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-09-11 17:54 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-09-11 17:54 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-09-11 17:54 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-09-11 17:54 - 2014-08-18 23:08 - 00673792 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-09-11 17:54 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-09-11 17:54 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-09-11 17:54 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-09-11 17:54 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-09-11 17:53 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-09-11 07:48 - 2014-07-07 03:40 - 01059840 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-09-11 07:48 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-09-11 07:47 - 2014-09-05 03:52 - 00445952 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-09-11 07:47 - 2014-09-05 03:47 - 00302592 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-09-11 07:47 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-09-11 07:47 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-09-11 07:38 - 2014-09-11 07:39 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{A6A107C8-1F45-419E-8F0B-06C3D6D19C55}
2014-09-10 14:17 - 2014-09-10 14:17 - 00272808 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-09-10 14:17 - 2014-09-10 14:17 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-09-10 14:17 - 2014-09-10 14:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-10 14:17 - 2014-09-10 14:17 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-09-10 14:17 - 2014-09-10 14:16 - 00175528 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-09-10 14:17 - 2014-09-10 14:16 - 00175528 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-09-10 14:16 - 2014-09-10 14:16 - 00000000 ____D () C:\Program Files\Java
2014-09-10 07:53 - 2014-09-10 07:54 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{41B8D33D-5C02-47DB-9B46-E1D2F3111422}
2014-09-09 08:53 - 2014-10-06 08:42 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Roaming\TS3Client
2014-09-09 08:53 - 2014-09-09 08:53 - 00001130 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-09-09 08:53 - 2014-09-09 08:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-09-09 08:53 - 2014-09-09 08:53 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-09-09 08:52 - 2014-09-09 08:52 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\BurkiTrade\Downloads\TeamSpeak3-Client-win32-3.0.16 (1).exe
2014-09-09 08:37 - 2014-09-09 08:37 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{4781B00F-63C1-4431-A22E-337EDA9B0E2B}
2014-09-07 18:51 - 2014-09-07 18:51 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Local\{1246A81C-0C17-43AF-875F-97896EEC291A}
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-06 10:41 - 2010-08-28 14:21 - 00000000 ____D () C:\Users\BurkiTrade
2014-10-06 10:38 - 2010-08-28 14:18 - 01575124 _____ () C:\windows\WindowsUpdate.log
2014-10-06 10:07 - 2011-09-24 16:07 - 00000298 _____ () C:\windows\Tasks\Updater.job
2014-10-06 10:06 - 2013-08-07 13:04 - 00001106 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-06 08:46 - 2009-07-14 06:34 - 00025824 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-06 08:46 - 2009-07-14 06:34 - 00025824 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-06 08:43 - 2009-09-26 20:48 - 01649420 _____ () C:\windows\system32\PerfStringBackup.INI
2014-10-06 08:40 - 2014-07-01 06:23 - 00003696 _____ () C:\windows\setupact.log
2014-10-06 08:40 - 2013-08-07 13:04 - 00001102 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-06 08:40 - 2011-09-20 18:34 - 00000000 ____D () C:\Users\BurkiTrade\Tracing
2014-10-06 08:40 - 2010-08-28 14:57 - 00000441 _____ () C:\windows\system32\Drivers\etc\hosts.ics
2014-10-06 08:40 - 2009-07-14 06:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-25 09:13 - 2013-08-07 13:04 - 00002131 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-24 14:42 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\rescache
2014-09-24 13:05 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\system32\de-DE
2014-09-22 08:55 - 2013-02-04 19:47 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-16 12:06 - 2011-09-23 16:06 - 00000000 ____D () C:\Users\BurkiTrade\AppData\Roaming\Skype
2014-09-16 08:06 - 2011-09-23 16:06 - 00000000 ____D () C:\ProgramData\Skype
2014-09-15 09:06 - 2010-08-28 15:41 - 00231568 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-09-12 08:18 - 2009-07-14 04:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-09-11 17:53 - 2013-07-15 10:51 - 00000000 ____D () C:\windows\system32\MRT
2014-09-11 17:47 - 2014-05-13 23:08 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-09-11 17:47 - 2010-08-28 17:07 - 98758480 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-09-10 15:00 - 2014-07-14 05:29 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-10 14:12 - 2014-09-05 15:29 - 00001105 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-10 14:12 - 2014-09-05 15:22 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-10 14:12 - 2012-12-20 21:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-09-10 14:12 - 2012-12-20 21:25 - 00000000 ____D () C:\Program Files\Avira
2014-09-07 16:14 - 2009-07-14 06:33 - 00356608 _____ () C:\windows\system32\FNTCACHE.DAT
Some content of TEMP:
====================
C:\Users\BurkiTrade\AppData\Local\Temp\avgnt.exe
C:\Users\BurkiTrade\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\BurkiTrade\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll
C:\Users\Gast\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-29 09:48
==================== End Of Log ============================ HTML-Code: Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-10-2014
Ran by BurkiTrade at 2014-10-06 10:46:59
Running from C:\Users\BurkiTrade\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{5C1E13D7-496E-59E9-822D-C9D09964AD46}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Avira (HKLM\...\{70e83cd8-4bd5-4039-ab5a-6b94a8abb641}) (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v7.00.05 - TOSHIBA CORPORATION)
BurnRecovery (HKLM\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.908.2201 - Micro-Star International Co., Ltd.)
Catalyst Control Center Core Implementation (Version: 2009.0710.1127.18698 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.0710.1127.18698 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.0710.1127.18698 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.0710.1127.18698 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2009.0710.1127.18698 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0710.1127.18698 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.0710.1127.18698 - ATI) Hidden
CCC Help Chinese Standard (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Czech (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help English (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help French (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help German (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Hungarian (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Italian (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Korean (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Polish (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Portuguese (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Russian (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Spanish (Version: 2009.0710.1126.18698 - ATI) Hidden
CCC Help Turkish (Version: 2009.0710.1126.18698 - ATI) Hidden
ccc-core-static (Version: 2009.0710.1127.18698 - ATI) Hidden
ccc-utility (Version: 2009.0710.1127.18698 - ATI) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
EasyFace Logon (HKLM\...\{0A960933-4D39-4495-A3F5-E5149943D761}) (Version: 1.1.0.24 - MSI)
EDGE MODEM 3.2.0.4 (HKLM\...\HSYVDFNSISinstallID) (Version: 3.2.0.4 - )
ETDWare PS/2-x86 7.0.5.5_WHQL (HKLM\...\Elantech) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
home box office Screen Saver (HKLM\...\home box office) (Version: - )
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Maxis Broadband (HKLM\...\Maxis Broadband) (Version: 11.030.01.10.99 - Huawei Technologies Co.,Ltd)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden
MSI EasyViewer (HKLM\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.2 - MSI)
MSI EasyViewer (Version: 1.2 - MSI) Hidden
MSI S-Bar Utilities (HKLM\...\{754A1DBC-3DFA-4DB8-BC50-6A3B073AD1F4}) (Version: 1.0.0907.3060 - MSI)
MSI Software Install (HKLM\...\{07690F1C-04B1-4060-9691-6748ED1826B9}) (Version: 3.0.908.2001 - MSI)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
OpenOffice.org 3.2 (HKLM\...\{DFFC0648-BC4B-47D1-93D2-6CA6B9457641}) (Version: 3.2.9502 - OpenOffice.org)
Realtek 8136 8168 8169 Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7026 - Realtek Semiconductor Corp.)
SearchCore for Browsers (HKLM\...\SearchCore for Browsers) (Version: 3.0.0.114772 - iMesh Inc.)
SENSUS MT4 Client Terminal (HKLM\...\SENSUS MT4 Client Terminal) (Version: 4.00 - MetaQuotes Software Corp.)
SiteRanker (HKLM\...\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}_is1) (Version: 1.0.0.29 - Crawler, LLC)
Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SweetPacks Toolbar For Firefox 1.13.0.0 (Version: 1.13.0.0 - ) Hidden <==== ATTENTION
System Control Manager (HKLM\...\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}) (Version: 2.209.0724.004.10 - Micro-Star International Co., Ltd.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 7 (HKLM\...\TeamViewer 7) (Version: 7.0.13989 - TeamViewer)
Thread Manager 2.6.0.0 (HKLM\...\{78F4E027-355C-45C0-90DC-F89DFC618761}_is1) (Version: 2.6.0.0 - Digital Generation)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VIS (HKLM\...\VIS) (Version: - ) <==== ATTENTION
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2746290780-1698468266-31462175-1000_Classes\CLSID\{45C6AFA5-2C13-402f-BC5D-45CC8172EF6B}\InprocServer32 -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtExt.dll (TOSHIBA)
==================== Restore Points =========================
29-09-2014 09:26:48 Windows Update
01-10-2014 17:17:01 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0A6AD7A2-AA68-4036-BFC1-ACC94D0AE96E} - System32\Tasks\DriverBoost-RTMScan => C:\Program Files\DriverBoost\DriverBoost\DriverBoost.exe
Task: {1BA1C70B-F9A4-4BBF-ACE1-7F6832B8023B} - System32\Tasks\Updater => C:\ProgramData\WombatUpdater\WombatUpdater.exe
Task: {280A8173-E94B-463F-A0DD-40ED9F32F064} - System32\Tasks\VisualBeeRecovery => C:\Users\BurkiTrade\AppData\Local\VisualBeeExe\VisualBeeRecovery.exe <==== ATTENTION
Task: {295ED808-F2B9-43BD-9DA9-F13269D29007} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {3084C42F-8B2C-49CD-86CD-8AEF15E51833} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-30] (Google Inc.)
Task: {415294FF-05BF-4E19-B80C-B1D85F8C426A} - System32\Tasks\{37690710-AEB8-4EC2-B01B-43DF4C798EF7} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.59.106/de/abandoninstall?page=tsProgressBar
Task: {4BCEE561-CAAC-4B62-9E88-DEAF81BE27B8} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {67933113-E0C9-4635-9B84-6B03ABF25B7C} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {718EB548-7CA8-46E1-B59A-9D1483BA8361} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {7BE72DC3-45B7-4A57-86E2-255D7ADB7189} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe
Task: {A00C9AB6-B522-41BB-9884-251BBEFE9C3F} - System32\Tasks\FreeDriverScout => C:\Program Files\Covus Freemium\Free Driver Scout\1Click.exe
Task: {A66DBE8A-FAAF-4650-B2B9-333129BCE82D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-30] (Google Inc.)
Task: {C4A39652-1E12-48B5-85E2-678DA6376976} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe
Task: {CD825641-87F1-454D-9409-D4906345463D} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {E0030C34-A267-4811-A0F3-CDC0FA387491} - System32\Tasks\DriverBoost-RTMUpdater => C:\Program Files\DriverBoost\DriverBoost\DriverBoost.exe
Task: {FB2431F4-7354-4CED-9ED4-0451BE23D8E7} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {FF4A7206-19FE-4AC5-AD41-4BF3A449E494} - System32\Tasks\DriverBoost-RTMRules => C:\Program Files\DriverBoost\DriverBoost\DriverBoost.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Updater.job => C:\ProgramData\WombatUpdater\WombatUpdater.exe
==================== Loaded Modules (whitelisted) =============
2009-09-26 21:13 - 2009-07-16 00:02 - 00348160 _____ () C:\Program Files\MSI\EasyFace Logon\KillAutoAP.exe
2008-07-01 04:19 - 2008-07-01 04:19 - 00081920 _____ () C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRst.exe
2008-07-16 14:13 - 2008-07-16 14:13 - 00184320 _____ () C:\Program Files\EDGE CARD\EDGE MODEM\EdgeRun.exe
2014-09-05 15:23 - 2014-08-27 15:00 - 00052472 _____ () C:\Users\BurkiTrade\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2010-05-04 15:36 - 2010-05-04 15:36 - 00970752 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2009-09-26 20:59 - 2009-09-26 20:59 - 00270336 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-28 15:33 - 2014-02-28 15:33 - 00148480 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00864768 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 15:45 - 2014-02-27 15:45 - 00677376 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00092104 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-08-04 15:43 - 2014-08-04 15:43 - 00105416 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00025600 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00242688 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 15:45 - 2014-08-04 15:45 - 00477128 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 15:45 - 2014-08-04 15:45 - 00484808 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 15:46 - 2014-02-27 15:46 - 00123904 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-09-25 09:13 - 2014-09-23 06:06 - 01098056 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\libglesv2.dll
2014-09-25 09:13 - 2014-09-23 06:06 - 00174408 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\libegl.dll
2014-09-25 09:13 - 2014-09-23 06:07 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-25 09:13 - 2014-09-23 06:07 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-25 09:13 - 2014-09-23 06:06 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
2014-09-25 09:13 - 2014-09-23 06:07 - 14891848 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:85CAD85C
AlternateDataStreams: C:\ProgramData\TEMP:AD022376
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-2746290780-1698468266-31462175-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2746290780-1698468266-31462175-1004 - Limited - Enabled)
BurkiTrade (S-1-5-21-2746290780-1698468266-31462175-1000 - Administrator - Enabled) => C:\Users\BurkiTrade
Gast (S-1-5-21-2746290780-1698468266-31462175-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-2746290780-1698468266-31462175-1002 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/18/2014 00:40:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ipmGui.exe, Version: 14.0.6.522, Zeitstempel: 0x53bec647
Name des fehlerhaften Moduls: ipmGui.exe, Version: 14.0.6.522, Zeitstempel: 0x53bec647
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000795b
ID des fehlerhaften Prozesses: 0x16a8
Startzeit der fehlerhaften Anwendung: 0xipmGui.exe0
Pfad der fehlerhaften Anwendung: ipmGui.exe1
Pfad des fehlerhaften Moduls: ipmGui.exe2
Berichtskennung: ipmGui.exe3
Error: (09/18/2014 10:40:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ipmGui.exe, Version: 14.0.6.522, Zeitstempel: 0x53bec647
Name des fehlerhaften Moduls: ipmGui.exe, Version: 14.0.6.522, Zeitstempel: 0x53bec647
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000795b
ID des fehlerhaften Prozesses: 0x150c
Startzeit der fehlerhaften Anwendung: 0xipmGui.exe0
Pfad der fehlerhaften Anwendung: ipmGui.exe1
Pfad des fehlerhaften Moduls: ipmGui.exe2
Berichtskennung: ipmGui.exe3
Error: (09/11/2014 03:16:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GoogleUpdate.exe, Version: 1.3.21.103, Zeitstempel: 0x4f3c6d6c
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea91c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00034d60
ID des fehlerhaften Prozesses: 0xdb4
Startzeit der fehlerhaften Anwendung: 0xGoogleUpdate.exe0
Pfad der fehlerhaften Anwendung: GoogleUpdate.exe1
Pfad des fehlerhaften Moduls: GoogleUpdate.exe2
Berichtskennung: GoogleUpdate.exe3
Error: (09/10/2014 08:05:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 6.16.0.105, Zeitstempel: 0x536b4342
Name des fehlerhaften Moduls: Skype.exe, Version: 6.16.0.105, Zeitstempel: 0x536b4342
Ausnahmecode: 0xc0000005
Fehleroffset: 0x002535f7
ID des fehlerhaften Prozesses: 0xc40
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3
Error: (07/26/2014 04:18:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1533) (User: BurkiTrade-msi)
Description: Das Profilverzeichnis kann nicht gelöscht werden C:\Users\STV. Dies liegt u. U. daran, dass Dateien in diesem Verzeichnis von einem anderen Programm verwendet werden.
DETAIL - Das Verzeichnis ist nicht leer.
Error: (07/18/2014 01:52:08 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/18/2014 01:52:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/15/2014 07:14:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/15/2014 07:14:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/13/2014 03:11:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (10/06/2014 08:40:41 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (10/06/2014 08:40:37 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Avira Service Host erreicht.
Error: (10/06/2014 08:40:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "System Store" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/06/2014 08:40:06 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst France Telecom Routing Table Service erreicht.
Error: (10/06/2014 08:40:02 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (10/06/2014 08:40:02 AM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (10/02/2014 08:05:04 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (10/02/2014 08:03:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "System Store" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (10/02/2014 08:03:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst France Telecom Routing Table Service erreicht.
Error: (10/02/2014 08:03:44 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Microsoft Office Sessions:
=========================
Error: (09/18/2014 00:40:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: ipmGui.exe14.0.6.52253bec647ipmGui.exe14.0.6.52253bec647c00000050000795b16a801cfd31c3c4f5e2fC:\program files\avira\antivir desktop\ipmGui.exeC:\program files\avira\antivir desktop\ipmGui.exe3f640263-3f20-11e4-9418-0024216fef05
Error: (09/18/2014 10:40:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: ipmGui.exe14.0.6.52253bec647ipmGui.exe14.0.6.52253bec647c00000050000795b150c01cfd30b784eb4a3C:\program files\avira\antivir desktop\ipmGui.exeC:\program files\avira\antivir desktop\ipmGui.exe7ab0d1a4-3f0f-11e4-9418-0024216fef05
Error: (09/11/2014 03:16:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GoogleUpdate.exe1.3.21.1034f3c6d6cntdll.dll6.1.7601.18247521ea91cc000000500034d60db401cfcdc1221fe3fcC:\Program Files\Google\Update\GoogleUpdate.exeC:\windows\SYSTEM32\ntdll.dlle4c0afee-39b5-11e4-9434-0024216fef05
Error: (09/10/2014 08:05:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe6.16.0.105536b4342Skype.exe6.16.0.105536b4342c0000005002535f7c4001cfccbcded4a1b6C:\Program Files\Skype\Phone\Skype.exeC:\Program Files\Skype\Phone\Skype.exe7872ae51-38b0-11e4-a752-0024216fef05
Error: (07/26/2014 04:18:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1533) (User: BurkiTrade-msi)
Description: C:\Users\STVDas Verzeichnis ist nicht leer.
Error: (07/18/2014 01:52:08 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\internet everywhere\IEWCH_8.0\installation\Core\setupApiWrapper64.exe
Error: (07/18/2014 01:52:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\internet everywhere\IEWCH_8.0\installation\Core\InstallDevice64.exe
Error: (07/15/2014 07:14:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\internet everywhere\IEWCH_8.0\installation\Core\setupApiWrapper64.exe
Error: (07/15/2014 07:14:07 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\internet everywhere\IEWCH_8.0\installation\Core\InstallDevice64.exe
Error: (07/13/2014 03:11:31 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="AMD64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\internet everywhere\IEWCH_8.0\installation\Core\setupApiWrapper64.exe
CodeIntegrity Errors:
===================================
Date: 2014-10-06 08:42:31.144
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-10-02 08:50:37.311
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-10-01 08:26:07.307
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-30 10:49:31.744
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-29 13:38:55.353
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-29 10:18:11.137
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-25 08:28:16.344
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-24 15:14:23.889
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-24 08:26:03.237
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-09-23 09:12:45.445
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU U9600 @ 1.60GHz
Percentage of memory in use: 39%
Total physical RAM: 3071.16 MB
Available physical RAM: 1869.6 MB
Total Pagefile: 6140.61 MB
Available Pagefile: 4372.96 MB
Total Virtual: 2047.88 MB
Available Virtual: 1896.13 MB
==================== Drives ================================
Drive c: (OS_Install) (Fixed) (Total:60 GB) (Free:28.21 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:395.66 GB) (Free:384.97 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: CC203E8C)
Partition 1: (Not Active) - (Size=10 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=27)
Partition 3: (Not Active) - (Size=60 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=395.7 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
06.10.2014, 09:58
Baum-Darstellung