Hi, so hier ist die FRST datei:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-05-2014
Ran by Sebastian (administrator) on SEBASTIAN-PC on 02-05-2014 12:11:19
Running from C:\Users\Sebastian\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(ATI Technologies Inc.) C:\WINDOWS\System32\Ati2evxx.exe
(IDT, Inc.) C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\stacsv.exe
(Microsoft Corporation) C:\WINDOWS\System32\SLsvc.exe
(ATI Technologies Inc.) C:\WINDOWS\System32\Ati2evxx.exe
(Hewlett-Packard Company) C:\WINDOWS\System32\hpservice.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Andrea Electronics Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\AEstSrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
() C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
() C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
() C:\WINDOWS\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
() C:\Program Files\3DataManager\WTGService.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\tv_w32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\HP\QuickPlay\QPService.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Oleansoft) C:\Program Files\Oleansoft\Hc\servemp.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(PC Tools) C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Google Inc.) C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Program Files\3DataManager\3DataManager_Launcher.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\WINDOWS\System32\vdsldr.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [QPService] => C:\Program Files\HP\QuickPlay\QPService.exe [468264 2008-05-14] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [OnScreenDisplay] => C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [554288 2007-11-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Health Check Scheduler] => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [70912 2008-04-15] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2007-11-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40368 2011-08-31] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-29] (Adobe Systems Incorporated)
HKLM\...\Run: [HCEmployee] => C:\Program Files\Oleansoft\Hc\servemp.exe [1768960 2012-03-15] (Oleansoft)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.)
HKLM\...\Run: [SSDMonitor] => C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [442467 2008-06-27] (IDT, Inc.)
HKLM\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-19\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [Google Update] => C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-07-29] (Google Inc.)
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [uTorrent] => "C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [msnmsgr] => "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [TomTomHOME.exe] => C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-03-22] (TomTom)
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {63deae6a-ba04-11e0-aa8b-00238b5493bf} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {63deaec5-ba04-11e0-aa8b-00238b5493bf} - I:\.\PROGs\PSMenu\psmenu.exe
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {63deaec8-ba04-11e0-aa8b-00238b5493bf} - H:\LaunchU3.exe -a
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {82d234e3-d4b8-11e0-9731-00238b5493bf} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {85dd1a44-ef4f-11e1-b3f4-a7ee24eedb21} - G:\LGAutoRun.exe
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {c85b9818-ba0a-11e0-9301-00238b5493bf} - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {c988eabc-6e5e-11e1-a768-00238b5493bf} - F:\Startme.exe
HKU\S-1-5-21-4023373234-2384236398-3865259860-1000\...\MountPoints2: {f366729d-cb04-11e0-a312-00238b5493bf} - F:\.\Autorun.exe AUTORUN=1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk
ShortcutTarget: Launcher.lnk -> C:\Program Files\3DataManager\3DataManager_Launcher.exe ()
Startup: C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6600.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6600.lnk -> (No File)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_at&c=83&bd=Pavilion&pf=cnnb
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_at&c=83&bd=Pavilion&pf=cnnb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_at&c=83&bd=Pavilion&pf=cnnb
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {15204C01-24AB-4706-A50A-E2D1EA05EC20} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM - {52085B84-AE79-445F-B90E-06703AEF19C0} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1134&query={searchTerms}&invocationType=tb50hpcnnbie7-de-at
SearchScopes: HKLM - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZKchr999&ptb=qONSx5NNgXu4M.GSblqhZA&ind=2011100511&ptnrS=ZKchr999&si=&n=77def55f&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://isearch.avg.com/search?cid={FF819342-80CD-4FB8-AC3C-ECE0E10A6E38}&mid=4c638827cfc547d0be4d58c55779782c-c8601a5cb29debde0409254831dae564b9e8986d&lang=en&ds=yu012&pr=sa&d=2012-07-29 22:52:21&v=12.1.0.21&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {15204C01-24AB-4706-A50A-E2D1EA05EC20} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - {52085B84-AE79-445F-B90E-06703AEF19C0} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1134&query={searchTerms}&invocationType=tb50hpcnnbie7-de-at
SearchScopes: HKCU - {56256A51-B582-467e-B8D4-7786EDA79AE0} URL = hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=ZKchr999&ptb=qONSx5NNgXu4M.GSblqhZA&ind=2011100511&ptnrS=ZKchr999&si=&n=77def55f&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://isearch.avg.com/search?cid={FF819342-80CD-4FB8-AC3C-ECE0E10A6E38}&mid=4c638827cfc547d0be4d58c55779782c-c8601a5cb29debde0409254831dae564b9e8986d&lang=en&ds=yu012&pr=sa&d=2012-07-29 22:52:21&v=12.1.0.21&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=bs&qkw={searchTerms}&tbid=80772&lng=de
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll No File
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\s4onctcs.default
FF user.js: detected! => C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\s4onctcs.default\user.js
FF DefaultSearchEngine: AVG Secure Search
FF SearchEngineOrder.1: Web Search
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.at/
FF Keyword.URL: hxxp://www.searchqu.com/web?src=ffb&appid=119&systemid=406&sr=0&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.5.1 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Sebastian\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Sebastian\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\s4onctcs.default\searchplugins\SearchResults.xml
FF Extension: Yontoo - C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\s4onctcs.default\Extensions\plugin@yontoo.com [2012-11-16]
FF Extension: Greasemonkey - C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\s4onctcs.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2012-08-24]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-12-13]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\coFFPlgn\ []
FF HKLM\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.6.0.43\coFFFw\
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\IPSFFPlgn\
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\IPSFFPlgn\ []
Chrome:
=======
CHR HomePage: https://isearch.avg.com/?cid={FF819342-80CD-4FB8-AC3C-ECE0E10A6E38}&mid=4c638827cfc547d0be4d58c55779782c-c8601a5cb29debde0409254831dae564b9e8986d&lang=en&ds=yu012&pr=sa&d=2012-07-29 22:52:21&v=12.1.0.21&sap=hp
CHR RestoreOnStartup: "hxxp://www.google.at/"
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Sebastian\AppData\Local\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Sebastian\AppData\Local\Google\Chrome\Application\27.0.1453.110\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Sebastian\AppData\Local\Google\Chrome\Application\27.0.1453.110\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (WildTangent Games App Presence Detector) - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll No File
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Sebastian\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (TV) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2012-01-02]
CHR Extension: (Turn Off the Lights) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2012-01-02]
CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-18]
CHR Extension: (Google-Suche) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-18]
CHR Extension: (Stylish) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2012-01-09]
CHR Extension: (Air Hockey) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcchbhjknakkndfpdbapmdkhbbgojkno [2012-01-02]
CHR Extension: (Facebook Sidebar Chat Reversion (D3C0DAZ)) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmbidmedmfiejenjmjidhknmgklgdjof [2011-08-02]
CHR Extension: (Skype Click to Call) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-07-30]
CHR Extension: (Click to activate/deactivate ProxTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkdbaehcjcomcnnjhlmnfddpgoafpcko [2012-01-02]
CHR Extension: (Norton Identity Protection) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2012-08-14]
CHR Extension: (Facebook-Chat) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngnnppemaakcbclanmkpaimdbjaaepdg [2011-07-30]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2012-01-02]
CHR Extension: (TV) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiodjcfboomhnbbmoimodpahebopdagm [2012-01-07]
CHR Extension: (Sand) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdknckljjbdpkhgmcokoahffbdinafbo [2012-01-02]
CHR Extension: (Google Mail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-18]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx [2013-06-12]
CHR StartMenuInternet: Google Chrome - C:\Users\Sebastian\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard)
R2 NIS; C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
R2 QPCapSvc; C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe [292248 2008-05-14] ()
R2 QPSched; C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe [116112 2008-05-14] ()
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [341328 2008-03-26] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe [221273 2008-06-27] (IDT, Inc.)
R2 WTGService; C:\Program Files\3DataManager\WTGService.exe [333264 2010-07-08] ()
==================== Drivers (Whitelisted) ====================
R2 acedrv11; C:\Windows\system32\drivers\acedrv11.sys [277544 2009-01-19] (Protect Software GmbH)
R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [170000 2008-04-15] (AMD Technologies Inc.)
R0 Amddfltr; C:\Windows\System32\DRIVERS\Amddfltr.sys [15416 2008-01-07] (Advanced Micro Devices)
R1 BHDrvx86; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130715.001\BHDrvx86.sys [1002072 2013-05-31] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NIS\1404000.028\ccSetx86.sys [134744 2013-04-16] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376480 2012-11-02] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [106656 2013-08-12] (Symantec Corporation)
S3 HpqRemHid; C:\Windows\System32\DRIVERS\HpqRemHid.sys [7168 2007-07-11] (Hewlett-Packard Development Company, L.P.)
R1 IDSVix86; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\IPSDefs\20130813.001\IDSvix86.sys [386720 2013-05-23] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130815.022\NAVENG.SYS [93272 2013-08-12] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130815.022\NAVEX15.SYS [1611992 2013-08-12] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NIS\1404000.028\SRTSP.SYS [603224 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NIS\1404000.028\SRTSPX.SYS [32344 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NIS\1404000.028\SYMDS.SYS [367704 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NIS\1404000.028\SYMEFA.SYS [934488 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142496 2013-06-19] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [36512 2013-03-05] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NIS\1404000.028\Ironx86.SYS [175264 2013-03-05] (Symantec Corporation)
R1 SYMTDIv; C:\Windows\System32\Drivers\NIS\1404000.028\SYMTDIV.SYS [352344 2013-04-25] (Symantec Corporation)
S3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA.sys [291200 2006-08-09] (eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM.sys [28160 2006-08-09] (eMPIA Technology, Inc.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 XDva389; \??\C:\Windows\system32\XDva389.sys [X]
S3 XDva391; \??\C:\Windows\system32\XDva391.sys [X]
S3 XDva393; \??\C:\Windows\system32\XDva393.sys [X]
S3 XDva397; \??\C:\Windows\system32\XDva397.sys [X]
S3 XDva398; \??\C:\Windows\system32\XDva398.sys [X]
S3 XDva399; \??\C:\Windows\system32\XDva399.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-02 12:06 - 2014-05-02 12:11 - 00036571 _____ () C:\Users\Sebastian\Desktop\Addition.txt
2014-05-02 12:05 - 2014-05-02 12:11 - 00028979 _____ () C:\Users\Sebastian\Desktop\FRST.txt
2014-05-02 12:04 - 2014-05-01 15:39 - 01050624 _____ (Farbar) C:\Users\Sebastian\Desktop\FRST.exe
2014-05-01 16:43 - 2014-05-02 12:11 - 00000000 ____D () C:\FRST
2014-04-24 18:18 - 2014-03-08 01:51 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-24 18:18 - 2014-03-08 01:20 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-24 18:18 - 2014-03-08 01:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-24 18:18 - 2014-03-08 01:03 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-24 18:18 - 2014-03-08 01:02 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-24 18:18 - 2014-03-08 01:02 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-24 18:18 - 2014-03-08 01:00 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-24 18:18 - 2014-03-08 00:59 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-24 18:18 - 2014-03-08 00:57 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-24 18:18 - 2014-03-08 00:57 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-24 18:18 - 2014-03-08 00:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-24 18:18 - 2014-03-08 00:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-24 18:18 - 2014-03-08 00:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-24 18:18 - 2014-03-08 00:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-24 18:18 - 2014-03-08 00:52 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-24 18:18 - 2014-03-08 00:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-24 17:33 - 2014-04-24 17:33 - 00001788 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\ProgramData\Visan
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\Program Files\HP Photo Creations
2014-04-24 17:17 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-04-24 17:17 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-04-24 17:17 - 2013-12-05 04:12 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-04-24 17:17 - 2013-10-30 04:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-04-24 17:17 - 2013-10-30 03:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-04-24 17:17 - 2013-10-30 02:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-04-24 17:15 - 2014-02-06 03:56 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-24 17:15 - 2013-10-11 04:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-04-24 17:15 - 2013-10-11 04:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-04-24 17:15 - 2013-10-11 04:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-04-24 17:15 - 2013-10-11 02:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-04-24 17:15 - 2013-10-11 02:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-04-24 17:15 - 2013-10-03 14:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-04-24 17:15 - 2013-10-03 14:45 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-04-24 17:14 - 2013-10-22 09:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-04-24 17:14 - 2013-10-11 04:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-04-24 17:14 - 2013-10-11 04:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-04-24 17:14 - 2013-10-11 02:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-04-24 17:13 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-04-24 17:08 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-04-23 18:13 - 2014-04-23 18:13 - 00000000 ____D () C:\Users\Sebastian\{fe5da709-e25a-4a5d-a955-dfe7c87458c8}
==================== One Month Modified Files and Folders =======
2014-05-02 12:11 - 2014-05-02 12:06 - 00036571 _____ () C:\Users\Sebastian\Desktop\Addition.txt
2014-05-02 12:11 - 2014-05-02 12:05 - 00028979 _____ () C:\Users\Sebastian\Desktop\FRST.txt
2014-05-02 12:11 - 2014-05-01 16:43 - 00000000 ____D () C:\FRST
2014-05-02 12:06 - 2006-11-02 12:33 - 01596296 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-02 11:53 - 2011-07-29 17:59 - 01358422 _____ () C:\Windows\WindowsUpdate.log
2014-05-02 11:50 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-02 11:42 - 2013-05-31 20:23 - 00000280 _____ () C:\Windows\Tasks\RMAutoUpdate.job
2014-05-02 11:41 - 2013-05-31 13:12 - 00000000 ____D () C:\Program Files\PC Tools Registry Mechanic
2014-05-02 11:41 - 2012-05-07 20:23 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-02 11:41 - 2011-07-29 18:23 - 00000269 _____ () C:\Users\Public\Documents\hpqp.ini
2014-05-02 11:40 - 2011-07-29 20:38 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000UA.job
2014-05-02 11:39 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-02 11:39 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-02 11:38 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-02 11:38 - 2006-11-02 14:47 - 00380792 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-02 11:25 - 2006-11-02 15:01 - 00032588 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-02 11:23 - 2012-05-07 20:23 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-02 11:20 - 2012-04-17 06:27 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-01 23:05 - 2012-08-14 11:22 - 00000000 ____D () C:\Windows\system32\Drivers\NIS
2014-05-01 19:00 - 2013-05-31 20:23 - 00000400 _____ () C:\Windows\system32\AppLog.log
2014-05-01 19:00 - 2013-05-31 13:13 - 00000280 _____ () C:\Windows\Tasks\RMSchedule.job
2014-05-01 18:14 - 2012-04-17 06:27 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-01 18:14 - 2011-07-30 09:56 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-01 18:12 - 2011-07-29 20:41 - 00002054 _____ () C:\Users\Sebastian\Desktop\Google Chrome.lnk
2014-05-01 18:12 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-05-01 17:40 - 2011-07-29 20:37 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000Core.job
2014-05-01 15:39 - 2014-05-02 12:04 - 01050624 _____ (Farbar) C:\Users\Sebastian\Desktop\FRST.exe
2014-05-01 15:24 - 2012-04-04 09:32 - 00000680 _____ () C:\Users\Sebastian\AppData\Local\d3d9caps.dat
2014-04-24 19:30 - 2011-07-29 18:53 - 00102424 _____ () C:\Users\Sebastian\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-24 19:24 - 2008-01-21 04:47 - 01070286 _____ () C:\Windows\PFRO.log
2014-04-24 19:19 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-04-24 17:58 - 2012-03-01 07:50 - 00000000 ____D () C:\ProgramData\Autodesk
2014-04-24 17:58 - 2012-03-01 07:50 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-04-24 17:58 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Help
2014-04-24 17:49 - 2011-08-12 19:39 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\HpUpdate
2014-04-24 17:43 - 2013-07-19 07:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-24 17:33 - 2014-04-24 17:33 - 00001788 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\ProgramData\Visan
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-04-24 17:33 - 2014-04-24 17:33 - 00000000 ____D () C:\Program Files\HP Photo Creations
2014-04-24 17:33 - 2008-05-25 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-04-23 18:13 - 2014-04-23 18:13 - 00000000 ____D () C:\Users\Sebastian\{fe5da709-e25a-4a5d-a955-dfe7c87458c8}
2014-04-23 18:13 - 2011-07-29 18:49 - 00000000 ____D () C:\Users\Sebastian
2014-04-23 18:09 - 2011-09-13 15:19 - 00000375 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-04-23 18:01 - 2012-08-27 10:07 - 00000000 ____D () C:\ProgramData\Birdstep Technology
2014-04-23 18:01 - 2008-05-25 02:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
Some content of TEMP:
====================
C:\Users\Sebastian\AppData\Local\Temp\AcDeltree.exe
C:\Users\Sebastian\AppData\Local\Temp\AdobeUpdater12345.exe
C:\Users\Sebastian\AppData\Local\Temp\AskSLib.dll
C:\Users\Sebastian\AppData\Local\Temp\avguidx.dll
C:\Users\Sebastian\AppData\Local\Temp\AVG_toolbar.exe
C:\Users\Sebastian\AppData\Local\Temp\BandooV6.exe
C:\Users\Sebastian\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Sebastian\AppData\Local\Temp\FlashPlayerUpdate.exe
C:\Users\Sebastian\AppData\Local\Temp\Gchipsbank.dll
C:\Users\Sebastian\AppData\Local\Temp\GLoginTool.exe
C:\Users\Sebastian\AppData\Local\Temp\GUR3ED5.exe
C:\Users\Sebastian\AppData\Local\Temp\Hchipsbank.dll
C:\Users\Sebastian\AppData\Local\Temp\HLoginTool.exe
C:\Users\Sebastian\AppData\Local\Temp\HPQSi.exe
C:\Users\Sebastian\AppData\Local\Temp\installhelper.dll
C:\Users\Sebastian\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Sebastian\AppData\Local\Temp\jre-7u5-windows-i586-iftw.exe
C:\Users\Sebastian\AppData\Local\Temp\Kchipsbank.dll
C:\Users\Sebastian\AppData\Local\Temp\KLoginTool.exe
C:\Users\Sebastian\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Sebastian\AppData\Local\Temp\mfc80.dll
C:\Users\Sebastian\AppData\Local\Temp\mfc80u.dll
C:\Users\Sebastian\AppData\Local\Temp\mfcm80.dll
C:\Users\Sebastian\AppData\Local\Temp\mfcm80u.dll
C:\Users\Sebastian\AppData\Local\Temp\msvcm80.dll
C:\Users\Sebastian\AppData\Local\Temp\msvcp80.dll
C:\Users\Sebastian\AppData\Local\Temp\msvcr80.dll
C:\Users\Sebastian\AppData\Local\Temp\oi_{F6313134-7203-4567-9D00-2FE3255CF3E1}.exe
C:\Users\Sebastian\AppData\Local\Temp\openssl.exe
C:\Users\Sebastian\AppData\Local\Temp\OSU.exe
C:\Users\Sebastian\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
C:\Users\Sebastian\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sebastian\AppData\Local\Temp\smcr.exe
C:\Users\Sebastian\AppData\Local\Temp\SRAssetsHelper.dll
C:\Users\Sebastian\AppData\Local\Temp\tnsetup.exe
C:\Users\Sebastian\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Sebastian\AppData\Local\Temp\uninst.exe
C:\Users\Sebastian\AppData\Local\Temp\UNINSTALL.exe
C:\Users\Sebastian\AppData\Local\Temp\Uninstaller.exe
C:\Users\Sebastian\AppData\Local\Temp\UninstallerGer.dll
C:\Users\Sebastian\AppData\Local\Temp\utt5B09.tmp.exe
C:\Users\Sebastian\AppData\Local\Temp\utt7554.tmp.exe
C:\Users\Sebastian\AppData\Local\Temp\utt94D0.tmp.exe
C:\Users\Sebastian\AppData\Local\Temp\uttF00A.tmp.exe
C:\Users\Sebastian\AppData\Local\Temp\WtgDriverInstallX.dll
C:\Users\Sebastian\AppData\Local\Temp\WTGXMLUtil.dll
C:\Users\Sebastian\AppData\Local\Temp\zipsetup.exe
C:\Users\Sebastian\AppData\Local\Temp\_isF324.exe
C:\Users\Sebastian\AppData\Local\Temp\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}_NAV_30876.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-02 11:44
==================== End Of Log ============================
--- --- ---
Und hier ist di Addition datei: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-05-2014
Ran by Sebastian at 2014-05-02 12:11:51
Running from C:\Users\Sebastian\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
==================== Installed Programs ======================
3DataManager (HKLM\...\3DataManager) (Version: 3.0 - 3DataManager)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
Adobe Reader 8.3.1 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A83000000003}) (Version: 8.3.1 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}) (Version: 10.2.0.023 - Adobe Systems, Inc.)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Alfons Lernwelt (HKLM\...\Alfons Lernwelt) (Version: - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
AMD Driver Support for HP 3D DriverGuard (Version: 5.1.0000.0066 - Advanced Micro Devices, Inc.) Hidden
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{80C2AD19-97A2-C829-38DE-5FD5B47F122B}) (Version: 3.0.664.0 - ATI Technologies, Inc.)
Catalyst Control Center - Branding (HKLM\...\{3FA93E4C-CB3B-4B25-B091-9DB0FCC56A74}) (Version: 1.00.0000 - ATI)
Catalyst Control Center Core Implementation (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Czech (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Danish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Dutch (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Finnish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization French (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization German (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Greek (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Hungarian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Italian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Japanese (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Korean (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Norwegian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Polish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Portuguese (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Russian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Spanish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Swedish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Thai (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Turkish (Version: 2008.0328.2322.39969 - ATI) Hidden
CCC Help Chinese Standard (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Czech (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Danish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Dutch (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help English (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Finnish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help French (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help German (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Greek (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Hungarian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Italian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Japanese (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Korean (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Norwegian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Polish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Portuguese (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Russian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Spanish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Swedish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Thai (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Turkish (Version: 2008.0328.2321.39969 - ATI) Hidden
ccc-core-static (Version: 2008.0328.2322.39969 - Ihr Firmenname) Hidden
ccc-utility (Version: 2008.0328.2322.39969 - ATI) Hidden
Cisco EAP-FAST Module (HKLM\...\{415B2719-AD3A-4944-B404-C472DB6085B3}) (Version: 2.1.6 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{83770D14-21B9-44B3-8689-F7B523F94560}) (Version: 1.0.12 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}) (Version: 1.0.13 - Cisco Systems, Inc.)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
CyberLink DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.5.1519 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2029 - CyberLink Corp.)
CyberLink YouCam (Version: 2.0.2029 - CyberLink Corp.) Hidden
Faszination Sprache 1 NEU. Trainingsprogramm (HKLM\...\Faszination Sprache 1 NEU. Trainingsprogramm_is1) (Version: 1.2 - VERITAS Verlags- und Handelsges.m.b.H. & Co. OHG)
Google Chrome (HKCU\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Earth Plug-in (HKLM\...\{79361740-EAE3-11E2-9911-B8AC6F98CCE3}) (Version: 7.1.1.1888 - Google)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
HP Active Support Library (Version: 3.1.4.1 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (HKLM\...\{B16DA0F8-26BC-4FFC-9363-1D9F3E6C3E21}) (Version: 5.7.0.2630 - Hewlett-Packard)
HP Doc Viewer (HKLM\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.03.0001 - Hewlett-Packard)
HP Easy Setup - Frontend (HKLM\...\{51E5C397-0AA0-48DD-9CB6-7259AFFDFB0A}) (Version: 5.7.0.2630 - Hewlett-Packard)
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Help and Support (HKLM\...\{31216452-5540-4C96-B754-94890A63D5AB}) (Version: 2.0.10.0 - Hewlett-Packard)
HP Officejet 6500 E710a-f - Grundlegende Software für das Gerät (HKLM\...\{FBBA35E1-9449-4902-8A0F-89252C0C1407}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Officejet 6500 E710a-f Hilfe (HKLM\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard)
HP Officejet 6600 - Grundlegende Software für das Gerät (HKLM\...\{48C5B91E-E794-4179-9FBF-A9A1635B9F66}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6600 Hilfe (HKLM\...\{2FA81482-5570-4CF0-9A10-D61D2F164916}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP QuickPlay 3.7 (HKLM\...\{45D707E9-F3C4-11D9-A373-0050BAE317E1}) (Version: - )
HP QuickTouch 1.00 D2 (HKLM\...\{30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}) (Version: 1.0.9 - Hewlett-Packard)
HP Total Care Advisor (HKLM\...\{f32502b5-5b64-4882-bf61-77f23edcac4f}) (Version: 2.1.3359.2635 - Hewlett-Packard)
HP Update (HKLM\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HP User Guides 0102 (HKLM\...\{F48098CD-2D66-4861-85EC-DC1D4D09D5F9}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{A5CE7175-080D-49AC-B5A3-E7E3502428F5}) (Version: 3.00 I2 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPNetworkAssistant (Version: 1.1.70 - Hewlett-Packard.) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.5893.0 - IDT)
Java Auto Updater (Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 5 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160050}) (Version: 1.6.0.50 - Sun Microsystems, Inc.)
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005FF}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.10.04 - JMicron Technology Corp.)
JX220 (remove only) (HKLM\...\JX220) (Version: - )
LabelPrint (HKLM\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.20.2719 - CyberLink Corp.)
LightScribe System Software 1.12.33.2 (HKLM\...\{582287DA-0806-4AC0-BF19-C15E3A466034}) (Version: 1.12.33.2 - LightScribe)
Marketsplash Schnellzugriffe (HKLM\...\{7A108EBC-C9DF-4E14-93A8-42CF316F1ECF}) (Version: 1.0.1.7 - Hewlett-Packard)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 17.0.1 (x86 de) (HKLM\...\Mozilla Firefox 17.0.1 (x86 de)) (Version: 17.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 17.0.1 - Mozilla)
MSRedist (Version: 9.0.30729.4148 - Symantec Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My HP Games (HKLM\...\WildTangent hp Master Uninstall) (Version: 1.0.0.43 - WildTangent)
Norton Internet Security (HKLM\...\NIS) (Version: 20.4.0.40 - Symantec Corporation)
PC Tools Registry Mechanic 11.1 (HKLM\...\Registry Mechanic_is1) (Version: 11.1 - PC Tools)
Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.3919 - CyberLink Corp.)
PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 6.5.2719 - CyberLink Corp.)
PowerDirector (Version: 6.5.2719 - CyberLink Corp.) Hidden
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.12 - ProtectDisc Software GmbH)
ProtectSmart Hard Drive Protection (HKLM\...\{CB71A20E-B1B4-4562-81FA-33E1DBD0342F}) (Version: 3.10 A7 - Hewlett-Packard)
QuickPlay SlingPlayer 0.4.6 (HKLM\...\SlingMedia.QPSlingPlayer_is1) (Version: 0.4.6 - SlingMedia)
Skins (Version: 2008.0328.2322.39969 - ATI) Hidden
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.10.9560 - Skype Technologies S.A.)
Skype™ 5.10 (HKLM\...\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}) (Version: 5.10.116 - Skype Technologies S.A.)
Studie zur Verbesserung von HP Officejet 6500 E710a-f Produkten (HKLM\...\{01E6B88D-32B1-4848-9AC7-7E2CB093EF04}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
Studie zur Verbesserung von HP Officejet 6600 Produkten (HKLM\...\{81EFD067-B84F-423C-85BF-5CC11DFB0A3E}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TeamViewer 7 (HKLM\...\TeamViewer 7) (Version: 7.0.13989 - TeamViewer)
TomTom HOME (HKLM\...\{EC5F4C1B-F838-4CB7-8561-8F809296428B}) (Version: 2.9.5 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Office 2007 (KB934528) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}) (Version: - )
Update Installer for WildTangent Games App (Version: - WildTangent) Hidden
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WildTangent Games App (HP Games) (HKLM\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.5.31 - WildTangent)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinUtilities 10.53 Professional Edition (HKLM\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version: - YL Computing, Inc)
ZTE_1.2059.0.8 (HKLM\...\ZTE_1.2059.0.8) (Version: - )
==================== Restore Points =========================
30-09-2013 13:05:27 Geplanter Prüfpunkt
01-10-2013 07:51:42 Geplanter Prüfpunkt
02-10-2013 05:59:57 Geplanter Prüfpunkt
03-10-2013 06:15:56 Geplanter Prüfpunkt
04-10-2013 08:17:07 Geplanter Prüfpunkt
07-10-2013 05:24:31 Geplanter Prüfpunkt
08-10-2013 12:56:50 Geplanter Prüfpunkt
09-10-2013 15:38:39 Geplanter Prüfpunkt
10-10-2013 12:45:29 Geplanter Prüfpunkt
11-10-2013 04:39:37 Windows Update
12-10-2013 07:00:25 Windows Update
14-10-2013 05:14:33 Geplanter Prüfpunkt
15-10-2013 12:50:50 Geplanter Prüfpunkt
16-10-2013 12:15:24 Geplanter Prüfpunkt
17-10-2013 12:41:52 Geplanter Prüfpunkt
23-04-2014 15:59:18 Removed 3Connect
23-04-2014 16:09:57 Gerätetreiber-Paketinstallation: ZTE Incorporated USB-Controller
23-04-2014 16:10:19 Gerätetreiber-Paketinstallation: ZTE Corporation Netzwerkadapter
23-04-2014 16:11:14 Gerätetreiber-Paketinstallation: ZTE Corporation Anschlüsse (COM & LPT)
23-04-2014 16:12:30 Gerätetreiber-Paketinstallation: ZTE Corporation Modems
23-04-2014 16:13:06 Gerätetreiber-Paketinstallation: ZTE Corporation Anschlüsse (COM & LPT)
24-04-2014 14:53:48 Windows-Sicherung
24-04-2014 15:23:01 Windows Update
01-05-2014 15:06:25 Windows Update
01-05-2014 15:07:12 Windows-Sicherung
01-05-2014 16:17:19 Windows-Sicherung
01-05-2014 20:39:50 Windows Update
==================== Hosts content: ==========================
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {0B90E87B-9D30-4012-AFF6-BDD9AF686DA5} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {30A6D397-F7AC-4075-AF2D-EB3D28D64F86} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {32558C79-B066-41AB-8590-9F1E396AFAB1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-01] (Adobe Systems Incorporated)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {59E59430-38FE-43E5-AA66-34EEDAE4838D} - System32\Tasks\HPCustParticipation HP Officejet 6500 E710a-f => C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {61DB32C9-7013-499D-9C35-A4A1F68A1CD3} - System32\Tasks\RMAutoUpdate => C:\Program Files\PC Tools Registry Mechanic\SULauncher.exe [2012-08-21] (PC Tools)
Task: {69001132-5615-4AB4-9E6A-727669A39E82} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-05-07] (Google Inc.)
Task: {6A9DB1ED-A1F1-4F34-B20A-B8324612467A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000Core => C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-29] (Google Inc.)
Task: {70E89B60-CC98-43CE-AC41-4AB6E821F604} - System32\Tasks\{CFB1F019-BEF7-4FCD-BC70-D302964B8901} => Firefox.exe hxxp://ui.skype.com/ui/0/5.6.59.110/de/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled
Task: {8FD24EE8-F692-444E-BBE6-3921706DB98C} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15] (Hewlett-Packard)
Task: {97B6984E-9905-476F-9431-69147D25FF5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-05-07] (Google Inc.)
Task: {A7412CDF-6FD7-4D6D-A040-ACCC7048F1F0} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files\Norton Internet Security\Engine\20.4.0.40\SymErr.exe [2013-06-04] (Symantec Corporation)
Task: {B0DC13BA-F08A-4DC4-BD01-36A7CCAF0968} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Sebastian => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation)
Task: {B4AE886E-D294-4605-85C5-E2C4B8BC9F1F} - System32\Tasks\RMSchedule => C:\Program Files\PC Tools Registry Mechanic\RegMech.exe [2012-08-21] (PC Tools)
Task: {DF56D851-913D-4880-AE48-08082AF6DD61} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {E1D12AEA-94C8-414A-8B98-645BEF11FF40} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000UA => C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-29] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {EB9D82D6-ADEA-4D97-AEBC-E0342C8F0B32} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe [2013-06-04] (Symantec Corporation)
Task: {F19122D9-AB96-4910-BC17-D28D26215533} - System32\Tasks\HPCustParticipation HP Officejet 6600 => C:\Program Files\HP\HP Officejet 6600\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000Core.job => C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4023373234-2384236398-3865259860-1000UA.job => C:\Users\Sebastian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RMAutoUpdate.job => C:\Program Files\PC Tools Registry Mechanic\SULauncher.exe
Task: C:\Windows\Tasks\RMSchedule.job => C:\Program Files\PC Tools Registry Mechanic\RegMech.exe
==================== Loaded Modules (whitelisted) =============
2008-05-25 02:45 - 2008-05-14 22:56 - 00292248 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
2008-05-25 02:45 - 2008-05-14 22:56 - 00259480 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll
2008-05-25 02:45 - 2008-05-14 22:56 - 00038184 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvcps.dll
2008-05-25 02:45 - 2008-05-14 22:56 - 00116112 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
2008-05-25 02:45 - 2008-05-14 22:56 - 00120216 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll
2008-05-25 02:45 - 2008-05-14 22:56 - 00345384 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll
2008-05-25 03:59 - 2008-03-26 15:26 - 00341328 _____ () C:\Windows\SMINST\BLService.exe
2008-05-25 03:59 - 2006-09-13 13:54 - 00081920 _____ () C:\Windows\SMINST\STString.dll
2008-05-25 03:59 - 2007-11-14 15:46 - 00126976 _____ () C:\Windows\SMINST\STWmiM.dll
2008-05-25 03:52 - 2007-01-09 11:25 - 00272024 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2012-08-27 10:15 - 2010-07-08 14:18 - 00333264 ____N () C:\Program Files\3DataManager\WTGService.exe
2013-06-12 07:57 - 2012-05-30 08:51 - 00699280 ____R () C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\wincfi39.dll
2008-03-28 11:19 - 2008-03-28 11:19 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2007-07-12 12:55 - 2007-07-12 12:55 - 01581056 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll
2007-08-14 12:59 - 2007-08-14 12:59 - 06365184 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll
2007-07-12 12:55 - 2007-07-12 12:55 - 00131072 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2012-08-27 10:15 - 2010-07-27 12:01 - 00484816 ____N () C:\Program Files\3DataManager\3DataManager_Launcher.exe
2008-05-25 02:45 - 2008-05-14 22:56 - 00066856 _____ () C:\Program Files\HP\QuickPlay\Kernel\Common\MCEMediaStatus.dll
2008-05-25 02:58 - 2008-04-11 09:04 - 00685360 _____ () C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2008-02-27 14:48 - 2008-02-27 14:48 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: isatap.{2A2D2C36-F345-403A-83A2-07B61DFBE6CE}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Realtek RTL8168/8111-Familie-PCI-E-Gigabit-Ethernet-NIC (NDIS 6.0)
Description: Realtek RTL8168/8111-Familie-PCI-E-Gigabit-Ethernet-NIC (NDIS 6.0)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8169
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/02/2014 11:39:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/01/2014 09:35:05 PM) (Source: Application Error) (User: )
Description: Fehlerhafte Anwendung rundll32.exe, Version 6.0.6000.16386, Zeitstempel 0x4549b0e1, fehlerhaftes Modul dfdts.dll, Version 6.0.6001.18000, Zeitstempel 0x4791a675, Ausnahmecode 0xc0000409, Fehleroffset 0x00006ec9,
Prozess-ID 0x1658, Anwendungsstartzeit rundll32.exe0.
Error: (05/01/2014 06:09:16 PM) (Source: Windows Backup) (User: )
Description: Die Dateisicherung ist fehlgeschlagen. Fehler: Die Syntax für den Dateinamen, Verzeichnisnamen oder die Datenträgerbezeichnung ist falsch. (0x8007007B)
Error: (05/01/2014 05:06:22 PM) (Source: Windows Backup) (User: )
Description: Die Dateisicherung ist fehlgeschlagen. Fehler: Der neueste Sicherungssatz wurde nicht gefunden. Stellen Sie sicher, dass auf den Sicherungssatz zugegriffen werden kann und dass er nicht gelöscht wurde. Erstellen Sie andernfalls eine neue Sicherung. (0x8100000A)
Error: (05/01/2014 05:05:03 PM) (Source: Windows Backup) (User: )
Description: Die Dateisicherung ist fehlgeschlagen. Fehler: Der neueste Sicherungssatz wurde nicht gefunden. Stellen Sie sicher, dass auf den Sicherungssatz zugegriffen werden kann und dass er nicht gelöscht wurde. Erstellen Sie andernfalls eine neue Sicherung. (0x8100000A)
Error: (05/01/2014 05:03:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/01/2014 03:24:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/01/2014 03:19:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/24/2014 08:56:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (04/24/2014 07:27:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (05/02/2014 00:11:54 PM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie chkdsk auf Volume "\Device\HarddiskVolumeShadowCopy28" aus.
Error: (05/02/2014 00:10:05 PM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie chkdsk auf Volume "\Device\HarddiskVolumeShadowCopy28" aus.
Error: (05/02/2014 00:06:19 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "D:" wurden aufgrund von einem fehlgeschlagenen Rechenvorgang bezüglich verfügbarem Speicher abgebrochen.
Error: (05/02/2014 11:39:35 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (05/02/2014 11:20:19 AM) (Source: Dhcp) (User: )
Description: Die IP-Adresslease 192.168.1.106 für die Netzwerkkarte mit der Netzwerkadresse 00242B18A139 wurde durch den DHCP-Server 192.168.1.1 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).
Error: (05/01/2014 08:31:05 PM) (Source: VDS Dynamic Provider) (User: )
Description: Der Anbieter konnte Benachrichtigungen nicht speichern, die vom Treiber stammen. Der Dienst für virtuelle Datenträger muss neu gestartet werden. hr=80042505
Error: (05/01/2014 06:09:10 PM) (Source: Service Control Manager) (User: )
Description: 30000NIS
Error: (05/01/2014 06:08:38 PM) (Source: Service Control Manager) (User: )
Description: 30000NIS
Error: (05/01/2014 05:05:40 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1
Error: (05/01/2014 05:03:10 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Microsoft Office Sessions:
=========================
Error: (05/23/2012 10:04:19 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 372 seconds with 60 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-09-21 20:24:57.014
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-21 20:24:56.593
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-21 20:24:56.138
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-21 20:24:55.713
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-14 14:07:21.415
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-14 14:07:21.008
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-14 14:07:20.553
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-14 14:07:20.065
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-08-11 09:38:02.312
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-08-11 09:38:01.935
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\SYMEVENT.SYS" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 3069.09 MB
Available physical RAM: 1872.74 MB
Total Pagefile: 6358.66 MB
Available Pagefile: 5205.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 1923.32 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:289.17 GB) (Free:180.79 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:8.92 GB) (Free:1.57 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 007F9015)
Partition 1: (Active) - (Size=289 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Ich danke für die Hilfe, bis jetzt läuft alles so wie es soll! :) |
+ R Taste und schreibe notepad in das Ausführen Fenster.
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
