Malwarebytes Anti-Malware 1.75.0.1300
Malwarebytes : Free Anti-Malware
Datenbank Version: v2014.01.22.12
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Kristina :: KRISTINA-PC [Administrator]
23.01.2014 02:53:22
mbam-log-2014-01-23 (02-53-22).txt
Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 213775
Laufzeit: 6 Minute(n), 33 Sekunde(n)
Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0} (PUP.Optional.Bandoo.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)
(Ende)
AdwCleaner Logfile:
Code:
# AdwCleaner v3.017 - Bericht erstellt am 23/01/2014 um 03:09:19
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Kristina - KRISTINA-PC
# Gestartet von : C:\Users\Kristina\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\Program Files (x86)\kikin
Ordner Gelöscht : C:\Program Files (x86)\optimizer pro
Ordner Gelöscht : C:\Users\Kristina\AppData\LocalLow\Searchqutoolbar
Ordner Gelöscht : C:\Users\Kristina\AppData\LocalLow\wincoreimband
Ordner Gelöscht : C:\Users\Kristina\AppData\Roaming\kikin
Datei Gelöscht : C:\Windows\System32\roboot64.exe
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\iMesh_V11_en_Setup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\iMeshV11.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iMesh_V11_en_Setup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\VideoPerformerSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\VideoPerformerSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\5955dfd8b23bef49
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64733[1]_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64733[1]_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_adobe-flash-player[1]_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_adobe-flash-player[1]_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_airsnare_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_airsnare_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\Optimizer Pro
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Lyrics_Monkey
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\mediabarim
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\SearchquMediabarTb
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DataMngr
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DomaIQ
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\SearchCore for Browsers
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\WIA6EB~1\Datamngr\x64\datamngr.dll
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\WIA6EB~1\Datamngr\x64\IEBHO.dll
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
*************************
AdwCleaner[R0].txt - [6888 octets] - [23/01/2014 02:09:38]
AdwCleaner[R1].txt - [6830 octets] - [23/01/2014 03:04:40]
AdwCleaner[S0].txt - [6423 octets] - [23/01/2014 03:09:19]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6483 octets] ##########
--- --- ---
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Professional x64
Ran by Kristina on 23.01.2014 at 4:13:20,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\caphyon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-906974081-3302565733-3845257153-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{40A7E8F8-4F96-4F48-B1E3-ED596C9E5FA7}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Kristina\appdata\locallow\datamngr"
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{00A74ECB-9FA6-45E2-BE8A-2DC0E21381A1}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0135D53F-3178-4C83-972F-C4884AE2721C}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{05F2BBCB-0197-4309-BC3C-AA668ABA2859}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{08F75FD9-381C-4041-9500-21738D22555B}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{08FE5BAF-BB78-41AA-97DB-B70D2830DF84}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0AE2ACCD-702C-4556-AA6D-3F92DD47FFF8}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0B108751-07B5-4D41-BDB0-846125AA1A5B}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0DA263F1-3242-4C07-B738-A3F9BAAF3193}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0E48B937-8516-4B11-8FE0-2EA01E8B5F80}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{0FB03843-CAFE-4F97-A8FE-4E65F351F88B}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1099C582-D1D8-4CA1-9162-2CE517631744}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{12CC3A91-84B6-4B78-8AE3-0DB090FA52A8}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{13191B66-9E76-4744-9161-05BC17E88DFA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{136DF586-51C8-4A43-974B-8B5A6CB34A3C}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1396F8E7-1FCB-48F0-B70D-0074C631C949}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{14373371-6590-4B37-9E10-4A88B1E2DFBA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{14915151-58F6-486C-8BF6-F2F129887672}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{15784505-3898-45F6-85AF-92BEB00E2D49}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1738CD43-80E4-4672-9A8F-3C388C56C298}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1A94250D-7F9C-4AB4-A781-238CCBB87497}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1B3A70B7-A8E3-4024-9906-2CB1882CE9AE}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1E0E7A3B-7D7E-446F-9F59-E0DE4518D3BD}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{1F9BCCAE-5A17-4483-B18B-118B5B812242}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{239A009B-A115-45F9-95CD-D58B759F9D09}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{2640AC26-04DA-4E54-AD42-61B8C2778F22}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{26CDE17C-8AD3-4562-9522-55D2B970EDF5}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{2788858F-16A0-4DC6-9522-395D1DBEC88E}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{290091F3-6297-4012-834F-B8C1EC9AFDE2}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{310F34E0-1318-4D94-8A31-B87ABE4D3AF0}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{31676D9D-45FA-4E3E-90E4-2A5012356A4C}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{32819052-0222-4F9D-AB31-EB33E146E73C}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{33D9D64E-61E2-4D92-85D8-AB82D398C60D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{35F9AB3A-D247-4114-82E8-7D2C479C9AA8}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{366783E6-6479-4858-859E-A8EC874D1A10}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{36B4C8B6-7AA6-4ACA-BAF6-3F69D7199CB5}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3707BDDD-419D-405A-B9E0-640F093818E4}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{39F5D0B6-932C-4957-8D00-7256385FAC34}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3A1C931B-482F-4176-93A3-9138FBA3BC24}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3BE1F1B1-05EB-4F14-9FB7-A3392E13DE85}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3C9038EA-95E7-4A53-9B4C-DEEEA6FF4D2A}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3E5ECE67-EB2A-4F27-902D-EDF94B9BDAA4}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{3ED967E7-9613-4DCB-9CE2-B28FC1AB5F96}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{429695AF-1CFD-4E60-B8CD-6D41D8534258}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{45476583-14A3-42EC-A8C4-7FE09ECABC15}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4707B490-EA8E-4F8C-9C4E-B3807029D46F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{476E800B-74B6-44FC-A5F6-CC08843943C2}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{49BA53DA-0677-465A-9D6A-7086871B0E65}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4A371F31-8BA3-4E18-A35E-5BA0D218CD25}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4A678E2D-4E52-46ED-97C0-2F308C7D4D2A}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4AAE2FF0-E4BA-44F4-A17E-B04129AC5BE6}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4B4EA619-986C-4D48-8F6D-4E6E10E0160F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{4FDA00BA-6A28-4AEF-8CAF-B25D30C931DF}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{506CEBD6-C5E3-43EB-9E13-FFF1F2DC8EB3}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{5195BED1-10D0-4F7B-8DA8-8E85E846BE48}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{51C191FA-9471-4E9B-AE7A-7634741A7B97}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{58B7892D-946E-456C-86E7-86125B90263E}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{591C3EB8-4642-42CC-B100-B232F6645A0A}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{5C66E623-0F4E-4159-9BAA-C7445FFFCA47}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{5EDFE437-06EB-4E86-9DB5-CDD0AA296B58}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{6B8C730A-D90F-4555-B60F-DCACF611656D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{6F2B1057-BD2F-49AC-AFA6-3D6D5FD475A7}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{6FC227B5-CB83-4FC9-B313-242E40CD2344}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{70CDDB11-8625-4BFB-BA1E-81B16E9DD6E1}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{719A7561-B4A2-4126-95EB-18ECA94E05B8}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{740455FA-5A5C-4FFA-BAB1-47D5748B296F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{74B9A478-A400-4A14-86CF-88A765E3A2D9}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{78D84D67-5804-40D3-BD42-0B715E3E8020}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{7B3D03C5-00AB-40D2-9C8C-342621A8D7F9}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8208069B-EFA3-415A-93EF-639C9352EDC5}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{824F9F1D-3D66-49E6-8734-0D7973C1DE39}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{844181C5-ADED-420B-96D8-AE3F622C7A0E}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{87A2D25F-C4BF-409A-89A0-D6A81BDE6097}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{880F3F35-4395-48CA-8743-E96751DD636D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{890F1CFF-72E6-4FAF-B148-37EEFF797785}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{89885976-E3FF-4653-8516-7816630A50C2}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8BD4E9B8-DDA2-4811-82E9-7FEDBDAC8CD9}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8CB3C95A-AA98-4AE0-9EA8-DF7F63CC042F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8CBC1DAD-EE4A-4D74-8B2C-8880B64037DB}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8E02E2BB-A914-452B-99A1-44EF8852A794}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{8FB77B6A-607E-4313-9475-9DD7822984AF}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{906D2006-CE7A-4577-A7BA-40E5C3184388}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{921E2E01-96BF-4F66-A3A0-9B1B593B2107}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{93A17ACD-BBB9-44F9-B78E-22A6A3941599}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{94061281-4979-4FC4-9139-D9DCB47FB58D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{987BBC2F-48DA-47B9-A2C3-B9448BA853E6}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{989D5582-A283-4C4D-BC63-E16EA6CE65C9}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{98A45E7D-F751-400D-A89E-56453590090E}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{98EF87D0-0B53-4028-8BDF-7C86C5663DD8}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9B387CDA-405C-4E5B-B5C7-4750350FCDDE}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9DAE0BDF-F72C-49EF-A7CA-13B198CA9244}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9DCD4E28-2292-4A2A-B329-720A385D2521}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9E05BAD5-7669-4C59-9DAE-13C710250990}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9F1185E2-2603-4507-9AAD-0F0A718D27FE}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9F592C3E-14A3-4AEB-82C3-4DED2B844894}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{9FDD8FF4-CFAB-4169-8895-C9CA9711C393}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{A10C51C6-9C42-40DA-B7FE-0FBF387C7DC0}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{A3035DCD-3BCE-458A-843A-F7FC3DB75306}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{A4624A60-3103-4FBA-A363-26A2AF6614CB}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{A89AA115-62E7-4157-8770-EF9A754DBD8F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{AA297324-2FFF-4DB3-BF64-706C8D73B8AC}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{AA6B778A-B64A-4D27-AE50-FFCE46C42271}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{AAF0FC70-D9C5-4D3A-8F37-3F371FB7D36F}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{AE8F70EC-6913-4D7A-B5E9-3D7530EF21E0}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{AF48E08A-3340-4C5E-9459-E88997AB05FC}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{B6046C54-1534-418C-96FF-93774A831B08}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{B7B1303B-DBD6-4FE5-AE2A-B898C580A12B}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{B836224B-1B4F-4300-95E8-78E9C0A59323}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{B9C8820E-77D7-4B14-B691-6432F18663EA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BA4AD7D1-627A-4B90-9A20-D0DC379B0C34}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BAA266D8-00D5-42CE-A1BF-26B77C615D24}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BEEC158F-E4D6-4E82-8E10-45D7A6006F25}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BF06F627-420B-4149-9114-961ECA42DE17}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BF325BA4-88AD-410B-B554-A5340BA658B7}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{BF59B593-727E-41B5-A7A0-E193773154AA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{C4C340F1-E6BD-4EE3-822A-9AC797B9BA64}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{C5BA6D52-213B-4FFF-BE0B-D734788F3F9D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{C631961B-9D8F-45D1-AEEA-EB49AC866B23}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{C7E8049B-85E5-4949-A9CA-010A2BCDA649}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{C87E43DE-4EA7-4332-A266-5B3CB1D826EA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{CCC161A5-E778-4051-9899-CC1C7E28F8A0}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{CDD6F56A-17B0-40A6-9D9F-03D7B0271087}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{CE91CED1-2637-4456-9069-C97F4248EC82}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{D4826966-2B31-48EF-8D43-B03E7C204DE2}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{DB159534-98BD-4E9E-A9DC-D290994C74B2}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{DDF3A41E-9B2E-4981-A135-5368913E62DD}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{DEAAAD25-E870-42E0-B640-543389A9A3EF}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E1B85579-158C-4EB9-8F91-DFB80D8F9FD4}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E1BB9A49-D494-48D8-88D9-8B9800AE33B5}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E308C818-6E2D-4F8C-BF67-DC2D8699564E}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E49509A1-1E87-4CD9-88F8-5799D884A330}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E5DA9D38-84BB-46A5-8B7E-653EA597E383}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{E7412E74-0B2A-4142-A3CB-887B7FB59CBA}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{EAA07E69-0A6D-4075-80C5-09E34CAF2C2B}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{EADC214B-E881-4226-841A-75A2151F376A}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{EBB6EFFF-AE19-4647-A9FB-8489758E81C6}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{EFFA1B69-0BB4-4563-99C3-05FE305D4460}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{F0BCDBA2-46EE-47AC-A60A-73254200ABD4}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{F2184896-243A-4581-974B-49B841701093}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{F7F49A23-35AE-4BD9-BEA5-68AFDB07521D}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{F82F2444-5C8F-4C83-8E7D-BFA9C06CE4AF}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{FA33EB69-3FDC-49AB-A3A1-B32A93B9524C}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{FA9C5E36-58D1-48C4-B205-9D390B0841D4}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{FC5B36AE-AA12-4DC3-9113-FBF19C8424ED}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{FE8A0E1A-586B-4A66-811C-053F4F713671}
Successfully deleted: [Empty Folder] C:\Users\Kristina\appdata\local\{FF1F7E8C-8FAA-4B62-80B6-F8E74CBA9E41}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.01.2014 at 4:20:59,65
End of JRT log
FRST Logfile:
FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-01-2014
Ran by Kristina (administrator) on KRISTINA-PC on 23-01-2014 04:35:52
Running from C:\Users\Kristina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7368OXRK
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
( ) C:\Windows\System32\lxbkcoms.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Entriq, Inc.) C:\Program Files (x86)\maxdome\DCBin\DCService.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Lexmark International, Inc.) C:\Program Files (x86)\Lexmark X1100 Series\LXBKbmgr.exe
(Lexmark International, Inc.) C:\Program Files (x86)\Lexmark X1100 Series\LXBKbmon.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
() C:\Program Files (x86)\maxdome\DCBin\DCTrayApp.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [lxbkbmgr.exe] - C:\Program Files (x86)\Lexmark X1100 Series\lxbkbmgr.exe [74408 2008-02-28] (Lexmark International, Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2249352 2013-06-20] (Microsoft Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - !{D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKLM-x32 - No Name - !{D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {8FEFF364-6A5F-4966-A917-A3AC28411659} hxxp://download.sopcast.com/download/SOPCORE.CAB
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
==================== Services (Whitelisted) =================
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-10] (Nero AG)
R2 lxbk_device; C:\Windows\system32\lxbkcoms.exe [565928 2008-02-19] ( )
R2 lxbk_device; C:\Windows\SysWOW64\lxbkcoms.exe [537256 2008-02-19] ( )
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 Prosieben; C:\Program Files (x86)\maxdome\DCBin\DCService.exe [77032 2009-05-01] (Entriq, Inc.)
S2 HPSLPSVC; C:\Users\Kristina\AppData\Local\Temp\7zS640A\hpslpsvc64.dll [x]
==================== Drivers (Whitelisted) ====================
R2 acedrv09; C:\Windows\system32\drivers\acedrv09.sys [294720 2010-06-18] (Protect Software GmbH)
R2 acehlp09; C:\Windows\system32\drivers\acehlp09.sys [195248 2010-06-18] (Protect Software GmbH)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [828912 2010-07-02] ()
U3 ak4mfxux; C:\Windows\System32\Drivers\ak4mfxux.sys [0 ] (Advanced Micro Devices)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-23 04:28 - 2014-01-23 04:28 - 00001089 _____ C:\Users\Kristina\Desktop\Continue VuuPC Installation.lnk
2014-01-23 04:20 - 2014-01-23 04:20 - 00017051 _____ C:\Users\Kristina\Desktop\JRT.txt
2014-01-23 03:21 - 2014-01-23 04:12 - 01037068 _____ (Thisisu) C:\Users\Kristina\Desktop\JRT.exe
2014-01-23 02:09 - 2014-01-23 03:09 - 00000000 ____D C:\AdwCleaner
2014-01-23 02:04 - 2014-01-23 02:09 - 01236282 _____ C:\Users\Kristina\Desktop\adwcleaner.exe
2014-01-22 09:39 - 2014-01-22 09:39 - 00000000 ____D C:\FRST
2014-01-19 21:15 - 2014-01-19 21:15 - 00000000 _____ C:\Users\Kristina\Downloads\VXR3eVNnQUpmM2N3T0U1Q1lPd0RmZ21LZVJNZlZ5a2hLVE1IUlRubUUyQVp4ak5BUlZBblpRPT0=.rpzd4cs.partial
2014-01-19 21:00 - 2014-01-19 21:00 - 00000000 _____ C:\Users\Kristina\Desktop\VXR3dXp3QUtoQ2d3TzdVZFlPd2Yrd21LWlpZZlZOSitLVEQ4R2pubUQrVVp4aS9GUlZQY09nPT0=.om3ih4w.partial
2014-01-19 18:12 - 2014-01-19 18:12 - 00005327 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-19 18:12 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-19 18:12 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-19 18:12 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-19 18:12 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-15 20:06 - 2014-01-15 20:06 - 00000000 ____D C:\Users\Kristina\Downloads\Runtastic PRO v4.5.2.apk
2014-01-15 19:57 - 2014-01-15 20:00 - 11379056 _____ C:\Users\Kristina\Downloads\Runtastic PRO v4.5.2.apk.zip
2014-01-15 13:12 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 13:12 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 13:12 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 13:12 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-13 10:56 - 2014-01-13 10:56 - 00000000 ____D C:\Users\Kristina\Downloads\Fit For Fun - Simply Running! Die Musik Zum Laufen (2013) DE
2014-01-08 18:18 - 2014-01-08 18:18 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-01-07 12:29 - 2014-01-07 12:29 - 00009583 _____ C:\Users\Kristina\Documents\Fitnessstudio Kris.xlsx
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2014-01-05 14:01 - 2014-01-05 14:01 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2014-01-05 14:00 - 2014-01-23 04:11 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-05 14:00 - 2014-01-23 03:14 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-05 14:00 - 2014-01-05 14:06 - 00004110 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-05 14:00 - 2014-01-05 14:06 - 00003858 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== One Month Modified Files and Folders =======
2014-01-23 04:28 - 2014-01-23 04:28 - 00001089 _____ C:\Users\Kristina\Desktop\Continue VuuPC Installation.lnk
2014-01-23 04:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2014-01-23 04:20 - 2014-01-23 04:20 - 00017051 _____ C:\Users\Kristina\Desktop\JRT.txt
2014-01-23 04:17 - 2013-03-11 07:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-23 04:13 - 2013-07-07 22:33 - 00000000 ____D C:\Windows\ERUNT
2014-01-23 04:12 - 2014-01-23 03:21 - 01037068 _____ (Thisisu) C:\Users\Kristina\Desktop\JRT.exe
2014-01-23 04:11 - 2014-01-05 14:00 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-23 03:19 - 2009-07-14 05:45 - 00014944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-23 03:19 - 2009-07-14 05:45 - 00014944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-23 03:16 - 2009-07-14 18:58 - 17814490 _____ C:\Windows\system32\perfh007.dat
2014-01-23 03:16 - 2009-07-14 18:58 - 05710318 _____ C:\Windows\system32\perfc007.dat
2014-01-23 03:16 - 2009-07-14 06:13 - 00006292 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-23 03:15 - 2013-05-17 16:24 - 01797768 _____ C:\Windows\WindowsUpdate.log
2014-01-23 03:14 - 2014-01-05 14:00 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-23 03:14 - 2013-02-16 19:31 - 00000000 ____D C:\Users\Kristina\AppData\Local\HTC MediaHub
2014-01-23 03:12 - 2013-07-04 13:34 - 00078825 _____ C:\Windows\setupact.log
2014-01-23 03:12 - 2010-07-05 14:48 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2014-01-23 03:12 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-23 03:09 - 2014-01-23 02:09 - 00000000 ____D C:\AdwCleaner
2014-01-23 02:09 - 2014-01-23 02:04 - 01236282 _____ C:\Users\Kristina\Desktop\adwcleaner.exe
2014-01-22 09:39 - 2014-01-22 09:39 - 00000000 ____D C:\FRST
2014-01-21 02:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-20 15:01 - 2012-03-24 23:36 - 00000000 ____D C:\Users\Public\Documents\maxdome
2014-01-19 21:15 - 2014-01-19 21:15 - 00000000 _____ C:\Users\Kristina\Downloads\VXR3eVNnQUpmM2N3T0U1Q1lPd0RmZ21LZVJNZlZ5a2hLVE1IUlRubUUyQVp4ak5BUlZBblpRPT0=.rpzd4cs.partial
2014-01-19 21:00 - 2014-01-19 21:00 - 00000000 _____ C:\Users\Kristina\Desktop\VXR3dXp3QUtoQ2d3TzdVZFlPd2Yrd21LWlpZZlZOSitLVEQ4R2pubUQrVVp4aS9GUlZQY09nPT0=.om3ih4w.partial
2014-01-19 18:26 - 2010-04-14 20:45 - 00000000 ____D C:\Program Files (x86)\CCleaner
2014-01-19 18:18 - 2013-09-30 18:30 - 00000000 ____D C:\ProgramData\Oracle
2014-01-19 18:12 - 2014-01-19 18:12 - 00005327 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-19 18:12 - 2010-11-28 22:20 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-19 08:33 - 2010-03-06 20:16 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-16 11:57 - 2013-07-04 13:34 - 00448680 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 11:53 - 2010-03-06 20:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 11:51 - 2013-07-16 20:35 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 00:39 - 2010-03-20 09:28 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-16 00:38 - 2010-06-18 08:26 - 00000000 ____D C:\Windows\Minidump
2014-01-15 20:06 - 2014-01-15 20:06 - 00000000 ____D C:\Users\Kristina\Downloads\Runtastic PRO v4.5.2.apk
2014-01-15 20:00 - 2014-01-15 19:57 - 11379056 _____ C:\Users\Kristina\Downloads\Runtastic PRO v4.5.2.apk.zip
2014-01-13 10:56 - 2014-01-13 10:56 - 00000000 ____D C:\Users\Kristina\Downloads\Fit For Fun - Simply Running! Die Musik Zum Laufen (2013) DE
2014-01-12 20:48 - 2012-02-26 00:29 - 00000000 ____D C:\Program Files (x86)\JDownloader
2014-01-08 23:16 - 2010-03-21 01:36 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Skype
2014-01-08 18:18 - 2014-01-08 18:18 - 00000000 ____D C:\Users\Kristina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-01-07 12:29 - 2014-01-07 12:29 - 00009583 _____ C:\Users\Kristina\Documents\Fitnessstudio Kris.xlsx
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\Windows\SysWOW64\GPhotos.scr
2014-01-05 14:06 - 2014-01-05 14:00 - 00004110 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-05 14:06 - 2014-01-05 14:00 - 00003858 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-05 14:01 - 2014-01-05 14:01 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2014-01-05 14:01 - 2010-03-06 20:30 - 00000000 ____D C:\Users\Kristina\AppData\Local\Google
2014-01-05 14:01 - 2010-03-06 20:30 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-04 06:28 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
Some content of TEMP:
====================
C:\Users\Kristina\AppData\Local\Temp\ICReinstall_Setup.exe
C:\Users\Kristina\AppData\Local\Temp\Quarantine.exe
C:\Users\Kristina\AppData\Local\Temp\rtdrvmon.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-19 00:25
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- ---
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-01-2014
Ran by Kristina at 2014-01-23 04:44:42
Running from C:\Users\Kristina\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7368OXRK
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Ahnenblatt 2.62 (x32 Version: 2.62.0.0 - Dirk Boettcher)
AIO_CDB_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
AudioCon (x32 Version: 1.0 - Basement Softworks)
Baphomets Fluch - The Director's Cut (x32 Version: - )
Bing-Desktop (x32 Version: 1.3.171.0 - Microsoft Corporation)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
CCleaner (Version: 4.09 - Piriform)
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F2200_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
ElsterFormular (x32 Version: 14.3.20130522 - Landesfinanzdirektion Thüringen)
ESET Online Scanner v3 (x32 Version: - )
F2200 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
Free Mp3 Wma Converter V 2.2 (x32 Version: 2.2.0.0 - Koyote Soft)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Google+ Auto Backup (x32 Version: 1.0.21.81 - Google)
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (Version: 13.0 - HP)
HP Deskjet F2200 All-In-One Driver Software 13.0 Rel. 3 (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (Version: 3.5 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0 - HP)
HP Smart Web Printing 4.60 (Version: 4.60 - HP)
HP Solution Center 13.0 (Version: 13.0 - HP)
HP Update (x32 Version: 5.005.000.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HTC Driver Installer (x32 Version: 4.10.0.001 - HTC Corporation)
HTC Sync Manager (x32 Version: 2.4.11.0 - HTC)
iCloud (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Graphics Media Accelerator Driver (Version: 8.15.10.1892 - Intel Corporation)
IPTInstaller (x32 Version: 4.0.8 - HTC)
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
kikin Plugin (NO23 Edition) 1.11 (x32 Version: 1.11 - kikin)
Lexmark X1100 Series (Version: - Lexmark International, Inc.)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
maxdome Download Manager 4.1.300.78 (x32 Version: 4.1.30078 - Prosieben)
mediscript Hammerexamen (x32 Version: 5.0.0 - Elsevier GmbH)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Corporation (Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft Corporation (x32 Version: 9.1.0.0 - Microsoft Corporation) Hidden
Microsoft LifeCam (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
No23 Recorder (x32 Version: 2.1.0.3 - No23)
O&O MediaRecovery (x32 Version: 4.1.1322 - O&O Software GmbH)
OCR Software by I.R.I.S. 13.0 (Version: 13.0 - HP)
PDF24 Creator 5.2.0 (x32 Version: - PDF24.org)
Picasa 3 (x32 Version: 3.9 - Google, Inc.)
ProtectDisc Helper Driver (x32 Version: 9.1.0.0 - )
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Skype Click to Call (x32 Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
VLC media player 2.1.1 (x32 Version: 2.1.1 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (x32 Version: 5.666 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR (x32 Version: - )
Write-N-Cite (x32 Version: III - Refworks)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {39BE4978-1458-47FC-A432-9A7B12570A83} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-05] (Google Inc.)
Task: {4AF2B1C9-EE8C-419D-9AEC-94B769B04D0B} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {515DD1E9-3A25-4AE8-8961-CC4D88F9ED92} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {9394DEBE-51C0-4A29-8325-DCE01456D85D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-16] (Adobe Systems Incorporated)
Task: {C489AA96-17BD-448B-99B4-E2966D69A62B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-05] (Google Inc.)
Task: {CF7480DB-9297-45CD-BE27-2476618FF35B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-14 21:30 - 2013-11-14 21:30 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2013-11-14 21:31 - 2013-11-14 21:31 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2013-11-14 21:31 - 2013-11-14 21:31 - 00044392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2013-11-14 21:31 - 2013-11-14 21:31 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2013-11-14 21:31 - 2013-11-14 21:31 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2013-11-14 21:33 - 2013-11-14 21:33 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2013-11-14 21:34 - 2013-11-14 21:34 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2009-05-01 16:58 - 2009-05-01 16:58 - 01057512 _____ () C:\Program Files (x86)\maxdome\DCBin\PocoFoundation.dll
2009-05-01 16:58 - 2009-05-01 16:58 - 00627944 _____ () C:\Program Files (x86)\maxdome\DCBin\PocoNet.dll
2009-05-01 16:58 - 2009-05-01 16:58 - 00514352 _____ () C:\Program Files (x86)\maxdome\DCBin\sqlite3.dll
2009-05-01 16:58 - 2009-05-01 16:58 - 00517352 _____ () C:\Program Files (x86)\maxdome\DCBin\PocoXML.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
Error: (07/31/2011 09:37:59 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/21/2011 00:52:56 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/31/2011 10:55:08 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/05/2011 03:08:38 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-11-26 21:07:52.125
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 21:07:44.662
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 21:07:33.715
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 21:07:21.682
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 21:06:59.622
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 21:06:36.416
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 17:17:29.860
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-26 01:10:52.018
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-11-25 00:44:48.475
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\wow64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-28 06:27:23.601
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 34%
Total physical RAM: 4025.98 MB
Available physical RAM: 2620.46 MB
Total Pagefile: 8050.13 MB
Available Pagefile: 6629.61 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.94 GB) (Free:50.54 GB) NTFS
Drive d: () (Fixed) (Total:149 GB) (Free:31.05 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 08D908D8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=149 GB) - (Type=0C)
==================== End Of Log ============================
--- --- ---
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
