Notebook mit Windows Vista wird immer langsamer

k25391 · 30.04.2015, 21:55

Hallo Schrauber,

das Update beim Firefox ging automatisch, der Adobe Reader sagt, er hat kein Update und Java habe ich leider nirgends gefunden... Was nun?

Das Notebook braucht inzwischen nach dem Hochfahren sehr lange, bis man arbeiten kann, damit meine ich, dass die Symbole auf dem Desktop zwar relativ schnell angezeigt werden, aber ich kann sie dann nicht auswählen. Bis das geht, dauert es mehrere Minuten. Und der Internet Explorer (oder auch manchmal der Firefox, den ich aber seltener nutze) braucht auch immer sehr lange, wenn man ein neues Tabellenblatt aufmachen will (und manchmal auch, wenn man einfach nur nach unten blättern will).

Inzwischen habe ich nun durch die Programme, die ich nach den Anweisungen heruntergeladen habe, einige neue Symbole auf dem Desktop. Kann ich die Programme wieder löschen?

Und auch zu der letzten Anweisung habe ich noch eine Frage: Wenn ich Avira deinstalliere, dann bin ich doch nicht gegen Viren geschützt, wenn ich ins Internet gehe oder? Ist denn dann das Deinstallieren sinnvoll oder habe ich was falsch verstanden? Und wie teste ich Speed?

Hier noch der Inhalt von fixlog.txt. Nach dem Speichern hat sich das Notebook selbständig heruntergefahren. Ist das normal?

Oh weh, das waren schon wieder so viele Fragen... Aber da mein Enkel mir immer sagt, ich soll im Internet ja vorsichtig sein, frage ich lieber einmal zu viel.

Viele Grüße

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 29-04-2015 01
Ran by COMPAQ at 2015-04-30 21:40:56 Run:1
Running from C:\Users\COMPAQ\Desktop\Desktop
Loaded Profiles: COMPAQ (Available profiles: COMPAQ)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Emptytemp:
*****************

EmptyTemp: => Removed 202.5 MB temporary data.


The system needed a reboot. 

==== End of Fixlog 21:41:40 ====

schrauber · 01.05.2015, 15:58

Adobe Reader deinstallieren, dann neu laden und installieren., gibt es schon in Version 11.

Avira nur mal kurz deinstallieren und schauen, was die Performance des Rechners macht.
Unsere Tools räumen wir auf wenn wir fertig sind

Windows Repair Tool laufen lassen:
Windows reparieren - so geht's - Anleitungen

k25391 · 01.05.2015, 23:23

Ich habe jetzt den alten Adobe Reader deinstalliert und den neuen installiert.
Dann habe ich alles von Avira deinstalliert und das Windows Repair Tool laufen lassen. Das Notebook hat sich dann selbst heruntergefahren. Nach dem hochfahren hatte ich nicht das Gefühl, dass sich in punkto Geschwindigkeit was verändert hat. Auch der firefox ist noch immer sehr langsam und das Notebook rappelt die ganze Zeit vor sich hin...

Ich habe einen Windows-Repair-Log gefunden, den ich sicherheitshalber mal mitschicke:

Code:

ATTFilter

Tweaking.com - Windows Repair v3.1.4
--------------------------------------------------------------------------------

System Variables
--------------------------------------------------------------------------------
OS: Windows Vista (TM) Home Premium
OS Architecture: 32-bit
OS Version: 6.0.6002
OS Service Pack: Service Pack 2
Computer Name: COMPAQ-PC
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Current Profile: C:\Users\COMPAQ
Current Profile SID: S-1-5-21-1856033268-2380134389-1329949605-1000
Current Profile Classes: S-1-5-21-1856033268-2380134389-1329949605-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\COMPAQ\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:38:40

Process Count: 75
Commit Total: 1,18 GB
Commit Limit: 5,72 GB
Commit Peak: 2,09 GB
Handle Count: 17549
Kernel Total: 228,09 MB
Kernel Paged: 173,30 MB
Kernel Non Paged: 54,79 MB
System Cache: 1,96 GB
Thread Count: 787
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2,75 GB
Memory Used: 1,14 GB(41,5609%)
Memory Avail.: 1,61 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2,75 GB
Memory Used: 778,69 MB(27,6769%)
Memory Avail.: 1,99 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (01.05.2015 22:14:37)

Setting Any Missing 'InstallDate' From Uninstall Sections Before Running Repair...
Total Missing 'InstallDate' Fixed: 54
 
01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (01.05.2015 22:14:41)

   Running Repair Under Current User Account
   Done (01.05.2015 22:16:22)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (01.05.2015 22:16:22)

   Running Repair Under System Account
   Done (01.05.2015 22:35:33)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (01.05.2015 22:35:33)

   Running Repair Under System Account
   Done (01.05.2015 22:38:23)

03 - Reset Service Permissions
   Start (01.05.2015 22:38:23)

   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:39:53)

04 - Register System Files
   Start (01.05.2015 22:39:53)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:40:44)

05 - Repair WMI
   Start (01.05.2015 22:40:44)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   No Antivirus Products Reported.

   Exporting AntiSpyware Info...
   Windows Defender Exported.
   Spybot - Search and Destroy Exported.

   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.

   Running Repair Under Current User Account
   Done (01.05.2015 22:47:03)

06 - Repair Windows Firewall
   Start (01.05.2015 22:47:03)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:47:43)

07 - Repair Internet Explorer
   Start (01.05.2015 22:47:43)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:48:29)

08 - Repair MDAC/MS Jet
   Start (01.05.2015 22:48:29)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:48:52)

09 - Repair Hosts File
   Start (01.05.2015 22:48:52)
   Running Repair Under System Account
   Done (01.05.2015 22:48:54)

10 - Remove Policies Set By Infections
   Start (01.05.2015 22:48:54)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:49:00)

12 - Repair Icons
   Start (01.05.2015 22:49:00)
   Running Repair Under Current User Account
   Done (01.05.2015 22:49:01)

13 - Repair Winsock & DNS Cache
   Start (01.05.2015 22:49:01)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:49:16)

15 - Repair Proxy Settings
   Start (01.05.2015 22:49:16)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:49:19)

17 - Repair Windows Updates
   Start (01.05.2015 22:49:19)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
   Done (01.05.2015 22:50:23)

18 - Repair CD/DVD Missing/Not Working
   Start (01.05.2015 22:50:23)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (01.05.2015 22:50:23)

19 - Repair Volume Shadow Copy Service
   Start (01.05.2015 22:50:23)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:01)

21 - Repair MSI (Windows Installer)
   Start (01.05.2015 22:51:01)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:18)

23.01 - Repair bat Association
   Start (01.05.2015 22:51:18)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:21)

23.02 - Repair cmd Association
   Start (01.05.2015 22:51:21)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:24)

23.03 - Repair com Association
   Start (01.05.2015 22:51:24)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:27)

23.04 - Repair Directory Association
   Start (01.05.2015 22:51:27)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:30)

23.05 - Repair Drive Association
   Start (01.05.2015 22:51:30)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:33)

23.06 - Repair exe Association
   Start (01.05.2015 22:51:33)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:37)

23.07 - Repair Folder Association
   Start (01.05.2015 22:51:37)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:40)

23.08 - Repair inf Association
   Start (01.05.2015 22:51:40)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:43)

23.09 - Repair lnk (Shortcuts) Association
   Start (01.05.2015 22:51:43)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:46)

23.10 - Repair msc Association
   Start (01.05.2015 22:51:47)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:50)

23.11 - Repair reg Association
   Start (01.05.2015 22:51:50)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:53)

23.12 - Repair scr Association
   Start (01.05.2015 22:51:53)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:51:56)

24 - Repair Windows Safe Mode
   Start (01.05.2015 22:51:56)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:52:00)

25 - Repair Print Spooler
   Start (01.05.2015 22:52:00)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:52:20)

26 - Restore Important Windows Services
   Start (01.05.2015 22:52:20)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:52:34)

27 - Set Windows Services To Default Startup
   Start (01.05.2015 22:52:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:52:52)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.0

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.0

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.0

31 - Repair Windows 'New' Submenu
   Start (01.05.2015 22:52:52)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (01.05.2015 22:52:55)

33 - Repair Performance Counters
   Start (01.05.2015 22:52:55)
   Running Repair Under Current User Account
   Done (01.05.2015 22:53:26)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (01.05.2015 22:53:27)
   Total Repair Time: 00:38:51


...YOU MUST RESTART YOUR SYSTEM...

Firefox habe ich komplett restauriert und Avira wieder installiert.
Was soll ich jetzt als nächstes tun?
Falls es nochmal ein FRST (was immer das auch tut) sein sollte, dann wäre das hier das aktuelle:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-04-2015 01
Ran by COMPAQ (administrator) on COMPAQ-PC on 01-05-2015 23:39:12
Running from C:\Users\COMPAQ\Desktop\Desktop
Loaded Profiles: COMPAQ (Available profiles: COMPAQ)
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\update.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\updrgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\update.exe
(Farbar) C:\Users\COMPAQ\Desktop\Desktop\FRST(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1049896 2008-04-17] (Synaptics, Inc.)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Health Check Scheduler] => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [130048 2015-04-10] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [726320 2015-03-24] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5503768 2015-02-19] (Piriform Ltd)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.spiegel.de/
HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {F984C8C7-0FB4-4E22-AC3F-507BBA566358} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> DefaultScope F7B7846F6FD142C988F9AAAC5202D175 URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7SUNC_deDE355
SearchScopes: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> F7B7846F6FD142C988F9AAAC5202D175 URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7SUNC_deDE355
SearchScopes: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> {9122BE4A-A717-4D62-AB26-E01C0BEF14B5} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> {F984C8C7-0FB4-4E22-AC3F-507BBA566358} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} ->  No File
BHO: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16] (Adblock Plus)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-03-27] (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Winsock: Catalog9 01 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 31 C:\Program Files\Avira\Antivirus\avsda.dll [507984 2015-05-01] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\COMPAQ\AppData\Roaming\Mozilla\Firefox\Profiles\whso1d3q.default-1430507139540
FF NewTab: chrome://unitedtb/content/newtab/newtab-page.xhtml
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2008-08-06] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2010-07-17] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2010-07-16] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2010-07-16] (Apple Inc.)
FF Extension: WEB.DE MailCheck - C:\Users\COMPAQ\AppData\Roaming\Mozilla\Firefox\Profiles\whso1d3q.default-1430507139540\Extensions\toolbar@web.de [2015-05-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-21]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2009-09-25]
FF HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc.exe [815352 2015-03-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [434424 2015-03-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [434424 2015-03-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\Antivirus\AVWEBGRD.EXE [1004032 2015-03-24] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [205104 2015-04-10] (Avira Operations GmbH & Co. KG)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [File not signed]
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [135168 2008-03-25] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-06-09] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2008-07-18] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-07-18] (Hewlett-Packard) [File not signed]
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-10-06] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-09-15] () [File not signed]
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105864 2015-03-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2015-03-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2015-03-24] (Avira Operations GmbH & Co. KG)
S3 GigasetGenericUSB; C:\Windows\System32\DRIVERS\GigasetGenericUSB.sys [44032 2013-04-25] (Siemens Home and Office Communication Devices GmbH & Co. KG)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2015-05-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation)
S1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2015-03-24] (Avira GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-01 23:33 - 2015-05-01 23:33 - 00000000 ____D () C:\Users\COMPAQ\AppData\Roaming\Avira
2015-05-01 23:29 - 2015-03-24 14:59 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-05-01 23:29 - 2015-03-24 14:59 - 00105864 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-05-01 23:29 - 2015-03-24 14:59 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-05-01 23:29 - 2015-03-24 14:59 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2015-05-01 23:20 - 2015-05-01 23:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-05-01 23:20 - 2015-05-01 23:20 - 00000960 _____ () C:\Users\Public\Desktop\Avira.lnk
2015-05-01 23:19 - 2015-05-01 23:19 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-01 23:16 - 2015-05-01 23:16 - 04636584 _____ (Avira Operations GmbH & Co. KG) C:\Users\COMPAQ\Downloads\avira_de_av_5543ee0f3953b__ws.exe
2015-05-01 21:13 - 2015-05-01 21:13 - 00001852 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-05-01 21:13 - 2015-05-01 21:13 - 00001804 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-01 21:11 - 2015-05-01 21:11 - 00000000 ____D () C:\Program Files\Adobe
2015-05-01 20:51 - 2015-05-01 21:01 - 76313280 _____ (Adobe Systems Incorporated) C:\Users\COMPAQ\Downloads\AdbeRdr11010_de_DE.exe
2015-04-30 21:10 - 2015-04-30 21:12 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-19 23:12 - 2015-04-19 23:12 - 01137664 _____ (Farbar) C:\Users\COMPAQ\Downloads\FRST (1).exe
2015-04-19 23:00 - 2015-04-19 23:00 - 00852616 _____ () C:\Users\COMPAQ\Downloads\SecurityCheck.exe
2015-04-19 20:06 - 2015-04-19 20:07 - 02347384 _____ (ESET) C:\Users\COMPAQ\Downloads\esetsmartinstaller_deu.exe
2015-04-17 21:48 - 2015-04-17 21:51 - 00039991 _____ () C:\Users\COMPAQ\Downloads\Addition.txt
2015-04-17 21:47 - 2015-04-19 23:16 - 00032562 _____ () C:\Users\COMPAQ\Downloads\FRST.txt
2015-04-17 21:46 - 2015-04-17 21:46 - 01137152 _____ (Farbar) C:\Users\COMPAQ\Downloads\FRST.exe
2015-04-17 21:34 - 2015-04-17 21:34 - 00001306 _____ () C:\Users\COMPAQ\Desktop\JRT.txt
2015-04-17 21:30 - 2015-04-17 21:30 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-COMPAQ-PC-Windows-Vista-(TM)-Home-Premium-(32-bit).dat
2015-04-17 21:30 - 2015-04-17 21:30 - 00000000 ____D () C:\RegBackup
2015-04-17 21:22 - 2015-04-17 21:25 - 02686254 _____ (Thisisu) C:\Users\COMPAQ\Downloads\JRT.exe
2015-04-17 20:59 - 2015-04-17 21:00 - 02217984 _____ () C:\Users\COMPAQ\Downloads\AdwCleaner_4.201.exe
2015-04-17 20:37 - 2015-04-17 21:03 - 00000000 ____D () C:\AdwCleaner
2015-04-17 19:45 - 2015-04-17 19:45 - 00000859 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-04-17 19:45 - 2015-04-17 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-04-17 19:45 - 2015-04-17 19:45 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2015-04-17 19:45 - 2015-03-17 06:15 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-17 19:45 - 2015-03-17 06:15 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-16 10:42 - 2015-03-09 03:01 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-16 10:30 - 2015-03-05 04:32 - 00244152 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-16 10:30 - 2015-03-05 04:24 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-16 10:30 - 2015-03-05 04:23 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-16 10:29 - 2015-03-14 04:21 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-16 10:29 - 2015-03-13 03:51 - 03604920 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-16 10:29 - 2015-03-13 03:51 - 03552184 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-16 09:40 - 2015-04-16 09:40 - 00013898 _____ () C:\ComboFix.txt
2015-04-16 09:06 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-04-16 09:06 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-04-16 09:06 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-04-16 09:06 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-04-16 09:06 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-04-16 09:06 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2015-04-16 09:06 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2015-04-16 09:06 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2015-04-16 09:00 - 2015-04-16 09:41 - 00000000 ____D () C:\Qoobox
2015-04-16 09:00 - 2015-04-16 09:32 - 00000000 ____D () C:\Windows\erdnt
2015-04-16 08:51 - 2015-03-10 01:06 - 12377600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-16 08:51 - 2015-03-10 01:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-16 08:51 - 2015-03-10 01:02 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-16 08:51 - 2015-03-10 01:00 - 09747968 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-16 08:51 - 2015-03-10 00:57 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-16 08:51 - 2015-03-10 00:57 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-16 08:51 - 2015-03-10 00:56 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-16 08:51 - 2015-03-10 00:56 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-16 08:51 - 2015-03-10 00:56 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-16 08:51 - 2015-03-10 00:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-16 08:51 - 2015-03-10 00:56 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-04-16 08:51 - 2015-03-10 00:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-16 08:51 - 2015-03-10 00:55 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-16 08:51 - 2015-03-10 00:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-04-16 08:51 - 2015-03-10 00:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-04-16 08:51 - 2015-03-10 00:55 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-04-16 08:45 - 2015-04-16 08:45 - 00000000 ____D () C:\Program Files\VS Revo Group
2015-04-14 09:37 - 2015-04-17 19:45 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-14 09:36 - 2015-05-01 21:54 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-14 09:36 - 2015-04-14 10:23 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-04-14 09:34 - 2015-03-17 06:15 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-11 16:46 - 2015-05-01 23:09 - 00174286 _____ () C:\Windows\PFRO.log
2015-04-04 17:52 - 2015-04-04 17:52 - 00038022 _____ () C:\Users\COMPAQ\Documents\Addition.txt
2015-04-04 17:48 - 2015-05-01 23:39 - 00000000 ____D () C:\FRST
2015-04-04 15:57 - 2015-04-04 15:57 - 00000000 ____D () C:\ProgramData\Gigaset QuickSync
2015-04-04 15:52 - 2015-04-04 15:52 - 00000000 ____D () C:\Users\COMPAQ\AppData\Local\Gigaset_Communications_Gm
2015-04-04 15:49 - 2015-04-04 15:49 - 00001821 _____ () C:\Users\Public\Desktop\Gigaset QuickSync.lnk
2015-04-04 15:49 - 2015-04-04 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigaset QuickSync
2015-04-04 15:49 - 2015-04-04 15:49 - 00000000 ____D () C:\Program Files\Gigaset QuickSync
2015-04-04 15:43 - 2015-04-04 15:43 - 00000000 ____D () C:\Users\COMPAQ\AppData\Local\Downloaded Installations

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-01 23:32 - 2011-01-01 19:00 - 00000000 ____D () C:\Users\COMPAQ\AppData\Roaming\Skype
2015-05-01 23:29 - 2012-12-17 14:47 - 00000000 ____D () C:\Program Files\Avira
2015-05-01 23:29 - 2012-06-08 14:59 - 00000000 ____D () C:\ProgramData\Avira
2015-05-01 23:28 - 2006-11-02 12:33 - 01546298 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-01 23:25 - 2012-09-10 22:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-01 23:21 - 2009-09-07 11:13 - 01492152 _____ () C:\Windows\WindowsUpdate.log
2015-05-01 23:19 - 2014-11-15 21:06 - 00000644 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-05-01 23:11 - 2009-09-07 12:12 - 00090848 _____ () C:\Users\COMPAQ\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-01 23:10 - 2011-03-23 15:09 - 00000000 ___RD () C:\Users\Public\Recorded TV
2015-05-01 23:10 - 2009-09-14 18:58 - 00031966 _____ () C:\ProgramData\nvModes.dat
2015-05-01 23:10 - 2009-09-14 18:58 - 00031966 _____ () C:\ProgramData\nvModes.001
2015-05-01 23:10 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-01 23:10 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-01 23:10 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-01 23:09 - 2006-11-02 14:47 - 00355232 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-01 22:54 - 2006-11-02 15:01 - 00032510 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-01 21:12 - 2013-02-22 21:49 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-05-01 21:11 - 2008-10-26 16:42 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-30 21:49 - 2013-02-22 21:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-30 21:12 - 2014-10-13 10:28 - 00000000 ___RD () C:\Program Files\Skype
2015-04-30 21:12 - 2010-11-12 14:02 - 00000000 ____D () C:\ProgramData\Skype
2015-04-19 22:05 - 2011-02-10 22:30 - 00000600 _____ () C:\Users\COMPAQ\AppData\Local\PUTTY.RND
2015-04-17 20:26 - 2012-09-10 22:13 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-17 20:26 - 2011-12-24 01:40 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-16 10:42 - 2013-08-15 14:56 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 10:40 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-16 10:31 - 2006-11-02 12:24 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-04-16 09:41 - 2011-09-05 15:45 - 00000000 ____D () C:\Users\COMPAQ\AppData\Local\Apps\2.0
2015-04-16 09:41 - 2006-11-02 13:18 - 00000000 __RHD () C:\Users\Default
2015-04-16 09:41 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public
2015-04-16 09:28 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2015-04-16 09:23 - 2006-11-02 12:23 - 00000027 _____ () C:\Windows\system32\Drivers\etc\hosts_bak_129
2015-04-11 17:46 - 2009-10-17 17:04 - 00000052 _____ () C:\Windows\system32\DOErrors.log
2015-04-04 17:36 - 2009-09-07 11:58 - 00000000 ____D () C:\Users\COMPAQ
2015-04-04 16:08 - 2009-09-22 20:16 - 00012800 _____ () C:\Users\COMPAQ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Files in the root of some directories =======

2012-03-28 22:44 - 2012-03-28 22:44 - 3993600 _____ () C:\Program Files\GUT7C59.tmp
2010-07-16 17:15 - 2010-07-16 17:15 - 0000268 ___RH () C:\Users\COMPAQ\AppData\Roaming\Textures
2010-07-16 17:19 - 2010-07-16 17:19 - 0000268 ___RH () C:\Users\COMPAQ\AppData\Roaming\Track Settings
2009-09-09 17:08 - 2013-12-04 00:36 - 0000392 _____ () C:\Users\COMPAQ\AppData\Roaming\wklnhst.dat
2009-09-07 12:14 - 2009-09-07 12:14 - 0000000 _____ () C:\Users\COMPAQ\AppData\Local\AtStart.txt
2010-03-05 20:53 - 2012-12-15 00:39 - 0007808 _____ () C:\Users\COMPAQ\AppData\Local\d3d9caps.dat
2009-09-22 20:16 - 2015-04-04 16:08 - 0012800 _____ () C:\Users\COMPAQ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-09-07 12:14 - 2009-09-07 12:14 - 0000000 _____ () C:\Users\COMPAQ\AppData\Local\DSwitch.txt
2011-02-10 22:30 - 2015-04-19 22:05 - 0000600 _____ () C:\Users\COMPAQ\AppData\Local\PUTTY.RND
2009-09-07 12:14 - 2009-09-07 12:14 - 0000000 _____ () C:\Users\COMPAQ\AppData\Local\QSwitch.txt
2011-07-25 00:58 - 2011-07-25 00:58 - 0000000 _____ () C:\Users\COMPAQ\AppData\Local\{D41DDEB0-E855-4C54-B9AB-B9F40547BA67}
2009-09-07 11:28 - 2013-03-23 16:40 - 0000248 _____ () C:\ProgramData\hpqp.ini
2009-11-02 12:43 - 2013-05-13 19:55 - 0000021 _____ () C:\ProgramData\hpqp.txt
2009-09-25 19:25 - 2012-02-02 14:52 - 0004978 _____ () C:\ProgramData\hpzinstall.log
2009-09-14 18:58 - 2015-05-01 23:10 - 0031966 _____ () C:\ProgramData\nvModes.001
2009-09-14 18:58 - 2015-05-01 23:10 - 0031966 _____ () C:\ProgramData\nvModes.dat
2010-07-16 17:15 - 2013-03-04 16:04 - 0000020 ____H () C:\ProgramData\PKP_DLdu.DAT
2010-07-16 17:19 - 2012-09-24 18:43 - 0000020 ____H () C:\ProgramData\PKP_DLdw.DAT
2010-07-16 17:15 - 2010-07-16 17:15 - 0000268 ___RH () C:\ProgramData\Transportation
2010-07-16 17:19 - 2010-07-16 17:19 - 0000268 ___RH () C:\ProgramData\Tremolo
2010-07-16 17:15 - 2010-07-16 17:15 - 0000012 ___RH () C:\ProgramData\URLs
2010-07-16 17:19 - 2010-07-16 17:19 - 0000012 ___RH () C:\ProgramData\Vocal Transformer
2009-09-07 11:32 - 2009-09-07 11:32 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2008-10-26 16:52 - 2008-10-26 16:52 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-09-07 11:31 - 2009-09-07 11:31 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2008-10-26 16:45 - 2008-10-26 16:46 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-09-07 11:29 - 2009-09-07 11:29 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2009-09-07 11:32 - 2009-09-07 11:32 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2008-10-26 16:43 - 2008-10-26 16:44 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2008-10-26 16:46 - 2008-10-26 16:52 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2009-09-07 11:32 - 2009-09-07 11:33 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

Some content of TEMP:
====================
C:\Users\COMPAQ\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-01 23:21

==================== End Of Log ============================

--- --- ---

--- --- ---

Code:

ATTFilter


	Code: 

 ATTFilter

  
	Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-04-2015 01
Ran by COMPAQ at 2015-05-01 23:41:39
Running from C:\Users\COMPAQ\Desktop\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1856033268-2380134389-1329949605-500 - Administrator - Disabled)
COMPAQ (S-1-5-21-1856033268-2380134389-1329949605-1000 - Administrator - Enabled) => C:\Users\COMPAQ
Gast (S-1-5-21-1856033268-2380134389-1329949605-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 2.1.5 - Hewlett-Packard) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adblock Plus für IE (32-Bit) (HKLM\...\{A2C33E25-4A8E-43F7-8998-BBEB690F1AB1}) (Version: 1.3 - Eyeo GmbH)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}) (Version: 11.0 - Adobe Systems, Inc.)
ArcSoft Panorama Maker 4 (HKLM\...\{D45E8C45-B601-4A80-AFD8-E16338744DE1}) (Version:  - ArcSoft)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros)
Avira (HKLM\...\{d8490d5d-0f24-4000-b2e4-4b500a9a704d}) (Version: 1.1.35.25717 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.35.25717 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.9.504 - Avira Operations GmbH & Co. KG)
BufferChm (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (Version: 2.03.0000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Cisco EAP-FAST Module (HKLM\...\{415B2719-AD3A-4944-B404-C472DB6085B3}) (Version: 2.1.6 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{83770D14-21B9-44B3-8689-F7B523F94560}) (Version: 1.0.12 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}) (Version: 1.0.13 - Cisco Systems, Inc.)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.58.0.0 - Conexant)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink DVD Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2203 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.1616 - CyberLink Corp.)
Destination Component (Version: 110.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 110.0.180.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4200_Software_Min (Version: 110.0.238.000 - Hewlett-Packard) Hidden
DJ_AIO_03_F4220_ProductContext (Version: 110.0.238.000 - Hewlett-Packard) Hidden
ElsterFormular (HKLM\...\ElsterFormular 11.4.1.4323) (Version: 11.4.1.4323 - Landesfinanzdirektion Thüringen)
ElsterFormular-Upgrade (HKLM\...\ElsterFormular für Privatanwender 12.3.2.6814p) (Version: 14.3.11574 - Landesfinanzdirektion Thüringen)
ESU for Microsoft Vista (HKLM\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
F4200 (Version: 110.0.238.000 - Ihr Firmenname) Hidden
F4210_Help (Version: 110.0.238.000 - Hewlett-Packard) Hidden
File Uploader (HKLM\...\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}) (Version: 1.2.1 - Nikon)
Gigaset QuickSync (HKLM\...\{b49e8cfb-f094-4467-925a-97c23972cb50}) (Version: 8.3.0868.3 - Gigaset Communications GmbH)
GPBaseService (Version: 110.0.180.000 - Hewlett-Packard) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_HERMOSA_HSF) (Version:  - )
HP Active Support Library (HKLM\...\{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}) (Version: 3.1.9.1 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM\...\{57A5AEC1-97FC-474D-92C4-908FCC2253D4}) (Version: 5.7.0.2664 - Hewlett-Packard)
HP Customer Participation Program 11.0 (HKLM\...\HPExtendedCapabilities) (Version: 11.0 - HP)
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3 (HKLM\...\{C3B6AEB1-390C-4792-8677-CD87F8B2C959}) (Version: 11.0 - HP)
HP Doc Viewer (HKLM\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.03.0001 - Hewlett-Packard)
HP DVD Play 3.7 (HKLM\...\{45D707E9-F3C4-11D9-A373-0050BAE317E1}) (Version: 3.7.0.5723 - Hewlett-Packard)
HP Help and Support (HKLM\...\{0054A0F6-00C9-4498-B821-B5C9578F433E}) (Version: 2.1.1.0 - Hewlett-Packard Company)
HP Imaging Device Functions 11.0 (HKLM\...\HP Imaging Device Functions) (Version: 11.0 - HP)
HP Photosmart Essential 3.0 (HKLM\...\HP Photosmart Essential) (Version: 3.0 - HP)
HP Quick Launch Buttons 6.40 H2 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.40 H2 - Hewlett-Packard)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 4.0 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Total Care Advisor (HKLM\...\{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}) (Version: 2.4.4941.2798 - Hewlett-Packard)
HP Update (HKLM\...\{DDD5104F-1C44-49EB-9E6B-29EC5D27658B}) (Version: 5.002.007.004 - Hewlett-Packard)
HP User Guides 0118 (HKLM\...\{B6D0B141-B2BE-4DD0-B08F-B9186F3E36B3}) (Version: 1.00.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}) (Version: 3.00 K2 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPNetworkAssistant (Version: 1.1.70 - Hewlett-Packard.) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 110.0.180.000 - Hewlett-Packard) Hidden
HPTCSSetup (HKLM\...\{846DDADA-0239-4B67-A6B1-33658863793B}) (Version: 1.1.1963.2799 - Hewlett-Packard Company)
Junk Mail filter update (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0926 - CyberLink Corp.)
LabelPrint (Version: 2.5.0926 - CyberLink Corp.) Hidden
Lager (Version: 1.0.0.0 - Hewlett-Packard) Hidden
LightScribe System Software  1.14.17.1 (HKLM\...\{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}) (Version: 1.14.17.1 - LightScribe)
Malwarebytes Anti-Malware Version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
MarketResearch (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 de) (HKLM\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCSetup (Version: 1.00.0000 - HP) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
muvee Reveal (HKLM\...\{DD35C328-F115-BEDA-6EEE-E00C5AACCCBC}) (Version: 7.0.35.6951 - muvee Technologies Pte Ltd)
NetWaiting (HKLM\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.52 - BVRP Software, Inc)
Nikon Message Center (HKLM\...\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}) (Version: 0.92.000 - Nikon)
Nikon Transfer (HKLM\...\{E9757890-7EC5-46C8-99AB-B00F07B6525C}) (Version: 1.5.0 - Nikon)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.1.6 - Nikon)
Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.2202 - CyberLink Corp.)
Power2Go (Version: 6.0.2202 - CyberLink Corp.) Hidden
PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.2201 - CyberLink Corp.)
PowerDirector (Version: 7.0.2201 - CyberLink Corp.) Hidden
PSSWCORE (Version: 2.03.0000 - Hewlett-Packard) Hidden
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime (HKLM\...\{E0D51394-1D45-460A-B62D-383BC4F8B335}) (Version: 7.3.1.70 - Apple Inc.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 3.0.1.3 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scan (Version: 11.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 11.0 - HP)
Skype™ 7.3 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
SmartWebPrinting (Version: 110.0.182.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Status (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.3.0 - Synaptics)
Toolbox (Version: 110.0.180.000 - Hewlett-Packard) Hidden
TrayApp (Version: 110.0.180.000 - Hewlett-Packard) Hidden
VideoToolkit01 (Version: 110.0.171.000 - Hewlett-Packard) Hidden
ViewNX (HKLM\...\{F007CBCE-D714-4C0B-8CE9-9B0D78116468}) (Version: 1.4.0 - Nikon)
Web Launcher (HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\...\fc3ac04dc8eedef7) (Version: 1.0.0.20 - ShowMyPC)
WebReg (Version: 110.0.180.000 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live ID-Anmelde-Assistent (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000_Classes\CLSID\{80A95F12-94C2-4B1D-8AE3-F0CBE5E96E85}\InprocServer32 -> C:\Users\COMPAQ\AppData\Local\ASKTOO~1\DOWNLO~1\AVIRAW~1.DLL No File
CustomCLSID: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1856033268-2380134389-1329949605-1000_Classes\CLSID\{EB959CA4-408B-4465-9CF5-7EBA7B885153}\InprocServer32 -> C:\Users\COMPAQ\AppData\Local\ASKTOO~1\DOWNLO~1\AVIRAS~1.DLL No File

==================== Restore Points  =========================

03-03-2015 15:48:33 Windows Update
05-03-2015 13:11:32 Geplanter Prüfpunkt
06-03-2015 20:39:08 Windows Update
11-03-2015 20:02:10 Windows Update
11-03-2015 20:58:54 Windows Update
17-03-2015 01:00:55 Geplanter Prüfpunkt
17-03-2015 19:44:24 Windows Update
21-03-2015 18:09:10 Windows Update
27-03-2015 19:18:43 Windows Update
31-03-2015 21:45:50 Windows Update
04-04-2015 15:43:50 Installed Gigaset QuickSync.
04-04-2015 15:59:47 Windows Update
06-04-2015 13:06:25 Geplanter Prüfpunkt
07-04-2015 18:37:17 Windows Update
11-04-2015 17:01:48 Windows Update
16-04-2015 08:52:07 Revo Uninstaller's restore point - Avira SearchFree Toolbar plus Web Protection Updater
16-04-2015 08:53:35 Revo Uninstaller's restore point - Avira SearchFree Toolbar plus Web Protection Updater
16-04-2015 10:23:10 Windows Update
19-04-2015 14:35:25 Geplanter Prüfpunkt
30-04-2015 21:32:43 Windows Update
01-05-2015 20:46:56 Removed Adobe Reader X (10.1.13) - Deutsch.
01-05-2015 20:49:55 Removed Adobe Reader X (10.1.13) - Deutsch.
01-05-2015 21:08:19 Installed Adobe Reader XI - Deutsch.
01-05-2015 22:11:57 Tweaking.com - Windows Repair

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2015-05-01 22:48 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {069573E5-2D93-49E5-AE1E-B0FDFD50E00C} - System32\Tasks\{53B1A1CC-B9A7-4F7F-8D2B-ED3D11FC8932} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
Task: {0ECD0360-2D32-4D6F-8CF4-3F401236EDEB} - System32\Tasks\{20BFD99F-D596-4D96-8DB7-F97DB4F9A1B0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.3.0.111.259/en/abandoninstall?page=tsDownload&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
Task: {21F694FE-2A6D-4B2B-A697-15DA44680B37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {2784FBC6-7CDB-423E-A8F1-6ED990FF8D02} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard)
Task: {28C3BA5F-E093-459A-8251-2A700D96F18E} - System32\Tasks\{1AE98456-DAD8-4A8E-AE0B-9B41A96CF8A5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.1.0.112.259/en/abandoninstall?page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
Task: {2BB980C4-66AD-45CE-AA65-9C28740CBE5F} - System32\Tasks\{2EBC2EB7-BF3D-4F83-B086-2A7C253842B7} => pcalua.exe -a "C:\Users\COMPAQ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D650QA4N\msvbvm50[1].exe" -d C:\Users\COMPAQ\Desktop\Desktop
Task: {37ECF2E5-4175-4A42-83C8-6FB3605ADBDC} - System32\Tasks\{594F396F-1B8A-4C15-8883-708DE1A5572E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.9.0.123/de/privacy
Task: {3CC5237E-5EF8-43C1-B327-DF3C11F8C05D} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {3E3376A3-17EA-45A4-A122-65B92B31EFDC} - System32\Tasks\{0E45A6AC-6249-4417-8E9A-FA8F59C5B602} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.9.0.123/de/eula
Task: {5C6E0410-D563-4D33-A139-B19AA9E6556A} - System32\Tasks\{A403AAF8-6BF2-4AA4-9BAE-181E99DF7C0D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.152.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
Task: {7089947B-2359-4472-8784-8CFB49534457} - System32\Tasks\{CEA72B26-C555-48E2-B25E-4DEFFCD80F70} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-installed;madedefault
Task: {7347E749-993E-4DB4-8D9E-BC81E3244EDA} - System32\Tasks\{E4A09C9B-6AFD-4455-9058-D3E4EF85BE63} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:offered-installed,google-chrome:notoffered;toolbaroffered
Task: {8242393F-2DF5-49DC-8F06-9F1F4192A971} - System32\Tasks\{D724DEF5-8284-4D19-A176-B22C73AFD1F1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
Task: {8B0048CE-6320-4537-884F-F40822239591} - System32\Tasks\{8F63F147-4622-4745-9078-7A635D250201} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
Task: {966DE398-118A-472C-92C7-17367C4B6A6E} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {A80BE85D-DBBD-4D6A-803E-F8544CEE71A1} - System32\Tasks\{A3DDBBDF-D5B8-43C5-9D85-5B89D7A053A9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.8.0.158/en/abandoninstall?page=tsMain
Task: {B2D27570-1B75-4983-9C7C-7BEB9FA2A574} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {B9CD596B-8652-4CBE-9D9E-B07EEA450E65} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {C13BC585-17AE-4881-B9FA-1FCE59D065C0} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - COMPAQ => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {C595BB96-C42B-4304-832A-89F2955AEFCE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-17] (Adobe Systems Incorporated)
Task: {CDB5D68F-55FF-4158-9284-D4A5E7D64042} - System32\Tasks\{36E6A434-A4C2-455D-9E59-243CF0C89458} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered
Task: {D4F918C4-09E9-4990-BAC0-FCDD0C6ABD59} - System32\Tasks\{6161185A-D5E9-41AC-9CAC-D17E38A806F6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered
Task: {DB6F04E1-8CD5-4372-9C61-A7DC5B18D3F1} - System32\Tasks\{9D4CC22C-0D91-48E7-9752-41093BB3C19D} => C:\Program Files\Skype\\Phone\Skype.exe [2015-03-25] (Skype Technologies S.A.)
Task: {DC44E2FE-D436-4E0E-A2E6-427D8F0336B9} - System32\Tasks\{87010094-4D74-481D-BE13-33B8C56116CD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.9.0.123/de/eula
Task: {EB32A578-D9F1-422B-8230-7D3FF262B8BC} - System32\Tasks\{0ED92DB1-958D-426D-97B7-E258304BEC31} => pcalua.exe -a E:\setup.exe -d E:\
Task: {F08EABE8-10BF-4684-8E67-05B2EC8CCB2F} - System32\Tasks\{9A2C7FC4-E4F5-48F6-A403-3F8E0ADD7E40} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.156.259/de/abandoninstall?source=lightinstaller&amp;page=tsMain&amp;installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;alreadyoffered

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) ==============

2014-11-15 21:04 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-11-15 21:04 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-11-15 21:04 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2008-10-26 16:59 - 2008-10-06 10:54 - 00365952 _____ () C:\Program Files\SMINST\BLService.exe
2008-10-26 16:59 - 2008-10-06 10:54 - 00132480 _____ () C:\Program Files\SMINST\STWmiM.dll
2008-10-26 16:52 - 2008-09-15 16:13 - 00241734 _____ () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2009-09-07 11:27 - 2008-09-23 17:21 - 00066856 _____ () C:\Program Files\HP\QuickPlay\Kernel\Common\MCEMediaStatus.dll
2015-02-19 23:40 - 2015-02-19 23:40 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2008-10-26 15:51 - 2008-04-11 10:04 - 00685360 _____ () C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMPCHelper => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tvnserver => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7867 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1856033268-2380134389-1329949605-1000\Control Panel\Desktop\\Wallpaper -> C:\ALLES, was wir haben\Fotos\2010-12 Argentinien-Fotos Andrea\P1020742.JPG
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: BBSvc => 2
MSCONFIG\Services: BBUpdate => 3
MSCONFIG\Services: GameConsoleService => 3
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: TabletInputService => 2
MSCONFIG\Services: THREADORDER => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupreg: Nikon Transfer Monitor => C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
MSCONFIG\startupreg: QPService => "C:\Program Files\HP\QuickPlay\QPService.exe"
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\2.0"
MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
MSCONFIG\startupreg: UpdatePDIRShortCut => "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"
MSCONFIG\startupreg: UpdatePSTShortCut => "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [{4D949DBB-C8EE-4348-ACBC-DFD8168C30DE}] => (Allow) C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE
FirewallRules: [{C3F46C1C-91F2-4730-93DF-0DDC204BBE5F}] => (Allow) C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE
FirewallRules: [{2DF7D3D8-E986-4B15-9022-67A4B85E3D7B}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE
FirewallRules: [{29D92FEA-8866-4105-8FE1-AF6DEFF4568F}] => (Allow) C:\Program Files\HP\QuickPlay\QP.exe
FirewallRules: [{B395C3AD-9803-490C-98C9-857DDCDD175B}] => (Allow) C:\Program Files\HP\QuickPlay\QPService.exe
FirewallRules: [{585B8559-B49D-45C5-8680-4DBA2DED0982}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{F1A1876D-ACF6-4646-BF88-10AA62ED0FB6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{9C28B76D-3448-4FCD-8021-1EE74D30B086}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{F163DF6B-EAE3-44F6-835C-A191796AE685}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{3D1DCCC6-5CC0-43C3-91EB-674DD8D8C7FF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E35AC621-F2D1-41D3-AC45-24358AE85470}] => (Allow) C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqphotocrm.exe
FirewallRules: [{4357AE18-EFED-4A36-A845-7AA5AC81A21D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{94A7990C-88E8-4BB0-ABEC-8AC423E31A8D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{C2E62041-2D9B-414F-BB69-7B81C34363AF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{EB25E1D1-A538-4147-8E66-53A75010396C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{7A8AC1B6-2E87-43DA-AABB-7DFD9575EF9B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{4CD0CAF3-D5C7-4F91-A8F2-F7C991F9415D}] => (Allow) C:\Program Files\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{4500BBB8-B443-4B41-A637-7D92F87EAC93}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{268A992C-EA5D-4EE0-B7B5-13014CE2CE5C}] => (Allow) svchost.exe
FirewallRules: [{E6DF7487-4D5A-44FB-9C0B-EC6B6D3570EB}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [TCP Query User{2994EC3C-EE79-4FFB-9A55-7DC9B45CE2DA}C:\users\compaq\appdata\local\temp\ixp000.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp000.tmp\smpcsetup.exe
FirewallRules: [UDP Query User{C012491C-568C-4209-934C-B66D763191B1}C:\users\compaq\appdata\local\temp\ixp000.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp000.tmp\smpcsetup.exe
FirewallRules: [TCP Query User{07432581-BC23-453B-9354-5B49AB248F05}C:\users\compaq\appdata\local\temp\ixp000.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp000.tmp\smwinvnc.exe
FirewallRules: [UDP Query User{878160B0-A701-46F3-87C4-D3C3F04D2EED}C:\users\compaq\appdata\local\temp\ixp000.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp000.tmp\smwinvnc.exe
FirewallRules: [TCP Query User{76D07FA5-BD21-4117-8AE1-AE0DD1609553}C:\users\compaq\appdata\local\temp\ixp001.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp001.tmp\smpcsetup.exe
FirewallRules: [UDP Query User{399026E9-27B0-4C6B-BE97-BF9BB76CDD5D}C:\users\compaq\appdata\local\temp\ixp001.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp001.tmp\smpcsetup.exe
FirewallRules: [TCP Query User{59D15D24-9A92-472B-A16E-445D7FABAC07}C:\users\compaq\appdata\local\temp\ixp001.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp001.tmp\smwinvnc.exe
FirewallRules: [UDP Query User{BB74ED9B-2F6F-4FB9-A3A7-72F1CCA78C03}C:\users\compaq\appdata\local\temp\ixp001.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp001.tmp\smwinvnc.exe
FirewallRules: [{8E24DFFB-7400-4D9B-9D50-6CA8C707E917}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{BE485789-A50B-4F0B-ACD2-799DC64AA2EB}] => (Allow) LPort=80
FirewallRules: [{0BF8B235-D4D6-4CBD-811D-A254DD405414}] => (Allow) LPort=80
FirewallRules: [{F5EE1C7F-8FF3-4391-B8C9-7CB87B55C1ED}] => (Allow) LPort=80
FirewallRules: [{21FA62D2-47DD-4A7A-BB97-11B8CF8869F7}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{FB45EA43-C877-4AD6-9CAE-DF21EFA8CFCC}C:\users\compaq\appdata\local\temp\showmypc\smpc3152\smpcph.exe] => (Allow) C:\users\compaq\appdata\local\temp\showmypc\smpc3152\smpcph.exe
FirewallRules: [UDP Query User{A57E1CA6-3006-44B0-B766-1E6140199C19}C:\users\compaq\appdata\local\temp\showmypc\smpc3152\smpcph.exe] => (Allow) C:\users\compaq\appdata\local\temp\showmypc\smpc3152\smpcph.exe
FirewallRules: [TCP Query User{B5D5B059-F5A8-4241-9C1E-8851D0EEEFD6}C:\users\compaq\appdata\local\temp\ixp002.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp002.tmp\smpcsetup.exe
FirewallRules: [UDP Query User{A93AF95A-0E17-455D-9D74-89FB89466383}C:\users\compaq\appdata\local\temp\ixp002.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp002.tmp\smpcsetup.exe
FirewallRules: [TCP Query User{3A8CA80E-A0E7-4438-8140-FA2B7A0AB768}C:\users\compaq\appdata\local\temp\ixp002.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp002.tmp\smwinvnc.exe
FirewallRules: [UDP Query User{64935698-2C40-4263-A9B4-7F2195978C9C}C:\users\compaq\appdata\local\temp\ixp002.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp002.tmp\smwinvnc.exe
FirewallRules: [TCP Query User{8FA4B3A5-0B02-403B-9C97-47117390EF27}C:\users\compaq\appdata\local\temp\ixp003.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp003.tmp\smpcsetup.exe
FirewallRules: [UDP Query User{EBF6224F-077C-49D9-92F0-44B52A9BF8FC}C:\users\compaq\appdata\local\temp\ixp003.tmp\smpcsetup.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp003.tmp\smpcsetup.exe
FirewallRules: [TCP Query User{EB99424A-0BB5-4F01-B80C-14014F581F74}C:\users\compaq\appdata\local\temp\ixp003.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp003.tmp\smwinvnc.exe
FirewallRules: [UDP Query User{B33243C5-2F6A-4A10-AD18-D53CD77264D1}C:\users\compaq\appdata\local\temp\ixp003.tmp\smwinvnc.exe] => (Allow) C:\users\compaq\appdata\local\temp\ixp003.tmp\smwinvnc.exe
FirewallRules: [{3A44CD17-9D3A-4705-8AE0-2E63115A5BDC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{402343FA-625B-4F68-830A-C93FE3577C85}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7B0956BD-F3D2-483D-B46D-8A8571258DC6}] => (Allow) LPort=80
FirewallRules: [{8AB470CC-8166-471A-8F5F-8CF24CBF9CE7}] => (Allow) LPort=80
FirewallRules: [{E72885C9-C635-4DBF-9775-C607C77F0F91}] => (Allow) LPort=80
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============

Name: USB DISK
Description: USB DISK Pro    
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer:         
Service: WUDFRd
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/01/2015 10:53:26 PM) (Source: LoadPerf) (EventID: 3009) (User: )
Description: .NET CLR Networking 4.0.0.0 2

Error: (05/01/2015 10:53:26 PM) (Source: LoadPerf) (EventID: 3009) (User: )
Description: .NET Data Provider for Oracle 2

Error: (05/01/2015 10:44:02 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: 0x8004401eC:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\MSINFO\OINFOP12.MOF

Error: (05/01/2015 10:43:41 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\EN-US\USERPROFILEWMIPROVIDER.MFL

Error: (05/01/2015 09:31:17 PM) (Source: Windows Search Service) (EventID: 3024) (User: )
Description: Die Aktualisierung kann nicht gestartet werden, da kein Zugriff auf die Inhaltsquellen bestand. Beheben Sie die Fehler, und starten Sie die Aktualisierung erneut.

Kontext:  Anwendung, SystemIndex Katalog

Error: (05/01/2015 09:30:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING-TO_DELETE> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (05/01/2015 09:30:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING-BACKUP> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (05/01/2015 09:30:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (05/01/2015 09:30:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING> in der Hash-Zuordnung kann nicht aktualisiert werden.

Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)

Error: (04/30/2015 09:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung plugin-container.exe, Version 35.0.1.5500, Zeitstempel 0x54c1f9f3, fehlerhaftes Modul mozalloc.dll, Version 35.0.1.5500, Zeitstempel 0x54c1f224, Ausnahmecode 0x80000003, Fehleroffset 0x00001425,
Prozess-ID 0xa88, Anwendungsstartzeit plugin-container.exe0.


System errors:
=============
Error: (05/01/2015 11:19:20 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}

Error: (05/01/2015 11:17:29 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update

Error: (05/01/2015 11:13:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spybot-S&D 2 Scanner Service%%1053

Error: (05/01/2015 11:13:28 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {28778B62-8481-400D-8E8A-A4C81ED3F65C}

Error: (05/01/2015 11:12:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Spybot-S&D 2 Scanner Service

Error: (05/01/2015 11:12:21 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (05/01/2015 11:11:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spybot-S&D 2 Scanner Service%%1053

Error: (05/01/2015 11:11:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Spybot-S&D 2 Scanner Service

Error: (05/01/2015 11:11:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058

Error: (05/01/2015 11:10:09 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.


Microsoft Office Sessions:
=========================
Error: (05/01/2015 10:53:26 PM) (Source: LoadPerf) (EventID: 3009) (User: )
Description: .NET CLR Networking 4.0.0.0 2

Error: (05/01/2015 10:53:26 PM) (Source: LoadPerf) (EventID: 3009) (User: )
Description: .NET Data Provider for Oracle 2

Error: (05/01/2015 10:44:02 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: 0x8004401eC:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\MSINFO\OINFOP12.MOF

Error: (05/01/2015 10:43:41 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\EN-US\USERPROFILEWMIPROVIDER.MFL

Error: (05/01/2015 09:31:17 PM) (Source: Windows Search Service) (EventID: 3024) (User: )
Description: Kontext:  Anwendung, SystemIndex Katalog

Error: (05/01/2015 09:30:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING-TO_DELETE

Error: (05/01/2015 09:30:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING-BACKUP

Error: (05/01/2015 09:30:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING

Error: (05/01/2015 09:30:44 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Kontext:  Anwendung, SystemIndex Katalog


Details:
	Ein an das System angeschlossenes Gerät funktioniert nicht.   (0x8007001f)
C:\USERS\COMPAQ\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\WHSO1D3Q.DEFAULT-1430507139540\SAFEBROWSING

Error: (04/30/2015 09:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe35.0.1.550054c1f9f3mozalloc.dll35.0.1.550054c1f2248000000300001425a8801d0837a1f74cef0


CodeIntegrity Errors:
===================================
  Date: 2015-05-01 23:41:19.940
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:18.183
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:16.554
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:14.871
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:12.314
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:10.547
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:08.563
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:41:06.772
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:39:47.399
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-01 23:39:45.699
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: AMD Athlon Dual-Core QL-65
Percentage of memory in use: 40%
Total physical RAM: 2813.5 MB
Available physical RAM: 1680.7 MB
Total Pagefile: 5853.53 MB
Available Pagefile: 4492.86 MB
Total Virtual: 2047.88 MB
Available Virtual: 1904.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:287.56 GB) (Free:199.67 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:10.53 GB) (Free:1.71 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (USB DISK) (Removable) (Total:0.24 GB) (Free:0.24 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 627525ED)
Partition 1: (Active) - (Size=287.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=10.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 248 MB) (Disk ID: F593DC85)
Partition 1: (Active) - (Size=248 MB) - (Type=06)

==================== End Of Log ============================

schrauber · 02.05.2015, 14:08

http://support2.microsoft.com/kb/929135/de

Bitte einen Clean Boot machen. Wenn das Problem dann weg ist, einzeln wieder Dienste aktivieren, dazwischen immer einen Reboot machen. Solange bis Du weißt welcher Dienst die Probleme macht.

Diesen dann hier benennen.

k25391 · 02.05.2015, 18:11

Ich habe jetzt alles gemäß der Anweisungen gemacht, aber es hat sich nichts geändert. Wenn nach dem Hochfahren das Desktop-Bild mit den Symbolen erscheint, dann dauert es recht lange, bis ich sie auswählen kann (ca. 4 min.) und das Notebook rappelt vor sich hin. Ich habe dann versuchsweise den Internet Explorer aufgemacht und dann hat es in der blauen Leiste oben etwa 3 min. "keine Rückmeldung" angezeigt.

Und was ich weiter machen soll, ist mir leider ein bißchen unklar. Ich vermute, ich soll nun in msconfig nach und nach die nicht zu Microsoft gehörenden Dienste wieder anhaken und dann jedes Mal das Notebook wieder runter- und hochfahren. Richtig?
Brauche ich das alles, was da steht?
Avira und Adobe kenne ich , aber da sind einige von Hewlett-Packard (hat das mit meinem Drucker zu tun?) und von Macrovision und Conexant, bei denen ich nicht weiß, was sie machen.

Und was soll ich jetzt machen? Auch wenn es nach dem ersten Hochfahren nach dem Durchführen der Anleitung wieder so lange dauert, die Dienste einzeln wieder aktivieren?

Wieder mal ganz herzlichen Dank für die geduldige Hilfe!!!

schrauber · 03.05.2015, 13:38

Richtig, einzeln wieder einschalten. Ist hier aber unnötig, du sagst ja dass die Kiste immer noch langsam ist, wenn alle Dienste aus sind. Dann bleiben nur die Windows Dienste, also Windows ansich.

Win DVD da?

k25391 · 04.05.2015, 21:17

Ich habe jetzt alle CDs durchgesehen, die mit dem Notebook zusammenhängen, aber ich habe nichts mit Windows gefunden. Als wir das Notebook gekauft haben, war alles schon da und funktionierte.
Nur Word und Excel hat uns jemand nachträglich draufgespielt.

Können wir da überhaupt noch was machen? Oder sollte ich mich doch langsam mit dem Gedanken anfreunden, ein neues Notebook zu kaufen?

DANKE! und viele Grüße

schrauber · 05.05.2015, 08:50

Nee. Wenn keine Scheibe dabei war gibt es ne Recovery Partition, um alles auf Werkszustand zu machen. Damit kann man aber nicht reparieren, sprich nur Werkszustand, alle Daten auf dem Gerät gehen verloren.

Sichere bitte erstmal deine privaten und wichtigen Daten irgendwo extern.

k25391 · 11.05.2015, 17:08

Hallo,

ich musste erst einmal eine externe Festplatte kaufen und es hat leider auch etwas gedauert, bis ich meine Fotos und die Dateien, die ich mal angelegt hatte, darauf kopieren konnte.
Das sind aber nur die Sachen, die ich selbst mal dort gespeichert habe.

Wie geht's jetzt weiter?

DANKE für die Geduld mit mir!

Ach so, was mir noch eingefallen ist: Wenn ich die Daten kopiere und das mit der rechten Maustaste machen will, dann bringt Windows immer die Fehlermeldung: Windows-Explorer funktioniert nicht mehr und dann macht der sich selbst zu.

schrauber · 12.05.2015, 07:06

Also ich würde an dieser Stelle wirklich einfach ne Recovery machen, sprich Werkszustand, dann ist der Rechner auch wieder komplett fehlerfrei.

k25391 · 12.05.2015, 11:02

Hallo Schrauber,

ich würde wirklich gerne eine recovery machen, aber ich weiß leider weder genau was das ist und schon gar nicht wie das geht.
Was ich hier auf diesen Seiten dazu gefunden habe, erfordert immer einer DVD, die ich leider nicht habe.
Wie geht denn eine recovery ohne DVD?

Tut mir wirklich leid, daß ich so umständlich bin...

Viele Grüße

schrauber · 13.05.2015, 06:54

Sag mir mal bitte die genaue Marke und das Modell

k25391 · 13.05.2015, 22:15

Hallo,

folgendes steht auf dem Aufkleber auf der Unterseite des Gerätes:
Compaq Presario CQ60
S/N: 2CE9327ZXL
P/N: NR482EA#ABD
Modell # CQ60-410EG
Windows Vista Home Premium OEMA ct
HP

Ich hoffe, das sind die notwendigen Informationen.

Viele Grüße und einen schönen Feiertag

schrauber · 14.05.2015, 17:14

User manual HP COMPAQ PRESARIO CQ60-410SA - Download your HP COMPAQ PRESARIO CQ60-410SA user guide or user manual

schau mal hier

k25391 · 14.05.2015, 21:33

Danke für den Link.
Wenn ich das richtig verstehe - mein Englisch ist nicht so gut - dann hätten ich direkt nach dem Kauf DVDs erstellen müssen, die ich jetzt zur Wiederherstellung des Systems verwenden kann.
Nützt das auch, wenn die jetzt erst erstelle?
Oder soll ich es über den recovery-Manager versuchen?

Viele Grüße

01.05.2015, 15:58	#17
schrauber /// the machine /// TB-Ausbilder	Notebook mit Windows Vista wird immer langsamer Adobe Reader deinstallieren, dann neu laden und installieren., gibt es schon in Version 11. Avira nur mal kurz deinstallieren und schauen, was die Performance des Rechners macht. Unsere Tools räumen wir auf wenn wir fertig sind Windows Repair Tool laufen lassen: Windows reparieren - so geht's - Anleitungen __________________ __________________

03.05.2015, 13:38	#21
schrauber /// the machine /// TB-Ausbilder	Notebook mit Windows Vista wird immer langsamer Richtig, einzeln wieder einschalten. Ist hier aber unnötig, du sagst ja dass die Kiste immer noch langsam ist, wenn alle Dienste aus sind. Dann bleiben nur die Windows Dienste, also Windows ansich. Win DVD da? __________________ --> Notebook mit Windows Vista wird immer langsamer

12.05.2015, 07:06	#25
schrauber /// the machine /// TB-Ausbilder	Notebook mit Windows Vista wird immer langsamer Also ich würde an dieser Stelle wirklich einfach ne Recovery machen, sprich Werkszustand, dann ist der Rechner auch wieder komplett fehlerfrei. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

13.05.2015, 06:54	#27
schrauber /// the machine /// TB-Ausbilder	Notebook mit Windows Vista wird immer langsamer Sag mir mal bitte die genaue Marke und das Modell __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

14.05.2015, 17:14	#29
schrauber /// the machine /// TB-Ausbilder	Notebook mit Windows Vista wird immer langsamer User manual HP COMPAQ PRESARIO CQ60-410SA - Download your HP COMPAQ PRESARIO CQ60-410SA user guide or user manual schau mal hier __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Notebook mit Windows Vista wird immer langsamer

Plagegeister aller Art und deren Bekämpfung: Notebook mit Windows Vista wird immer langsamer