| Pantherchen | 07.01.2014 09:45 |
Sorry ich habe es leider net so mit Rechtschreibung :)
Aber danke für die hilfe
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by Panti (administrator) on PANTI-PC on 07-01-2014 09:39:44
Running from C:\Users\Panti\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Akamai Technologies, Inc.) C:\Users\Panti\AppData\Local\Akamai\netsession_win.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Akamai Technologies, Inc.) C:\Users\Panti\AppData\Local\Akamai\netsession_win.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
() C:\Program Files (x86)\GameforgeLive\gfl_client.exe
(Dragonfly Co. Ltd.) C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\S.K.I.L.L\DFUFG.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-09] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-07] ()
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Panti\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKCU\...\Policies\Explorer: [NoDFSTab] 0
HKCU\...\Policies\Explorer: [NoEncryptOnMove] 0
HKCU\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKCU\...\Policies\Explorer: [NoResolveSearch] 0
HKCU\...\Policies\Explorer: [NoHardwareTab] 0
HKU\UpdatusUser\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-07] ()
HKU\UpdatusUser\...\Run: [Akamai NetSession Interface] - C:\Users\Panti\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
AppInit_DLLs: � [ ] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388586240&from=sfpsnew2&uid=395049983_1052514_C0B801CC&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA098058C93CDCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388586240&from=sfpsnew2&uid=395049983_1052514_C0B801CC&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Nation Zoom
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Nation Zoom
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {578B0716-AC2D-438C-E57C-6F342B742C2A} URL = QVO6
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SoftpublisherYB&dpid=sfp1&co=DE&userid=d72063a4-ecc8-1f36-0323-48a4678d88c0&searchtype=ds&q={searchTerms}&installDate=01/11/2013
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SoftpublisherYB&dpid=sfp1&co=DE&userid=d72063a4-ecc8-1f36-0323-48a4678d88c0&searchtype=ds&q={searchTerms}&installDate=01/11/2013
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3319419&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP2DDF48D3-751A-4D22-A5CB-CF84FA5012A0&q={searchTerms}&SSPV=
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SoftpublisherYB&dpid=sfp1&co=DE&userid=d72063a4-ecc8-1f36-0323-48a4678d88c0&searchtype=ds&q={searchTerms}&installDate=01/11/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3319419&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP2DDF48D3-751A-4D22-A5CB-CF84FA5012A0&q={searchTerms}&SSPV=
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: CBAbzockschutz.InitToolbarBHO - {2e250b90-0e7a-42a3-9d65-e39f9f227fa4} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DNS Error Helper - {9B6B03F1-16CF-4491-BBBB-E872802DD717} - C:\ProgramData\DNSErrorHelper\bho.dll ()
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Webroot Vault - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\pkg\LPBar.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Freemake.YoutubeButton - {e9e8eb35-ff77-455d-b677-91e5e4fc06c2} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - COMPUTERBILD-Abzockschutz - {353e2a48-6254-4bd3-88f4-3b51a0ca7870} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar.dll No File
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default
FF user.js: detected! => C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\user.js
FF NewTab: chrome://fvd.speeddial/content/fvd_about_blank.html
FF Homepage: chrome://fvd.speeddial/content/fvd_about_blank.html
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.13.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @4game.com/plugin - C:\Program Files (x86)\4game\npplugin4game.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll No File
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll No File
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKCU: @gentek.com/thinclient - C:\IGG\twclient_us\npthinclient.dll No File
FF Plugin HKCU: @soe.sony.com/installer,version=1.0.3 - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Panti\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: thehappycloud.com/HappyCloudPlugin - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\nationzoom.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: TubeSaver - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\116
FF Extension: FVD Speed Dial - New Tab Page - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\pavel.sherbakov@gmail.com
FF Extension: BrowserAdditions - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\toolbarbutton@browseradditions.com
FF Extension: FoxLingo - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
FF Extension: Flash Video Downloader - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\artur.dubovoy@gmail.com.xpi
FF Extension: Webmail Ad Blocker - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\gmailnoads@mywebber.com.xpi
FF Extension: Deutsch (DE) Language Pack - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\langpack-de@firefox.mozilla.org.xpi
FF Extension: Zoom Page - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\zoompage@DW-dev.xpi
FF Extension: COMPUTERBILD-Abzockschutz - C:\Users\Panti\AppData\Roaming\Mozilla\Firefox\Profiles\51222exo.default\Extensions\{d49175b3-3fd8-43b8-b28e-da5d47f3c398}.xpi
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Price Alarm) - C:\Users\Panti\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab
CHR HKLM\...\Chrome\Extension: [khldgopgjjapmbkgflpoclebjjmkmbnk] - C:\Program Files\Video downloader\source.crx
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.0.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\errorassistant_1.1.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [khldgopgjjapmbkgflpoclebjjmkmbnk] - C:\Program Files\Video downloader\source.crx
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88424 2013-09-05] (Perfect World Entertainment Inc)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-09] (Kaspersky Lab ZAO)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [8704 2013-07-19] (Ellora Assets Corp.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [5110192 2012-10-24] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-12] ()
S2 4game-service; "C:\Program Files (x86)\4game\4game-service.exe" [x]
S4 vToolbarUpdater15.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [x]
==================== Drivers (Whitelisted) ====================
S4 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-05-21] (AVG Technologies)
R3 DCamUSBNovatek; C:\Windows\System32\Drivers\nvtcam.sys [2754432 2011-07-07] (NTK)
R3 guillflt; C:\Windows\System32\DRIVERS\guillflt.sys [65024 2009-06-04] (Guillemot Corp S.A.)
R3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [111104 2009-02-09] (Guillemot Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-12-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-10-09] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-12-10] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-10-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-09] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-06-16] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 Ph3xIB64; C:\Windows\System32\DRIVERS\Ph3xIB64.sys [1627520 2009-06-10] (NXP Semiconductors)
S1 prodrv06; C:\Windows\SysWow64\drivers\prodrv06.sys [54272 2004-04-08] (Protection Technology)
S0 prohlp02; C:\Windows\SysWow64\drivers\prohlp02.sys [70400 2004-04-08] (Protection Technology)
S0 prosync1; C:\Windows\SysWow64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (MCCI Corporation)
S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [19496 2008-05-16] (MCCI Corporation)
S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [158760 2008-05-16] (MCCI Corporation)
S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [137256 2008-05-16] (MCCI Corporation)
S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [34344 2008-05-16] (MCCI Corporation)
S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [136744 2008-05-16] (MCCI Corporation)
S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [151592 2008-05-16] (MCCI Corporation)
S0 sfhlp01; C:\Windows\SysWow64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 cpuz134; \??\C:\Users\Panti\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]
S3 cpuz135; \??\C:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [x]
U3 DfSdkS;
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [90208 2013-06-16] (Kaspersky Lab ZAO)
U0 SR;
U2 srservice;
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [x]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [x]
S3 X6va014; \??\C:\Windows\SysWOW64\Drivers\X6va014 [x]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [x]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-07 09:39 - 2014-01-07 09:39 - 00029921 _____ C:\Users\Panti\Desktop\FRST.txt
2014-01-07 09:37 - 2014-01-07 09:37 - 01931762 _____ (Farbar) C:\Users\Panti\Desktop\FRST64.exe
2014-01-07 08:59 - 2014-01-07 08:59 - 00000168 _____ C:\Windows\setupact.log
2014-01-07 08:59 - 2014-01-07 08:59 - 00000000 _____ C:\Windows\setuperr.log
2014-01-06 19:07 - 2014-01-06 19:08 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2014-01-06 18:53 - 2014-01-06 18:53 - 00000000 _____ C:\autoexec.bat
2014-01-06 18:52 - 2014-01-06 18:52 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-03 14:52 - 2014-01-03 14:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2014-01-02 20:20 - 2014-01-02 21:07 - 00000000 ____D C:\Users\Panti\AppData\Local\Ubisoft Game Launcher
2014-01-02 20:19 - 2014-01-02 20:19 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-01-02 13:27 - 2014-01-02 13:27 - 00000000 ____D C:\Users\Panti\Downloads\Gameforge Live
2014-01-01 15:44 - 2014-01-01 16:13 - 00000000 ____D C:\Users\Panti\Documents\The Lord of the Rings Online
2014-01-01 15:32 - 2014-01-01 15:32 - 00002517 _____ C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EverQuest II PSG.lnk
2014-01-01 15:24 - 2014-01-06 22:54 - 00000000 ____D C:\ProgramData\WPM
2014-01-01 12:49 - 2014-01-01 19:08 - 00000000 ____D C:\ProgramData\Turbine
2014-01-01 12:48 - 2014-01-01 19:07 - 00000000 ____D C:\ProgramData\HappyCloud
2014-01-01 12:48 - 2014-01-01 12:48 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Happy Cloud
2014-01-01 12:20 - 2014-01-01 12:20 - 00000000 __RHD C:\Users\Panti\AppData\Roaming\SecuROM
2014-01-01 01:37 - 2014-01-01 01:37 - 00000000 ____D C:\Crash
2013-12-31 20:36 - 2014-01-01 00:40 - 00000000 ____D C:\ProgramData\GFACE
2013-12-30 22:38 - 2013-12-30 22:38 - 00000000 ____D C:\Users\Panti\Documents\Firefall
2013-12-23 13:46 - 2013-12-23 13:46 - 00000000 ___HD C:\Users\Panti\Documents\Freemake_do_not_remove_this_folder635234031874586000
2013-12-23 13:15 - 2013-12-23 13:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-17 20:46 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-17 20:46 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-13 19:03 - 2013-12-13 19:03 - 17931798 _____ C:\Users\Panti\Desktop\Tom Beck _Ain't Got You_ - Musikvideo.mp4
2013-12-13 19:01 - 2013-12-13 19:02 - 26626838 _____ C:\Users\Panti\Desktop\Tom Beck - This Time.mp4
2013-12-12 07:35 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-12 07:35 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-12 07:35 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-12 07:35 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-12 07:34 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 07:34 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 07:34 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 07:34 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 07:34 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 07:34 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 07:34 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 07:34 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 07:34 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 07:34 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 07:34 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 07:34 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 07:34 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 07:34 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 07:34 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 07:34 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 07:34 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 07:34 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 07:34 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 07:34 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 07:34 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 07:34 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 07:34 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 07:34 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 07:34 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 07:34 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 07:34 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 07:34 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 07:34 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 07:34 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 07:34 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 07:29 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-12 07:29 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-12 07:29 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-12 07:29 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-12 07:28 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-12 07:28 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-12 07:28 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 07:28 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 07:28 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 07:28 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 07:28 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-12 07:27 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 07:27 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 07:27 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 07:27 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 07:27 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 07:27 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 07:27 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 07:27 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 08:51 - 2013-12-11 08:51 - 14251437 _____ C:\Users\Panti\Desktop\Kim Gloss - Holy Night.mp4
2013-12-10 14:55 - 2014-01-01 22:04 - 00000000 ____D C:\Users\Panti\Xpadder
==================== One Month Modified Files and Folders =======
2014-01-07 09:40 - 2014-01-07 09:39 - 00029921 _____ C:\Users\Panti\Desktop\FRST.txt
2014-01-07 09:38 - 2012-11-28 20:15 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-07 09:37 - 2014-01-07 09:37 - 01931762 _____ (Farbar) C:\Users\Panti\Desktop\FRST64.exe
2014-01-07 09:33 - 2013-10-31 09:06 - 00000374 _____ C:\Windows\Tasks\WpsUpdateTask_Panti.job
2014-01-07 09:30 - 2012-12-07 23:25 - 00000000 ____D C:\Users\Panti\AppData\Local\PMB Files
2014-01-07 09:22 - 2013-09-12 16:56 - 00000000 _____ C:\dfu.log
2014-01-07 09:16 - 2013-06-16 09:15 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2014-01-07 09:06 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-07 09:06 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-07 08:59 - 2014-01-07 08:59 - 00000168 _____ C:\Windows\setupact.log
2014-01-07 08:59 - 2014-01-07 08:59 - 00000000 _____ C:\Windows\setuperr.log
2014-01-07 08:59 - 2012-11-29 15:45 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-07 08:59 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-06 23:17 - 2012-11-28 19:06 - 01534287 _____ C:\Windows\WindowsUpdate.log
2014-01-06 23:14 - 2013-09-13 16:45 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-06 23:13 - 2013-06-21 12:47 - 00000000 ____D C:\Program Files\CCleaner
2014-01-06 22:54 - 2014-01-01 15:24 - 00000000 ____D C:\ProgramData\WPM
2014-01-06 19:08 - 2014-01-06 19:07 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2014-01-06 18:53 - 2014-01-06 18:53 - 00000000 _____ C:\autoexec.bat
2014-01-06 18:52 - 2014-01-06 18:52 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-06 18:08 - 2012-11-28 20:59 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Skype
2014-01-06 17:54 - 2012-12-08 13:23 - 00281688 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2014-01-06 17:54 - 2012-12-08 10:08 - 00281688 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2014-01-06 10:00 - 2012-12-08 10:08 - 00281688 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2014-01-06 10:00 - 2011-04-12 08:43 - 00709884 _____ C:\Windows\system32\perfh007.dat
2014-01-06 10:00 - 2011-04-12 08:43 - 00154320 _____ C:\Windows\system32\perfc007.dat
2014-01-06 10:00 - 2009-07-14 06:13 - 01649420 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-03 15:31 - 2013-03-04 17:39 - 00000000 ____D C:\Users\Panti\AppData\Roaming\TS3Client
2014-01-03 14:52 - 2014-01-03 14:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2014-01-03 14:34 - 2013-02-11 13:13 - 00000000 ____D C:\Users\Panti\AppData\Local\TeamSpeak 3 Client
2014-01-03 09:12 - 2012-12-29 09:39 - 00000000 ___RD C:\Users\Panti\Desktop\Spiele
2014-01-02 21:07 - 2014-01-02 20:20 - 00000000 ____D C:\Users\Panti\AppData\Local\Ubisoft Game Launcher
2014-01-02 20:44 - 2012-12-08 13:22 - 00000000 ____D C:\Users\Panti\AppData\Local\PunkBuster
2014-01-02 20:43 - 2013-07-31 11:13 - 00000000 ____D C:\Users\Panti\Documents\My Games
2014-01-02 20:19 - 2014-01-02 20:19 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-01-02 20:19 - 2013-01-10 12:30 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2014-01-02 13:27 - 2014-01-02 13:27 - 00000000 ____D C:\Users\Panti\Downloads\Gameforge Live
2014-01-02 13:27 - 2013-02-16 10:30 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2014-01-02 12:56 - 2013-08-15 19:28 - 00000000 ____D C:\Users\Panti\AppData\Local\Warframe
2014-01-01 22:04 - 2013-12-10 14:55 - 00000000 ____D C:\Users\Panti\Xpadder
2014-01-01 20:57 - 2013-07-22 14:34 - 00000000 ____D C:\Nexon
2014-01-01 19:08 - 2014-01-01 12:49 - 00000000 ____D C:\ProgramData\Turbine
2014-01-01 19:07 - 2014-01-01 12:48 - 00000000 ____D C:\ProgramData\HappyCloud
2014-01-01 16:13 - 2014-01-01 15:44 - 00000000 ____D C:\Users\Panti\Documents\The Lord of the Rings Online
2014-01-01 15:32 - 2014-01-01 15:32 - 00002517 _____ C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EverQuest II PSG.lnk
2014-01-01 15:24 - 2013-06-19 15:26 - 00001312 _____ C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-01 15:24 - 2012-11-28 19:08 - 00001613 _____ C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-01 12:48 - 2014-01-01 12:48 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Happy Cloud
2014-01-01 12:20 - 2014-01-01 12:20 - 00000000 __RHD C:\Users\Panti\AppData\Roaming\SecuROM
2014-01-01 11:19 - 2013-09-13 17:05 - 00000000 ____D C:\Users\Panti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-01 01:37 - 2014-01-01 01:37 - 00000000 ____D C:\Crash
2014-01-01 00:40 - 2013-12-31 20:36 - 00000000 ____D C:\ProgramData\GFACE
2013-12-31 09:37 - 2012-11-29 15:29 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-12-31 09:37 - 2012-11-29 15:29 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-12-31 09:36 - 2013-09-15 18:21 - 00000000 ____D C:\Users\Panti\AppData\Local\Red 5 Studios
2013-12-31 09:36 - 2013-09-15 15:04 - 00000000 ____D C:\Program Files (x86)\Red 5 Studios
2013-12-30 22:38 - 2013-12-30 22:38 - 00000000 ____D C:\Users\Panti\Documents\Firefall
2013-12-30 19:47 - 2013-10-03 15:49 - 00000000 ____D C:\Program Files (x86)\Project64 1.6
2013-12-30 19:46 - 2013-01-16 19:59 - 00000000 __SHD C:\AI_RecycleBin
2013-12-24 18:46 - 2013-07-29 13:50 - 00000000 ____D C:\Users\Panti\AppData\Roaming\vlc
2013-12-24 09:39 - 2013-04-09 07:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-23 13:46 - 2013-12-23 13:46 - 00000000 ___HD C:\Users\Panti\Documents\Freemake_do_not_remove_this_folder635234031874586000
2013-12-23 13:15 - 2013-12-23 13:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-13 19:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-13 19:03 - 2013-12-13 19:03 - 17931798 _____ C:\Users\Panti\Desktop\Tom Beck _Ain't Got You_ - Musikvideo.mp4
2013-12-13 19:02 - 2013-12-13 19:01 - 26626838 _____ C:\Users\Panti\Desktop\Tom Beck - This Time.mp4
2013-12-13 18:28 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-12 07:39 - 2009-07-14 05:45 - 00285008 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-12 07:33 - 2013-09-03 21:44 - 00000000 ____D C:\Windows\system32\MRT
2013-12-12 07:30 - 2012-11-29 12:01 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-11 09:38 - 2012-11-28 20:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 09:38 - 2012-11-28 20:15 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 09:38 - 2012-11-28 20:15 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 08:51 - 2013-12-11 08:51 - 14251437 _____ C:\Users\Panti\Desktop\Kim Gloss - Holy Night.mp4
2013-12-10 14:55 - 2012-11-28 19:06 - 00000000 ____D C:\Users\Panti
2013-12-10 09:32 - 2012-08-02 14:09 - 00029792 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klim6.sys
2013-12-10 09:32 - 2012-06-19 16:28 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-12-10 03:13 - 2013-10-29 12:42 - 01100248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-12-10 03:13 - 2013-10-29 12:42 - 00982232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
Files to move or delete:
====================
C:\ProgramData\hash.dat
C:\Users\Panti\jagex_cl_runescape_LIVE.dat
C:\Users\Panti\jagex_cl_runescape_LIVE1.dat
C:\Users\Panti\random.dat
Some content of TEMP:
====================
C:\Users\Panti\AppData\Local\Temp\d0b2cbc213d698e8564663574ff9ac97.dll
C:\Users\Panti\AppData\Local\Temp\hcuninstaller_20140101_190721_5672.exe
C:\Users\Panti\AppData\Local\Temp\NGMDll.dll
C:\Users\Panti\AppData\Local\Temp\NGMResource.dll
C:\Users\Panti\AppData\Local\Temp\nvStInst.exe
C:\Users\Panti\AppData\Local\Temp\riftuninstall.exe
C:\Users\Panti\AppData\Local\Temp\SHSetup.exe
C:\Users\Panti\AppData\Local\Temp\tmp28A5.exe
C:\Users\Panti\AppData\Local\Temp\tmp3946.exe
C:\Users\Panti\AppData\Local\Temp\tmp4347.exe
C:\Users\Panti\AppData\Local\Temp\tmp57A3.exe
C:\Users\Panti\AppData\Local\Temp\tmp74F3.exe
C:\Users\Panti\AppData\Local\Temp\tmpAC21.exe
C:\Users\Panti\AppData\Local\Temp\tmpE04B.exe
C:\Users\Panti\AppData\Local\Temp\tmpE10.exe
C:\Users\Panti\AppData\Local\Temp\unicows.dll
C:\Users\Panti\AppData\Local\Temp\Uninstaller-2604.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-20 22:44
==================== End Of Log ============================
--- --- ---
--- --- ---
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by Panti at 2014-01-07 09:43:07
Running from C:\Users\Panti\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky Internet Security (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky Internet Security (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
==================== Installed Programs ======================
Adobe AIR (x32 Version: 3.2.0.2070 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.2.0.2070 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions 2.0 (x32 Version: 2.0 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI - Deutsch (x32 Version: 11.0.00 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.3.133 - Adobe Systems, Inc.)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (x32 Version: - )
Alliance of Valiant Arms (x32 Version: - RED DUCK Inc.)
Apple Application Support (x32 Version: 2.3 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Arc (x32 Version: 1.0.0.5510 - Perfect World Entertainment)
Ashampoo Photo Commander 9 v.9.4.3 (x32 Version: 9.4.3 - Ashampoo GmbH & Co. KG)
Avanquest update (x32 Version: 1.31 - Avanquest Software)
Bandisoft MPEG-1 Decoder (x32 Version: - )
Borderlands (x32 Version: 1.0.295 - 2K Games)
Borderlands 2 (x32 Version: - Gearbox Software)
CCleaner (Version: 4.09 - Piriform)
CDBurnerXP (x32 Version: 4.5.2.4291 - CDBurnerXP)
Cheat Engine 6.3 (x32 Version: - Cheat Engine)
COMPUTERBILD-Abzockschutz (x32 Version: 1.0.49 - J3S)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC Universe Online Live (HKCU Version: - Sony Online Entertainment)
DC Universe Online PSG (HKCU Version: 1.0.3.183 - Sony Online Entertainment)
DEUTSCHLAND SPIELT GAME CENTER (x32 Version: - )
Die Sims™ 3 (x32 Version: 1.63.4 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86 - Electronic Arts)
DivX-Setup (x32 Version: 2.6.1.22 - DivX, LLC)
Dual-Core Optimizer (x32 Version: 1.1.4.0169 - AMD)
EXPERTool v8.9 (x32 Version: 8.9.5.0 - Gainward Co. Ltd.)
FormatFactory 3.0.1 (x32 Version: 3.0.1 - Free Time)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Freemake Music Box (x32 Version: 0.9.7 - Ellora Assets Corporation)
Freemake Video Converter Version 3.1.2 (x32 Version: 3.1.2 - Ellora Assets Corporation)
Freemake Video Downloader (x32 Version: 3.5.2 - Ellora Assets Corporation)
Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0 - Gameforge)
GameShadow (x32 Version: 2.01.0000 - Ihr Firmenname)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GIMP 2.8.4 (Version: 2.8.4 - The GIMP Team)
G'MIC for GIMP Version 1.5.6.1 (x32 Version: 1.5.6.1 - )
Happy Cloud Client (HKCU Version: 4.28 - Happy Cloud, Inc.)
Hercules HD Emotion (x32 Version: 4.0.2.1 - Hercules)
Hercules Webcam Station Evolution (x32 Version: 4.0.2.6 - Hercules)
HTC BMP USB Driver (x32 Version: 1.0.5375 - HTC)
HTC Driver Installer (x32 Version: 3.0.0.021 - HTC Corporation)
HTC Sync (x32 Version: 3.2.20 - HTC Corporation)
Java 7 Update 13 (64-bit) (Version: 7.0.130 - Oracle)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Kaspersky Internet Security 2013 (x32 Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Internet Security 2013 (x32 Version: 13.0.1.4190 - Kaspersky Lab) Hidden
Kingsoft Office 2013 (9.1.0.4058) (x32 Version: 9.1.0.4058 - Kingsoft Corp.)
K-Lite Codec Pack 9.5.0 (Full) (x32 Version: 9.5.0 - )
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (x32 Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.1 (Version: 1.10.123.0 - Microsoft)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
Need For Speed™ World (x32 Version: 1.0.0.1229 - Electronic Arts)
Nero 7 Demo (x32 Version: 7.00.2739 - Nero AG)
Nexon Game Manager (x32 Version: - )
NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA Drivers (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
OpenAL (x32 Version: - )
Origin (x32 Version: 9.2.1.4399 - Electronic Arts, Inc.)
Pando Media Booster (x32 Version: 2.6.0.8 - Pando Networks Inc.)
Pandora Service (x32 Version: - Pandora.TV)
PDF-Viewer (Version: 2.5.207.0 - Tracker Software Products Ltd)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PhotoScape (x32 Version: - )
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
RESIDENT EVIL 5 (x32 Version: 1.0.0.129 - CAPCOM CO., LTD.)
S.K.I.L.L. - Special Force 2 (x32 Version: - )
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sony PC Companion 2.10.174 (x32 Version: 2.10.174 - Sony)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
SUPER © v2012.build.54 (Nov 18, 2012) Version v2012.build.54 (x32 Version: v2012.build.54 - eRightSoft)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (x32 Version: 6.0.7.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TeamViewer 8 (x32 Version: 8.0.16447 - TeamViewer)
The KMPlayer (remove only) (x32 Version: 3.4.0.59 - KMP Media co., Ltd)
Torchlight II (x32 Version: - White Rabbit Interactive)
UltraBrowser a9699 (x32 Version: - )
Unity Web Player (HKCU Version: - Unity Technologies ApS)
Uplay (x32 Version: 2.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1 - AVG Technologies)
VLC media player 2.0.7 (x32 Version: 2.0.7 - VideoLAN)
Warframe (x32 Version: 1.0.0 - Digital Extremes)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinPcap 4.1.2 (x32 Version: 4.1.0.2001 - CACE Technologies)
WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH)
Wizard101(DE) (HKCU Version: - Gameforge 4D GmbH)
Yahoo! Detect (x32 Version: - )
==================== Restore Points =========================
02-01-2014 17:34:37 DirectX wurde installiert
02-01-2014 19:16:42 DirectX wurde installiert
05-01-2014 18:00:25 Windows-Sicherung
06-01-2014 17:51:03 Installed SpyHunter
06-01-2014 18:06:48 Removed SpyHunter
==================== Hosts content: ==========================
2009-07-14 03:34 - 2013-10-08 14:07 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {0DB23BE4-0C53-49DA-B4F0-AD2B863637C7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {105C1330-4884-479A-9BB0-A2DBAE0DCBF1} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe
Task: {16263262-3287-42E4-85D7-D97DAA22E5D3} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {1DD67045-EC04-4539-AD1A-6950E3DF6E58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {1EF6088F-1628-41B9-A938-DFE84E1A7963} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {35B9714F-50BD-4FC5-9865-016E945B8011} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {43CFFD60-F0B9-438D-B886-201C309A6EB9} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-04-17] ()
Task: {50AC7DA6-B8A4-4946-B07A-E0080C0E6779} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {5BC53EA3-34C0-4D7F-9D1C-2D48D08F06F2} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {705CBE7F-B005-4B7C-8791-1604B0D961B6} - \DSite No Task File
Task: {76B6623B-E1D2-41F2-AB9E-559D3E3D19B1} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3609988531-2309053988-1203174479-1000 => C:\Program Files (x86)\real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {8330703B-DDA1-4D8F-8FF9-344E6E4908E2} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3609988531-2309053988-1203174479-1000 => C:\Program Files (x86)\real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {83F59093-ED97-470E-AB1D-BD40FAE803E2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3609988531-2309053988-1203174479-1000 => C:\Program Files (x86)\real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {96F43D98-A158-4CA3-8BCC-66F7602FE630} - \QtraxPlayer No Task File
Task: {975B7D05-8F1D-4ECA-B74D-321593580621} - \Omiga Plus RunAsStdUser No Task File
Task: {A2B00D73-DF6C-443C-B6D4-C22E94DC5D93} - \DealPly No Task File
Task: {A613B2DE-5CB7-4834-803A-28CCAC8D12C2} - System32\Tasks\XboxStatTask => C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [2007-09-26] (Microsoft Corporation)
Task: {C2121C3C-139E-4283-9F2E-CC408A5E8820} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {C2AF3C1A-6EE3-47F5-8EBB-976FEFE50159} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\MouseKeyboardCenter.exe [2013-05-13] (Microsoft)
Task: {D6DEAF8A-E379-4936-880D-0A32CC04D990} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {DF8B502D-DE89-4BCF-909A-192DED27FB87} - System32\Tasks\{C4081544-C8B6-4464-9CAF-820D662CD7CF} => C:\Program Files (x86)\8BallClub\GameDirector.exe
Task: {EA9C6411-96FB-4656-80FA-BF4D073BA935} - System32\Tasks\WpsUpdateTask_Panti => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe [2013-06-03] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {F382C6BC-38B1-452C-9F50-7003CA1F39A2} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3609988531-2309053988-1203174479-1000 => C:\Program Files (x86)\real\RealUpgrade\realupgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Panti.job => C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe
==================== Loaded Modules (whitelisted) =============
2012-11-29 15:45 - 2013-11-11 16:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-08-17 20:39 - 2013-06-16 09:22 - 01310136 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
2012-08-17 20:38 - 2012-08-17 20:38 - 00479160 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2012-11-28 21:14 - 2012-10-22 11:15 - 01277952 ____N () C:\Program Files (x86)\PANDORA.TV\PanService\avformat-53.dll
2012-11-28 21:14 - 2012-07-09 17:57 - 02090496 ____N () C:\Program Files (x86)\PANDORA.TV\PanService\avcodec-53.dll
2012-11-28 21:14 - 2011-12-06 16:19 - 00133632 ____N () C:\Program Files (x86)\PANDORA.TV\PanService\avutil-51.dll
2012-11-28 21:14 - 2012-03-23 10:07 - 00224768 ____N () C:\Program Files (x86)\PANDORA.TV\PanService\libupnp.dll
2013-12-23 13:15 - 2013-12-23 13:15 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-12-11 09:38 - 2013-12-11 09:38 - 16242056 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
2013-06-27 12:33 - 2013-05-02 13:17 - 00088064 _____ () C:\Program Files (x86)\GameforgeLive\libgcc_s_sjlj-1.dll
2013-06-27 12:33 - 2013-05-02 13:17 - 00863744 _____ () C:\Program Files (x86)\GameforgeLive\libstdc++-6.dll
2013-02-16 10:30 - 2013-05-02 13:17 - 01765301 _____ () C:\Program Files (x86)\GameforgeLive\libgcrypt-11.dll
2013-02-16 10:30 - 2013-05-02 13:17 - 00126959 _____ () C:\Program Files (x86)\GameforgeLive\libgpg-error-0.dll
2013-06-27 12:33 - 2013-08-19 14:23 - 00530432 _____ () C:\Program Files (x86)\GameforgeLive\log4qt.dll
2013-02-16 10:30 - 2013-09-10 17:58 - 00141312 _____ () C:\Program Files (x86)\GameforgeLive\qjson.dll
2014-01-02 13:27 - 2013-08-27 16:25 - 00230752 ____N () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\S.K.I.L.L\PATCHW32.dll
2014-01-02 13:27 - 2013-08-27 16:25 - 00294912 ____N () C:\Program Files (x86)\GameforgeLive\Games\DEU_deu\S.K.I.L.L\dlengine.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\Panti:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\Templates:gs5sys
AlternateDataStreams: C:\ProgramData\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\Panti\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\Panti\Cookies:gs5sys
AlternateDataStreams: C:\Users\Panti\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\Panti\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\Panti\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\Panti\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\Panti\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\Panti\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\Panti\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/07/2014 09:00:51 AM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (01/06/2014 10:56:16 PM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (01/06/2014 07:06:44 PM) (Source: Application Hang) (User: )
Description: Programm SpyHunter4.exe, Version 4.16.5.4290 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1ac0
Startzeit: 01cf0b082290bae0
Endzeit: 6
Anwendungspfad: C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
Berichts-ID: 3d3cd841-76fd-11e3-8804-485b3960e811
Error: (01/06/2014 00:17:03 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
Error: (01/06/2014 09:47:16 AM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (01/05/2014 05:53:44 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
Error: (01/05/2014 09:32:04 AM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (01/04/2014 10:23:33 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108
Error: (01/04/2014 00:51:29 PM) (Source: Application Hang) (User: )
Description: Programm mbam.exe, Version 1.75.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: fa8
Startzeit: 01cf0940c7809f30
Endzeit: 60000
Anwendungspfad: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
Berichts-ID: 4dbac381-7536-11e3-8f6a-485b3960e811
Error: (01/04/2014 10:23:31 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
System errors:
=============
Error: (01/07/2014 08:59:46 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prodrv06
prohlp02
prosync1
sfhlp01
Error: (01/07/2014 08:59:13 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "4game-service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/07/2014 08:58:57 AM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\prodrv06.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/06/2014 10:55:03 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prodrv06
prohlp02
prosync1
sfhlp01
Error: (01/06/2014 10:54:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "4game-service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/06/2014 10:54:23 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\prodrv06.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/06/2014 09:46:04 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prodrv06
prohlp02
prosync1
sfhlp01
Error: (01/06/2014 09:45:37 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "4game-service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/06/2014 09:45:22 AM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\prodrv06.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/05/2014 09:30:55 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
prodrv06
prohlp02
prosync1
sfhlp01
Microsoft Office Sessions:
=========================
Error: (01/07/2014 09:00:51 AM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/06/2014 10:56:16 PM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/06/2014 07:06:44 PM) (Source: Application Hang)(User: )
Description: SpyHunter4.exe4.16.5.42901ac001cf0b082290bae06C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe3d3cd841-76fd-11e3-8804-485b3960e811
Error: (01/06/2014 00:17:03 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
Error: (01/06/2014 09:47:16 AM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2014 05:53:44 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
Error: (01/05/2014 09:32:04 AM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/04/2014 10:23:33 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 90080108
Error: (01/04/2014 00:51:29 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.75.0.1fa801cf0940c7809f3060000C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe4dbac381-7536-11e3-8f6a-485b3960e811
Error: (01/04/2014 10:23:31 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
CodeIntegrity Errors:
===================================
Date: 2014-01-06 22:10:47.163
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-06 22:10:47.161
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-06 22:10:47.160
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-06 20:14:46.616
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-06 20:14:46.615
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-01-06 20:14:46.613
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-25 21:23:50.983
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-25 21:23:50.982
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-25 21:23:50.980
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-25 21:23:50.961
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 54%
Total physical RAM: 3071.29 MB
Available physical RAM: 1408.65 MB
Total Pagefile: 6140.76 MB
Available Pagefile: 4143.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.75 GB) (Free:202.4 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Serious Sam HD) (CDROM) (Total:1.01 GB) (Free:0 GB) UDF
Drive e: (BORDERLANDS2) (CDROM) (Total:7.04 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 07530752)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================
--- --- --- |
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
