| buddhavs | 24.12.2013 22:19 |
FRST.txt:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-12-2013 01
Ran by Win7 (administrator) on WIN7-PC on 24-12-2013 22:15:31
Running from C:\Users\Win7\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
() C:\Program Files (x86)\Tor\tor.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Microsoft) C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Spotify Ltd) C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Windows Net) C:\Users\Win7\AppData\Roaming\Windows Net Data\net.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\klwtblfs.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\klwtblfs.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Win7\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Yontoo LLC) C:\Users\Win7\AppData\Roaming\Yontoo\YontooDesktop.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\wmi64.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Win7\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [Spotify] - C:\Users\Win7\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-08] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-08] (Spotify Ltd)
HKCU\...\Run: [Google Update] - C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-20] (Google Inc.)
HKCU\...\Policies\Explorer: [DisallowRun] 1
MountPoints2: F - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {2ec52b0b-ebce-11e2-868f-50e549518fc2} - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {54e3932f-1dea-11e3-8911-50e549518fc2} - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {804dfa32-f4db-11e0-9e0b-806e6f6e6963} - E:\Run.exe
MountPoints2: {a045601e-0463-11e1-add7-50e549518fc2} - G:\FFVIII_autorun.exe
MountPoints2: {a61711b1-087d-11e2-9378-50e549518fc2} - F:\HTC_Sync_Manager_PC.exe
HKU\PC7\...\Run: [Spotify Web Helper] - C:\Users\Win7\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-08] (Spotify Ltd)
HKU\PC7\...\Run: [Spotify] - C:\Users\Win7\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-08] (Spotify Ltd)
Startup: C:\Users\PC7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Win7\AppData\Roaming\Dropbox\bin\Dropbox.exe (No File)
Startup: C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Win7\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=DE&userid=22216177-601c-452a-a786-f72fbdea6933&searchtype=ds&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=10&cc=&mi=462b2f7d00000000000050e549518fc2
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x636DBAD3198BCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=DE&userid=22216177-601c-452a-a786-f72fbdea6933&searchtype=ds&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.delta-search.com/?affID=119370&tt=201112_ccp_ctrl_4712_1&babsrc=HP_ss&mntrId=462b2f7d00000000000050e549518fc2
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://home.sweetim.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=DE&userid=22216177-601c-452a-a786-f72fbdea6933&searchtype=ds&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=DE&userid=22216177-601c-452a-a786-f72fbdea6933&searchtype=ds&q={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {AE93AD7D-1452-47C1-82F1-617BA14D0602} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snap.do/?publisher=SnapdoIMonetizer&dpid=SnapdoIMonetizer&co=DE&userid=22216177-601c-452a-a786-f72fbdea6933&searchtype=ds&q={searchTerms}
SearchScopes: HKCU - {0388404D-6072-4CEB-B521-8F090FEAEE57} URL = hxxp://klit.startnow.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=741&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.3.0&install_country=DE&install_date=20111023&user_guid=431B907A92AC40D9A9F278E0D04A530B&machine_id=b199c5c2b4bd4e8ae52709bb3d501038&browser=IE&os=win&os_version=6.1-x64-SP0&iesrc={referrer:source}
SearchScopes: HKCU - {0D7562AE-8EF6-416d-A838-AB665251703A} URL = hxxp://start.facemoods.com/?a=ironto&s={searchTerms}&f=4
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://isearch.babylon.com/?q={searchTerms}&affID=120606&tt=190313_wo1&babsrc=SP_ss_gr&mntrId=462B50E549518FC2
SearchScopes: HKCU - {ABD93EAF-D775-BC54-E63B-2804F22FD156} URL = hxxp://search.startnow.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=startnow&provider_code=&partner_id=999&product_id=10&affiliate_id=&channel=&toolbar_id=&toolbar_version=&install_country=&install_date=20120927&user_guid=431B907A92AC40D9A9F278E0D04A530B&machine_id=ddd4c3e3a194c9057333ef1fc05ead36&browser=IE&os=win&os_version=6.1-x64-SP0&iesrc={referrer:source}
SearchScopes: HKCU - {AE93AD7D-1452-47C1-82F1-617BA14D0602} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {CE1C933F-C657-4C0F-BD1B-CAE7C0C341A2} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=&apn_ptnrs=^U3&apn_dtid=^YYYYYY^YY^DE&apn_uid=9D97608D-8517-4A91-B5B4-45FD4C97EB52&apn_sauid=695ED66C-2F5A-4B64-A96E-8F85595C382E
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
BHO: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: GBHO.BHO - {45d30484-7ded-43d9-957a-d2fd1f046511} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Snap.DoEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll ()
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: IMinent WebBooster (BHO) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\IMBooster4Web\Iminent.WebBooster.dll (Iminent)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll (Softonic.com)
BHO-x32: SweetIM Toolbar Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO-x32: Yontoo - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files (x86)\StartNow Toolbar\Toolbar32.dll ()
Toolbar: HKLM-x32 - SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default
FF user.js: detected! => C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\user.js
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://isearch.babylon.com/?affID=120606&tt=190313_wo1&babsrc=HP_ss_gr&mntrId=462B50E549518FC2
FF DefaultSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Win7\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Win7\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Win7\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Win7\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\11-suche-1.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\englische-ergebnisse-1.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\gmx-suche-1.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\lastminute-1.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\mngr.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\softonic.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\startnow.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\webde-suche-1.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\searchplugins\yahoo-zugo.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Amazon-Icon - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\amazon-icon@giga.de
FF Extension: pricealarm - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM
FF Extension: Snap.Do - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\helperbar@helperbar.com
FF Extension: Yontoo - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\plugin@yontoo.com
FF Extension: StartNow Toolbar - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\{5911488E-9D1E-40ec-8CBB-06B231CC153F}
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: Ciuvo - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\extension@ciuvo.com.xpi
FF Extension: WEB.DE MailCheck - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\toolbar@web.de.xpi
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\27hbrdrv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Iminent WebBooster - C:\Program Files (x86)\Mozilla Firefox\extensions\webbooster@iminent.com
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
Chrome:
=======
CHR HomePage: hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=462b2f7d00000000000050e549518fc2
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR Plugin: (Shockwave Flash) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\PepperFlash\11.6.602.167\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (BrowserProtect) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll No File
CHR Plugin: (registryAccess) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapnjeoabhkpdiinmomghdncekhiib\7.15.2.0_0\background/registryAccess.dll No File
CHR Plugin: (Free Studio) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.0_0\np_dvs_plugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2003) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\Win7\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Win7\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Google Drive) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\14.0.0.4651_0
CHR Extension: (Safe Money) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\14.0.0.4651_0
CHR Extension: (Dangerous Websites Blocker) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\14.0.0.4651_0
CHR Extension: (Virtual Keyboard) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\14.0.0.4816_1
CHR Extension: (Google Wallet) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\Win7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\14.0.0.4651_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [elchiiiejkobdbblfejjkbphbddgmljf] - C:\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonic.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Win7\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx
CHR HKLM-x32\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Program Files (x86)\Yontoo\YontooLayers.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-02] (Kaspersky Lab ZAO)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2012-06-08] (Nero AG)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [227232 2010-01-15] (McAfee, Inc.)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [88576 2012-06-18] ()
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-04] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2100024 2013-08-30] (TuneUp Software)
R2 Updater Service for StartNow Toolbar; C:\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe [265952 2012-06-22] ()
R2 Yontoo Desktop Updater; C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe [23552 2013-02-15] (Microsoft)
==================== Drivers (Whitelisted) ====================
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [270912 2011-11-01] (DT Soft Ltd)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2011-11-30] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-19] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [620640 2013-12-20] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-10-02] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-02] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2013-12-20] (Kaspersky Lab ZAO)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-24 22:15 - 2013-12-24 22:15 - 00034418 _____ C:\Users\Win7\Downloads\FRST.txt
2013-12-24 22:15 - 2013-12-24 22:15 - 00000000 ____D C:\FRST
2013-12-24 22:14 - 2013-12-24 22:15 - 01928636 _____ (Farbar) C:\Users\Win7\Downloads\FRST64.exe
2013-12-23 11:18 - 2013-12-23 11:18 - 00000000 ____D C:\Users\Win7\AppData\Local\Macromedia
2013-12-22 11:09 - 2013-12-22 11:10 - 00017408 _____ C:\Users\Win7\AppData\Local\WebpageIcons.db
2013-12-22 11:09 - 2013-12-22 11:09 - 00000000 ____D C:\Users\Win7\AppData\Local\Zattoo
2013-12-22 11:08 - 2013-12-24 22:00 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-22 11:08 - 2013-12-22 12:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-22 11:08 - 2013-12-22 12:00 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-22 11:07 - 2013-12-24 13:14 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Windows Net Data
2013-12-22 11:07 - 2013-12-22 11:09 - 00000000 ____D C:\Program Files (x86)\Zattoo4
2013-12-22 11:07 - 2013-12-22 11:07 - 00001872 _____ C:\Users\Win7\Desktop\Zattoo.lnk
2013-12-22 11:07 - 2013-12-22 11:07 - 00001872 _____ C:\Users\PC7\Desktop\Zattoo.lnk
2013-12-22 11:07 - 2013-12-22 11:07 - 00000186 _____ C:\Users\Win7\Desktop\Amazon.de.url
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\ChromeExtensions
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zattoo4
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Local\Temp5a429344bcdc2a954534abefc8985a13
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Local\Temp270cc3642c597ed05029f8e63a040855
2013-12-22 11:06 - 2013-12-22 11:06 - 00943872 _____ C:\Users\Win7\Downloads\Zattoo-Setup.exe
2013-12-22 11:06 - 2013-12-22 11:06 - 00943872 _____ C:\Users\Win7\Downloads\Zattoo-Setup (1).exe
2013-12-22 10:54 - 2013-12-22 10:54 - 00000000 ____D C:\Users\Win7\Desktop\Neuer Ordnera
2013-12-20 18:38 - 2013-12-20 18:38 - 00102510 _____ C:\Users\Win7\Desktop\buttonDataSetup.ini
2013-12-15 12:22 - 2013-12-24 21:34 - 00001456 _____ C:\Windows\setupact.log
2013-12-15 12:22 - 2013-12-15 12:22 - 00000000 _____ C:\Windows\setuperr.log
2013-12-15 12:03 - 2013-12-15 12:03 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-15 12:03 - 2013-12-15 12:03 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-15 12:02 - 2013-12-15 12:02 - 03541544 _____ (Piriform Ltd) C:\Users\Win7\Downloads\ccsetup408_slim (1).exe
2013-12-15 10:50 - 2013-12-15 10:50 - 00000000 ____D C:\Users\PC7\AppData\Local\GoPro
2013-12-15 10:49 - 2013-12-15 10:49 - 00000651 _____ C:\Users\Win7\Desktop\Waldemar.lnk
2013-12-15 10:49 - 2013-12-15 10:49 - 00000626 _____ C:\Users\Win7\Desktop\Eugen.lnk
2013-12-15 09:16 - 2013-12-15 12:03 - 00000000 ____D C:\Program Files\CCleaner
2013-12-15 09:16 - 2013-12-15 09:16 - 03541544 _____ (Piriform Ltd) C:\Users\Win7\Downloads\ccsetup408_slim.exe
2013-12-02 21:25 - 2013-12-02 21:19 - 00000682 _____ C:\Users\Win7\Desktop\1_MyImage - Verknüpfung.lnk
2013-12-01 11:46 - 2013-12-01 11:46 - 00005758 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-12-01 11:46 - 2013-12-01 11:46 - 00000000 ____D C:\ProgramData\Oracle
2013-12-01 11:46 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-01 11:46 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-12-01 11:46 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-12-01 11:46 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-12-01 11:45 - 2013-12-01 11:45 - 00915368 _____ (Oracle Corporation) C:\Users\Win7\Downloads\chromeinstall-7u45.exe
2013-11-27 18:51 - 2013-12-21 22:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified Files and Folders =======
2013-12-24 22:15 - 2013-12-24 22:15 - 00034418 _____ C:\Users\Win7\Downloads\FRST.txt
2013-12-24 22:15 - 2013-12-24 22:15 - 00000000 ____D C:\FRST
2013-12-24 22:15 - 2013-12-24 22:14 - 01928636 _____ (Farbar) C:\Users\Win7\Downloads\FRST64.exe
2013-12-24 22:00 - 2013-12-22 11:08 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-24 21:35 - 2013-02-20 18:19 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA.job
2013-12-24 21:35 - 2013-02-20 18:19 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core.job
2013-12-24 21:34 - 2013-12-15 12:22 - 00001456 _____ C:\Windows\setupact.log
2013-12-24 21:34 - 2012-03-14 16:34 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Spotify
2013-12-24 21:34 - 2011-10-12 15:13 - 01643123 _____ C:\Windows\WindowsUpdate.log
2013-12-24 21:02 - 2013-09-14 12:36 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-24 19:35 - 2013-02-23 13:38 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Yontoo
2013-12-24 19:17 - 2011-12-10 18:28 - 00001134 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA.job
2013-12-24 13:17 - 2011-12-10 18:28 - 00001112 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core.job
2013-12-24 13:14 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Windows Net Data
2013-12-24 13:10 - 2012-08-25 08:29 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Skype
2013-12-24 10:41 - 2009-07-14 05:45 - 00014784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-24 10:41 - 2009-07-14 05:45 - 00014784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-24 10:34 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-23 18:14 - 2013-09-30 13:54 - 00000000 ____D C:\Users\Win7\Documents\FIFA 14
2013-12-23 17:11 - 2013-09-11 19:13 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-23 11:18 - 2013-12-23 11:18 - 00000000 ____D C:\Users\Win7\AppData\Local\Macromedia
2013-12-22 12:00 - 2013-12-22 11:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-22 12:00 - 2013-12-22 11:08 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-22 12:00 - 2011-10-15 10:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-22 11:10 - 2013-12-22 11:09 - 00017408 _____ C:\Users\Win7\AppData\Local\WebpageIcons.db
2013-12-22 11:09 - 2013-12-22 11:09 - 00000000 ____D C:\Users\Win7\AppData\Local\Zattoo
2013-12-22 11:09 - 2013-12-22 11:07 - 00000000 ____D C:\Program Files (x86)\Zattoo4
2013-12-22 11:09 - 2011-10-19 16:50 - 00000000 ____D C:\Users\Win7\AppData\Local\Adobe
2013-12-22 11:07 - 2013-12-22 11:07 - 00001872 _____ C:\Users\Win7\Desktop\Zattoo.lnk
2013-12-22 11:07 - 2013-12-22 11:07 - 00001872 _____ C:\Users\PC7\Desktop\Zattoo.lnk
2013-12-22 11:07 - 2013-12-22 11:07 - 00000186 _____ C:\Users\Win7\Desktop\Amazon.de.url
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\ChromeExtensions
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zattoo4
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Local\Temp5a429344bcdc2a954534abefc8985a13
2013-12-22 11:07 - 2013-12-22 11:07 - 00000000 ____D C:\Users\Win7\AppData\Local\Temp270cc3642c597ed05029f8e63a040855
2013-12-22 11:07 - 2011-10-12 15:12 - 00000000 ___RD C:\Users\Win7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-22 11:07 - 2011-10-12 15:12 - 00000000 ____D C:\Users\Win7
2013-12-22 11:06 - 2013-12-22 11:06 - 00943872 _____ C:\Users\Win7\Downloads\Zattoo-Setup.exe
2013-12-22 11:06 - 2013-12-22 11:06 - 00943872 _____ C:\Users\Win7\Downloads\Zattoo-Setup (1).exe
2013-12-22 10:54 - 2013-12-22 10:54 - 00000000 ____D C:\Users\Win7\Desktop\Neuer Ordnera
2013-12-21 22:12 - 2013-11-27 18:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-20 18:38 - 2013-12-20 18:38 - 00102510 _____ C:\Users\Win7\Desktop\buttonDataSetup.ini
2013-12-20 17:33 - 2013-09-14 12:36 - 00620640 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-20 17:33 - 2013-06-06 16:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2013-12-20 17:14 - 2012-03-14 16:34 - 00000000 ____D C:\Users\Win7\AppData\Local\Spotify
2013-12-20 17:13 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-15 12:22 - 2013-12-15 12:22 - 00000000 _____ C:\Windows\setuperr.log
2013-12-15 12:08 - 2011-10-12 15:59 - 00000000 ____D C:\Windows\pss
2013-12-15 12:06 - 2012-08-25 17:29 - 00000000 ____D C:\Program Files (x86)\PDFCreator
2013-12-15 12:06 - 2011-11-01 15:18 - 00000000 ____D C:\Users\Win7\AppData\Roaming\DAEMON Tools Lite
2013-12-15 12:06 - 2011-11-01 13:09 - 00000000 ____D C:\Users\Win7\AppData\Roaming\uTorrent
2013-12-15 12:06 - 2011-10-23 19:01 - 00000000 ____D C:\Users\Win7\AppData\Roaming\Media Player Classic
2013-12-15 12:05 - 2011-11-25 13:17 - 00000000 ____D C:\Users\Win7\AppData\Local\CrashDumps
2013-12-15 12:05 - 2011-10-12 16:06 - 00000000 ____D C:\Windows\Panther
2013-12-15 12:03 - 2013-12-15 12:03 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-15 12:03 - 2013-12-15 12:03 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-15 12:03 - 2013-12-15 09:16 - 00000000 ____D C:\Program Files\CCleaner
2013-12-15 12:02 - 2013-12-15 12:02 - 03541544 _____ (Piriform Ltd) C:\Users\Win7\Downloads\ccsetup408_slim (1).exe
2013-12-15 12:00 - 2009-07-14 05:45 - 04999112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-15 10:50 - 2013-12-15 10:50 - 00000000 ____D C:\Users\PC7\AppData\Local\GoPro
2013-12-15 10:49 - 2013-12-15 10:49 - 00000651 _____ C:\Users\Win7\Desktop\Waldemar.lnk
2013-12-15 10:49 - 2013-12-15 10:49 - 00000626 _____ C:\Users\Win7\Desktop\Eugen.lnk
2013-12-15 09:16 - 2013-12-15 09:16 - 03541544 _____ (Piriform Ltd) C:\Users\Win7\Downloads\ccsetup408_slim.exe
2013-12-15 09:08 - 2012-07-13 18:55 - 00000000 ____D C:\Users\PC7\AppData\Roaming\Dropbox
2013-12-15 09:04 - 2011-10-12 15:24 - 00116944 _____ C:\Users\Win7\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-15 09:03 - 2012-03-19 17:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-15 08:59 - 2012-08-13 16:34 - 00000000 ____D C:\Users\PC7\AppData\Roaming\Spotify
2013-12-15 08:59 - 2012-07-13 18:56 - 00000000 ___RD C:\Users\PC7\Dropbox
2013-12-15 08:59 - 2012-01-09 15:49 - 00000000 ___RD C:\Users\PC7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-15 08:58 - 2012-07-13 18:56 - 00001010 _____ C:\Users\PC7\Desktop\Dropbox.lnk
2013-12-15 08:58 - 2012-07-13 18:55 - 00000000 ____D C:\Users\PC7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-15 08:54 - 2012-08-13 16:34 - 00000000 ____D C:\Users\PC7\AppData\Local\Spotify
2013-12-15 08:54 - 2012-01-09 15:49 - 00116944 _____ C:\Users\PC7\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-07 21:30 - 2013-02-20 18:19 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA
2013-12-07 21:30 - 2013-02-20 18:19 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core
2013-12-07 14:44 - 2012-05-22 19:57 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-12-07 14:35 - 2011-10-19 17:40 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2013-12-07 14:34 - 2011-11-12 20:44 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-12-06 17:36 - 2011-12-04 17:34 - 00000000 ____D C:\Users\Win7\AppData\Local\Windows Live
2013-12-03 19:48 - 2009-07-14 18:58 - 00698688 _____ C:\Windows\system32\perfh007.dat
2013-12-03 19:48 - 2009-07-14 18:58 - 00148828 _____ C:\Windows\system32\perfc007.dat
2013-12-03 19:48 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-02 21:19 - 2013-12-02 21:25 - 00000682 _____ C:\Users\Win7\Desktop\1_MyImage - Verknüpfung.lnk
2013-12-02 20:25 - 2012-05-06 18:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-01 14:02 - 2011-10-18 20:18 - 00000000 ____D C:\Users\Win7\AppData\Local\Mozilla
2013-12-01 11:46 - 2013-12-01 11:46 - 00005758 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-12-01 11:46 - 2013-12-01 11:46 - 00000000 ____D C:\ProgramData\Oracle
2013-12-01 11:46 - 2011-10-16 12:08 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-01 11:45 - 2013-12-01 11:45 - 00915368 _____ (Oracle Corporation) C:\Users\Win7\Downloads\chromeinstall-7u45.exe
2013-11-30 15:39 - 2013-03-16 18:50 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-30 15:39 - 2012-08-25 08:29 - 00000000 ____D C:\ProgramData\Skype
2013-11-29 22:30 - 2013-11-01 13:57 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-11-27 18:51 - 2012-02-05 14:30 - 00000000 ____D C:\Users\Win7\AppData\Local\Paint.NET
2013-11-24 12:54 - 2013-09-11 19:13 - 00000000 ____D C:\ProgramData\Origin
Files to move or delete:
====================
C:\ProgramData\go_0molg.pad
Some content of TEMP:
====================
C:\Users\PC7\AppData\Local\Temp\AskSLib.dll
C:\Users\PC7\AppData\Local\Temp\contentDATs.exe
C:\Users\PC7\AppData\Local\Temp\simbo.exe
C:\Users\Win7\AppData\Local\Temp\amazonicon_v3.exe
C:\Users\Win7\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\Win7\AppData\Local\Temp\busunint.exe
C:\Users\Win7\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Win7\AppData\Local\Temp\sdapskill.exe
C:\Users\Win7\AppData\Local\Temp\uninst1.exe
C:\Users\Win7\AppData\Local\Temp\uninstall.exe
C:\Users\Win7\AppData\Local\Temp\Zattoo-4.0.5.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-20 17:59
==================== End Of Log ============================
--- --- ---
Addition.txt: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-12-2013 01
Ran by Win7 at 2013-12-24 22:16:03
Running from C:\Users\Win7\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
µTorrent (HKCU Version: 3.3.1.30017)
Adobe AIR (x32 Version: 3.1.0.4880)
Adobe Community Help (x32 Version: 3.4.980)
Adobe Download Assistant (x32 Version: 1.0.6)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Photoshop CS5.1 (x32 Version: 12.1)
Adobe Reader X (10.1.4) - Deutsch (x32 Version: 10.1.4)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638)
Amazon MP3-Downloader 1.0.9 (x32)
AMD APP SDK Runtime (Version: 10.0.831.4)
AMD Catalyst Install Manager (Version: 3.0.855.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.61109.2218)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
ASUS VGA Driver (x32 Version: 3.0.0.1)
ATI AVIVO64 Codecs (Version: 11.6.0.10309)
Audacity 2.0 (x32)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000)
AVI ReComp 1.5.3 (x32 Version: 1.5.3)
AviSynth 2.5 (x32)
Bonjour (Version: 3.0.0.10)
Canon RAW Codec (x32 Version: 1.4.1.44)
Canon Utilities Digital Photo Professional (x32 Version: 3.13.45.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2011.1109.2212.39826)
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.1109.2212.39826)
Catalyst Control Center InstallProxy (x32 Version: 2011.1109.2212.39826)
CCC Help English (x32 Version: 2011.1109.2211.39826)
ccc-utility64 (Version: 2011.1109.2212.39826)
CCleaner (Version: 4.08)
CDex - Open Source Digital Audio CD Extractor (x32 Version: 1.70.4.2009)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.41.3.0173)
DivX-Setup (x32 Version: 2.6.0.34)
Easy Tune 6 B11.0512.1 (x32 Version: 1.00.0000)
EAX(tm) Unified (SHELL) (x32)
Etron USB3.0 Host Controller (x32 Version: 0.98)
Fable III (x32 Version: 1.0.0000.131)
Fable III (x32 Version: 1.0.0001.131)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
FIFA 11 Demo (x32 Version: 1.0.0.0)
FIFA 12 (c) EA version 1 (x32 Version: 1)
FIFA 12 DEMO (x32 Version: 1.0.0.0)
FIFA 14 (x32 Version: 1.0.0.4)
FIFA 14 Demo (x32 Version: 1.0.0.0)
FINAL FANTASY VIII (x32)
FL Studio 10 (x32)
FormatFactory 2.70 (x32 Version: 2.70)
FoxTab PDF Creator (HKCU) <==== ATTENTION
Free Video Flip and Rotate version 2.1.9.827 (x32 Version: 2.1.9.827)
Free YouTube Download version 3.2.1.320 (x32 Version: 3.2.1.320)
Google Chrome (HKCU Version: 31.0.1650.63)
GoPro Studio 2.0.0 (x32 Version: 2.0.0)
Grand Theft Auto IV (x32 Version: 1.0.0013.131)
Grand Theft Auto IV (x32 Version: 1.00.0000)
GTA IV Vehicle Mod Installer v1.2 (x32)
GTA San Andreas (x32 Version: 1.00.00001)
HP Deskjet 2510 series - Grundlegende Software für das Gerät (Version: 28.0.1313.0)
HP Deskjet 2510 series Hilfe (x32 Version: 27.0.0)
HP Deskjet 2510 series Setup Guide (x32 Version: 27.0.0)
HP Photo Creations (x32 Version: 1.0.0.7702)
HP Update (x32 Version: 5.003.003.001)
HTC Driver Installer (x32 Version: 3.0.0.024)
HTC Sync Manager (x32 Version: 1.0.42.2)
HydraVision (x32 Version: 4.2.188.0)
IL Download Manager (x32)
Iminent (x32 Version: 4.10.0.0) <==== ATTENTION
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118)
Intel(R) Rapid Storage Technology (x32 Version: 10.5.0.1026)
iTunes (Version: 11.0.5.5)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Java(TM) 6 Update 22 (x32 Version: 6.0.220)
Java(TM) 6 Update 32 (x32 Version: 6.0.320)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JDownloader 0.9 (x32 Version: 0.9)
Kaspersky Internet Security (x32 Version: 14.0.0.4651)
Kies Air Discovery Service (HKCU)
K-Lite Mega Codec Pack 7.8.0 (x32 Version: 7.8.0)
McAfee Security Scan Plus (x32 Version: 2.0.181.2)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Flight (x32 Version: 1.0.0004.129)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Professional 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.7969.0)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Silverlight (x32 Version: 5.0.61118.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Miracle Mini-Golf (x32 Version: 1.00.0000)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
Mp3tag v2.50 (x32 Version: v2.50)
MP4 To MP3 Converter V3.0 (x32)
MSVCRT (x32 Version: 15.4.2862.0708)
NBA 2K12 (x32 Version: 1.0.0)
Need for Speed Underground 2 (x32)
Need For Speed™ World (x32 Version: 1.0.0.659)
ON_OFF Charge B11.0110.1 (x32 Version: 1.00.0001)
OpenOffice.org 3.3 (x32 Version: 3.3.9567)
OpenSubtitlesPlayer V4.X (x32)
Origin (x32 Version: 9.3.2.2730)
Paint.NET v3.5.10 (Version: 3.60.0)
PC Speed Maximizer v3.0 (x32 Version: 3.0)
PDF Settings CS5 (x32 Version: 10.0)
PDFCreator (x32 Version: 1.4.3)
Poker 770 (HKCU)
Qtrax Player (HKCU)
Qtrax Player (x32 Version: 1.00.0001)
QuickTime (x32 Version: 7.71.80.42)
Real Hide IP (x32 Version: 4.2.1.8)
Realtek Ethernet Controller Driver (x32 Version: 7.38.113.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6307)
Remotedesktopverbindung (x32 Version: 5.1.2600.2180)
SAMSUNG Android USB Modem Software (Version: V5.28.2.1)
Skype™ 6.11 (x32 Version: 6.11.102)
Smart 6 B11.0512.1 (x32 Version: 1.00.0000)
Snap.Do (x32 Version: 1.6.0.349)
Softonic toolbar on IE and Chrome (x32 Version: 1.8.21.14)
SopCast 3.5.0 (x32 Version: 3.5.0)
Spotify (HKCU Version: 0.9.6.81.gd359a796)
StartNow Toolbar (x32 Version: 2.5.0)
Streamripper (Remove only) (x32)
Studie zur Verbesserung von HP Deskjet 2510 series Produkten (Version: 28.0.1313.0)
SUPER © v2011.build.49 (July 1st, 2011) Version v2011.build.49 (x32 Version: v2011.build.49)
SweetIM for Messenger 3.6 (x32 Version: 3.6.0002) <==== ATTENTION
SweetIM Toolbar for Internet Explorer 4.2 (x32 Version: 4.2.0004) <==== ATTENTION
swMSM (x32 Version: 12.0.0.1)
TeamViewer 8 (x32 Version: 8.0.22298)
TomTom HOME (x32 Version: 2.9.0)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.89)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.89)
TuxGuitar (x32 Version: 1.2)
Twin USB Vibration Gamepad (x32 Version: 2006.7.18)
UltraVnc (Version: 1.1.9.0)
Unified Remote (x32 Version: 2.7.2.0)
Unity Web Player (HKCU Version: )
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Vektoris3D 2.5 PLUS 2.5.2 (x32 Version: 2.5.2)
VLC media player 1.1.11 (x32 Version: 1.1.11)
VobSub 2.23 (x32 Version: 2.23)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (Version: 03/07/2012 )
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3538.0513)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Utils (x32)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
World Racing Demo (x32 Version: 2.01.0001)
Xvid 1.3.0 (x32 Version: 1.3.0)
Yontoo 2.04 (Version: 2.04) <==== ATTENTION
Zattoo4 4.0.5 (x32 Version: 4.0.5)
==================== Restore Points =========================
15-12-2013 12:18:29 Geplanter Prüfpunkt
24-12-2013 10:03:56 Geplanter Prüfpunkt
24-12-2013 13:57:45 Removed Babylon Chrome Toolbar
24-12-2013 13:58:26 Removed Ciuvo
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0F9BB540-3549-462C-9820-A81F7260A605} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-22] (Adobe Systems Incorporated)
Task: {167104FC-92DE-4367-9587-9DE9ECCF35B0} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA => C:\Users\Win7\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {2A94CF93-3433-42ED-A6E0-32A928A49B6C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2013-08-30] (TuneUp Software)
Task: {34E52C02-E555-4880-AEE5-58CF026CF097} - System32\Tasks\Browser Manager => Sc.exe start Browser Manager
Task: {52055196-786E-4515-BBD4-4D7236F5C5AF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA => C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-20] (Google Inc.)
Task: {560F4671-A9A4-4BEB-AD8D-149AEE018091} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SelfUpdater\SoftwareUpdater.Ui.exe
Task: {5B13BE27-2E35-4416-AFDD-07C363B038FB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {5FC47037-01E5-4D36-B3E5-E977A5EBE649} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core => C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-20] (Google Inc.)
Task: {6B7767D4-AB74-4433-AFD5-867F04E48E76} - System32\Tasks\AdobeAAMUpdater-1.0-Win7-PC-Win7 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2011-03-15] (Adobe Systems Incorporated)
Task: {90356684-57FF-4CC0-B735-7A827625ECD4} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION
Task: {9561D0D6-AE22-43AD-9411-D8B6087F3A3D} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {97E1833F-4C66-42F5-AA22-BF7CEEF978C4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core => C:\Users\Win7\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {A627361D-61B8-4A9F-9167-4BF2A54E632E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B8B32F14-D8F2-40E0-9495-FB6D5BAB120A} - System32\Tasks\Norton Security Scan for Win7 => C:\PROGRA~2\NORTON~2\Engine\372~1.5\Nss.exe
Task: {BBA70E00-8FC6-48C5-A490-206340BCDF9B} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {BC73EC1D-3592-49EE-B592-5BBEEB3E2D37} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3811942870-4072262940-2329378178-1000
Task: {EE920DFE-C8CC-4911-9BC3-D5DCFA5B961F} - System32\Tasks\Software Updater => C:\Program Files (x86)\SelfUpdater\SoftwareUpdater.Bootstrapper.exe
Task: {F51C0B7A-B100-46E8-9F43-C805E485FCE0} - System32\Tasks\{D74A12BA-1166-4B9A-BE1F-BE2F04466314} => Firefox.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.10.0.116&LastError=2
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core.job => C:\Users\Win7\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA.job => C:\Users\Win7\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000Core.job => C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3811942870-4072262940-2329378178-1000UA.job => C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCustPartic.exe_{ED96BB22-558C-4AA8-800F-6869DF32100F}.job => C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe
Task: C:\Windows\Tasks\Norton Security Scan for Win7.job => C:\PROGRA~2\NORTON~2\Engine\372~1.5\Nss.exe
Task: C:\Windows\Tasks\Toolbox.exe_{E666EF36-E767-45C8-A740-597D4B1BE4E4}.job => C:\Program Files\HP\HP Deskjet 2510 series\Bin\Toolbox.exe
==================== Loaded Modules (whitelisted) =============
2011-09-27 07:23 - 2011-09-27 07:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 07:22 - 2011-09-27 07:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-17 11:35 - 2013-06-17 11:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 13:52 - 2013-05-08 13:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2012-09-06 09:38 - 2012-09-06 09:38 - 00024496 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2012-09-06 09:38 - 2012-09-06 09:38 - 00466256 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2012-09-06 09:39 - 2012-09-06 09:39 - 00045480 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2012-09-06 09:39 - 2012-09-06 09:39 - 00035776 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2011-10-12 15:21 - 2011-10-12 15:21 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9e07ecd66b80e726e4d6e7dbb9e4ade0\IsdiInterop.ni.dll
2011-10-12 15:21 - 2011-04-29 23:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2013-12-06 18:00 - 2013-12-04 03:47 - 00702416 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-06 18:00 - 2013-12-04 03:47 - 00099792 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-06 18:00 - 2013-12-04 03:48 - 04055504 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-06 18:00 - 2013-12-04 03:48 - 00399312 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-06 18:00 - 2013-12-04 03:47 - 01619408 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-06 18:00 - 2013-12-04 03:48 - 13586896 _____ () C:\Users\Win7\AppData\Local\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
2012-03-14 16:34 - 2013-12-08 13:40 - 36967424 _____ () C:\Users\Win7\AppData\Roaming\Spotify\Data\libcef.dll
2013-09-26 08:48 - 2013-12-08 13:40 - 00887808 _____ () C:\Users\Win7\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-26 08:48 - 2013-12-08 13:40 - 00109568 _____ () C:\Users\Win7\AppData\Roaming\Spotify\Data\libegl.dll
2013-04-27 07:35 - 2013-12-24 16:35 - 00013600 _____ () C:\Users\Win7\AppData\Roaming\Yontoo\dat\Desktop.OS.Plugin.dll
2013-12-22 11:08 - 2013-12-22 11:08 - 16242056 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:054203E4
AlternateDataStreams: C:\ProgramData\TEMP:AD022376
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR210 => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/24/2013 09:26:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5023
Error: (12/24/2013 09:26:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5023
Error: (12/24/2013 09:26:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/24/2013 09:26:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4025
Error: (12/24/2013 09:26:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4025
Error: (12/24/2013 09:26:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/24/2013 09:26:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3026
Error: (12/24/2013 09:26:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3026
Error: (12/24/2013 09:26:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/24/2013 09:26:28 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2028
System errors:
=============
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Server" wurde mit folgendem Fehler beendet:
%%14
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Error: (12/24/2013 10:34:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1062
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-12-24 10:58:10.243
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-24 10:58:10.241
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-24 10:58:10.239
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-24 10:58:10.221
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-24 10:58:10.220
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-24 10:58:10.218
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-21 20:58:34.175
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-21 20:58:34.173
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-21 20:58:34.172
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-21 20:58:34.162
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 41%
Total physical RAM: 8175.11 MB
Available physical RAM: 4796.84 MB
Total Pagefile: 16348.37 MB
Available Pagefile: 12110.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:292.87 GB) (Free:57.16 GB) NTFS
Drive d: () (Fixed) (Total:638.54 GB) (Free:394.24 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D5BA5526)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=639 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
So funktioniert es:
SecurityCheck und:
