siegerschwei | 08.09.2013 19:54 | sag mir welche du noch so benötigst, Danke
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-09-2013
Ran by Conny (administrator) on CONNY-PC on 08-09-2013 20:21:51
Running from C:\Users\Conny\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Program Files (x86)\Mobile Partner Manager\AssistantServices.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 3\Integrator.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Chicony) C:\Program Files (x86)\Video Web Camera\traybar.exe
(shbox.de) C:\Program Files (x86)\FreePDF_XP\fpassist.exe
() C:\Program Files (x86)\Mobile Partner Manager\UIExec.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Yahoo! Inc.) C:\PROGRA~2\Yahoo!\Messenger\ymsgr_tray.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-29] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [206208 2010-06-10] ()
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [263936 2010-06-29] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-11] (Dritek System Inc.)
HKLM-x32\...\Run: [Camera Assistant Software] - C:\Program Files (x86)\Video Web Camera\traybar.exe [600688 2010-07-15] (Chicony)
HKLM-x32\...\Run: [FreePDF Assistant] - C:\Program Files (x86)\FreePDF_XP\fpassist.exe [370176 2010-06-17] (shbox.de)
HKLM-x32\...\Run: [UIExec] - C:\Program Files (x86)\Mobile Partner Manager\UIExec.exe [133120 2010-01-13] ()
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-20] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WISO Mein Steuer-Sparbuch heute.lnk
ShortcutTarget: WISO Mein Steuer-Sparbuch heute.lnk -> C:\Program Files (x86)\WISO\Steuersoftware 2013\mshaktuell.exe ()
BootExecute: autocheck autochk * BootDefrag.exe
==================== Internet (Whitelisted) ====================
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
SearchScopes: HKLM-x32 - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: amazon - {84B94901-3645-4D80-A6B7-4D0050B19455} - C:\Program Files (x86)\Preispiraten6\IEButtonAmazonInterface.dll ()
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - No File
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Preispiraten - {E9E027BF-C3F3-4022-8F6B-8F6D39A59684} - C:\Program Files (x86)\Preispiraten6\IEButtonPPInterface.dll ()
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} hxxp://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default
FF SearchEngineOrder.1: Ask.com Search
FF SelectedSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\glarysearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\SP_amazonde.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\SP_preispiraten_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Visualisateur 3D de 20-20 - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: Glarysoft Toolbar - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\{55C81E27-A6E2-40AB-B96F-D7107755F451}
FF Extension: Preispiraten - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\{C8D3D3BE-7ADC-4109-BF8C-6330A9F58B0C}
FF Extension: No Name - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\{cc80430a-8fef-4a0b-b9b0-e79dc0efe7cc}
FF Extension: toolbar - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\toolbar@web.de.xpi
FF Extension: No Name - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\{144D1513-0819-4538-AD26-D515AF443AE7}.xpi
FF Extension: No Name - C:\Users\Conny\AppData\Roaming\Mozilla\Firefox\Profiles\4id8zgir.default\Extensions\{32DD6873-2BC0-4E4B-B9A3-0E602AB0DC14}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [{b6e6de87-0e24-48af-b68c-c1a6a067e45f}] C:\Program Files (x86)\LyriXeeker\130.xpi
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Video downloader) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\khldgopgjjapmbkgflpoclebjjmkmbnk\2.0.0.430_0
CHR Extension: (Skype Click to Call) - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.10.0.9560_0
CHR Extension: () - C:\Users\Conny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [868896 2010-06-11] (Acer Incorporated)
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)
S3 GameConsoleService; C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe [246520 2010-04-04] (WildTangent, Inc.)
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 HPSLPSVC; C:\Users\Conny\AppData\Local\Temp\7zS360E\hpslpsvc64.dll [1039360 2012-08-27] (Hewlett-Packard Co.)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [255744 2010-06-29] (NewTech Infosystems, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 UI Assistant Service; C:\Program Files (x86)\Mobile Partner Manager\AssistantServices.exe [247296 2010-01-13] ()
S2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-31] (Avira Operations GmbH & Co. KG)
S0 BootDefragDriver; System32\drivers\BootDefragDriver.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-08 20:11 - 2013-09-08 20:11 - 00000000 ____D C:\Windows\ERUNT
2013-09-08 20:04 - 2013-09-08 20:07 - 00000000 ____D C:\AdwCleaner
2013-09-08 20:03 - 2013-09-08 20:03 - 01029490 _____ (Thisisu) C:\Users\Conny\Downloads\JRT.exe
2013-09-08 20:02 - 2013-09-08 20:02 - 01037278 _____ C:\Users\Conny\Downloads\adwcleaner.exe
2013-09-08 18:38 - 2013-09-08 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-08 18:38 - 2013-09-08 18:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-08 18:36 - 2013-09-08 19:19 - 00000000 ____D C:\Users\Conny\Desktop\mbar
2013-09-08 18:35 - 2013-09-08 18:35 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Conny\Downloads\mbar-1.07.0.1005.exe
2013-09-08 13:13 - 2013-09-08 13:13 - 00036800 _____ C:\Users\Conny\Downloads\Gmer.txt
2013-09-08 12:48 - 2013-09-08 20:20 - 00000000 ____D C:\Users\Conny\Desktop\Trojaner
2013-09-08 12:47 - 2013-09-08 12:47 - 00377856 _____ C:\Users\Conny\Downloads\gmer_2.1.19163.exe
2013-09-08 12:41 - 2013-09-08 12:42 - 00066768 _____ C:\Users\Conny\Downloads\Addition.txt
2013-09-08 12:40 - 2013-09-08 12:40 - 00000000 ____D C:\FRST
2013-09-08 12:39 - 2013-09-08 12:39 - 01948988 _____ (Farbar) C:\Users\Conny\Downloads\FRST64.exe
2013-09-08 12:38 - 2013-09-08 12:39 - 00000472 _____ C:\Users\Conny\Downloads\defogger_disable.log
2013-09-08 12:38 - 2013-09-08 12:38 - 00000000 _____ C:\Users\Conny\defogger_reenable
2013-09-08 12:37 - 2013-09-08 12:37 - 00050477 _____ C:\Users\Conny\Downloads\Defogger.exe
2013-09-06 22:34 - 2013-09-08 20:08 - 00000392 _____ C:\Windows\setupact.log
2013-09-06 22:34 - 2013-09-06 22:34 - 00000000 _____ C:\Windows\setuperr.log
2013-09-06 17:36 - 2013-09-06 17:36 - 00000000 ____D C:\ProgramData\GlarySoft
2013-09-06 17:26 - 2013-09-08 20:09 - 00000334 _____ C:\Windows\Tasks\GlaryInitialize 3.job
2013-09-06 17:26 - 2013-09-08 20:09 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 3
2013-09-06 17:26 - 2013-09-06 17:26 - 00002630 _____ C:\Windows\System32\Tasks\GlaryInitialize 3
2013-09-06 17:26 - 2013-09-06 17:26 - 00001092 _____ C:\Users\Public\Desktop\Glary Utilities 3.lnk
2013-09-06 17:26 - 2013-09-06 17:26 - 00000075 _____ C:\DiskDefrag.log
2013-09-06 17:26 - 2013-09-02 11:09 - 00117024 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2013-09-06 17:25 - 2013-09-06 17:25 - 16243768 _____ C:\Users\Conny\Downloads\Glary_Utilities_v3.9.1.exe
2013-09-06 13:28 - 2013-09-06 19:27 - 96462459 _____ C:\Windows\SysWOW64\顩讴¦
2013-09-05 17:28 - 2013-09-05 17:28 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-09-05 17:27 - 2013-09-05 17:29 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-05 17:27 - 2013-09-05 17:27 - 00001391 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-09-05 17:27 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-09-05 17:26 - 2013-09-05 17:26 - 37672592 _____ (Safer-Networking Ltd. ) C:\Users\Conny\Downloads\spybotsd-2.1.21-SR2.exe
2013-08-26 05:38 - 2013-08-26 05:38 - 00000000 ____D C:\Users\Conny\AppData\Roaming\DivX
2013-08-24 19:19 - 2013-08-24 19:19 - 00000052 _____ C:\Users\Conny\AppData\Roaming\WB.CFG
2013-08-24 19:18 - 2013-08-24 19:18 - 00000000 ____D C:\Users\Conny\AppData\Local\avgchrome
2013-08-24 18:23 - 2013-08-24 18:23 - 00001621 _____ C:\Users\Conny\Desktop\DivX Movies.lnk
2013-08-24 18:22 - 2013-08-24 18:22 - 00001124 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-08-24 18:21 - 2013-08-24 18:21 - 00001164 _____ C:\Users\Public\Desktop\DivX Plus Converter.lnk
2013-08-24 18:21 - 2013-08-24 18:21 - 00000000 ____D C:\Program Files\DivX
2013-08-24 18:20 - 2013-08-24 18:23 - 00000000 ____D C:\ProgramData\DivX
2013-08-24 18:20 - 2013-08-24 18:23 - 00000000 ____D C:\Program Files (x86)\DivX
2013-08-24 18:20 - 2013-08-24 18:20 - 00715038 _____ C:\Windows\unins000.exe
2013-08-24 18:20 - 2013-08-24 18:20 - 00001990 _____ C:\Windows\unins000.dat
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\LavFilters
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\CDXReader
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\OpenSource Flash Video Splitter
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Haali
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\DirectVobSub
2013-08-24 18:20 - 2012-02-26 16:47 - 00079360 _____ C:\Windows\SysWOW64\ff_vfw.dll
2013-08-24 18:20 - 2012-01-09 20:45 - 00178688 _____ C:\Windows\SysWOW64\unrar.dll
2013-08-24 18:20 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2013-08-24 18:20 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2013-08-24 18:20 - 2011-05-30 15:42 - 00255488 _____ C:\Windows\system32\xvidvfw.dll
2013-08-24 18:20 - 2011-05-30 15:42 - 00240640 _____ C:\Windows\SysWOW64\xvidvfw.dll
2013-08-24 18:20 - 2011-05-23 11:52 - 00153088 _____ C:\Windows\SysWOW64\xvid.ax
2013-08-24 18:20 - 2011-05-23 09:49 - 00173568 _____ C:\Windows\system32\xvid.ax
2013-08-24 18:20 - 2011-05-23 09:46 - 00645632 _____ C:\Windows\SysWOW64\xvidcore.dll
2013-08-24 18:20 - 2011-05-23 09:45 - 00696832 _____ C:\Windows\system32\xvidcore.dll
2013-08-24 18:19 - 2013-08-24 18:19 - 00705136 _____ C:\Users\Conny\Downloads\UltimateCodec.exe
2013-08-24 18:12 - 2013-08-24 18:12 - 03986216 _____ (Smart PC Solutions ) C:\Users\Conny\Downloads\PCSpeedMaximizer.exe
2013-08-23 19:05 - 2013-08-23 19:07 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Eiszeichnen Waldau
2013-08-23 18:58 - 2013-08-23 19:05 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Allgäu Urlaub
2013-08-23 18:58 - 2013-08-23 19:04 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Wilhelma
2013-08-23 18:57 - 2013-08-23 19:00 - 00000000 ____D C:\Users\Conny\Desktop\03.08.2013 Flynn Geburtstag
2013-08-22 07:47 - 2013-08-22 07:47 - 00000000 ____D C:\Program Files (x86)\SkypeWebPlugin
2013-08-18 20:49 - 2013-08-18 20:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-16 12:09 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-16 12:09 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-16 12:09 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-16 12:09 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-16 12:09 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-16 12:09 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-16 12:09 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-16 12:09 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-16 12:09 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-16 12:09 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-16 12:09 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-16 12:09 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-16 12:09 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-16 12:09 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-16 12:08 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-16 12:08 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-16 12:08 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-15 22:10 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-15 22:10 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-15 22:10 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-15 22:10 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-15 22:10 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-15 22:10 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-15 22:10 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-15 22:10 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-15 22:10 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-15 22:10 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-15 22:10 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-15 22:10 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-15 22:10 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-15 22:10 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-15 22:10 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-15 22:10 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-15 22:03 - 2013-08-15 22:07 - 00000000 ____D C:\Windows\system32\MRT
==================== One Month Modified Files and Folders =======
2013-09-08 20:20 - 2013-09-08 12:48 - 00000000 ____D C:\Users\Conny\Desktop\Trojaner
2013-09-08 20:17 - 2013-09-08 20:17 - 00008762 _____ C:\Users\Conny\Desktop\JRT.txt
2013-09-08 20:15 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-08 20:15 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-08 20:11 - 2013-09-08 20:11 - 00000000 ____D C:\Windows\ERUNT
2013-09-08 20:09 - 2013-09-06 17:26 - 00000334 _____ C:\Windows\Tasks\GlaryInitialize 3.job
2013-09-08 20:09 - 2013-09-06 17:26 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 3
2013-09-08 20:09 - 2011-07-19 21:39 - 00000326 _____ C:\Windows\Tasks\GlaryInitialize.job
2013-09-08 20:08 - 2013-09-06 22:34 - 00000392 _____ C:\Windows\setupact.log
2013-09-08 20:08 - 2011-06-04 11:08 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-08 20:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-08 20:07 - 2013-09-08 20:04 - 00000000 ____D C:\AdwCleaner
2013-09-08 20:07 - 2011-01-05 15:53 - 00000000 ____D C:\Users\Conny\AppData\Roaming\SoftGrid Client
2013-09-08 20:07 - 2010-11-10 22:15 - 01937458 _____ C:\Windows\WindowsUpdate.log
2013-09-08 20:03 - 2013-09-08 20:03 - 01029490 _____ (Thisisu) C:\Users\Conny\Downloads\JRT.exe
2013-09-08 20:02 - 2013-09-08 20:02 - 01037278 _____ C:\Users\Conny\Downloads\adwcleaner.exe
2013-09-08 19:54 - 2012-04-15 02:53 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-08 19:23 - 2011-06-04 11:08 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-08 19:19 - 2013-09-08 18:38 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-08 19:19 - 2013-09-08 18:36 - 00000000 ____D C:\Users\Conny\Desktop\mbar
2013-09-08 18:38 - 2013-09-08 18:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-08 18:35 - 2013-09-08 18:35 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Conny\Downloads\mbar-1.07.0.1005.exe
2013-09-08 17:22 - 2011-11-05 13:42 - 00000000 ____D C:\Users\Conny\AppData\Local\FreePDF_XP
2013-09-08 13:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-08 13:13 - 2013-09-08 13:13 - 00036800 _____ C:\Users\Conny\Downloads\Gmer.txt
2013-09-08 12:47 - 2013-09-08 12:47 - 00377856 _____ C:\Users\Conny\Downloads\gmer_2.1.19163.exe
2013-09-08 12:42 - 2013-09-08 12:41 - 00066768 _____ C:\Users\Conny\Downloads\Addition.txt
2013-09-08 12:40 - 2013-09-08 12:40 - 00000000 ____D C:\FRST
2013-09-08 12:39 - 2013-09-08 12:39 - 01948988 _____ (Farbar) C:\Users\Conny\Downloads\FRST64.exe
2013-09-08 12:39 - 2013-09-08 12:38 - 00000472 _____ C:\Users\Conny\Downloads\defogger_disable.log
2013-09-08 12:38 - 2013-09-08 12:38 - 00000000 _____ C:\Users\Conny\defogger_reenable
2013-09-08 12:38 - 2011-01-04 19:02 - 00000000 ____D C:\Users\Conny
2013-09-08 12:37 - 2013-09-08 12:37 - 00050477 _____ C:\Users\Conny\Downloads\Defogger.exe
2013-09-08 12:27 - 2010-11-11 07:04 - 00707226 _____ C:\Windows\system32\perfh007.dat
2013-09-08 12:27 - 2010-11-11 07:04 - 00153628 _____ C:\Windows\system32\perfc007.dat
2013-09-08 12:27 - 2009-07-14 07:13 - 01642316 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-08 04:27 - 2011-03-23 23:36 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Skype
2013-09-08 02:54 - 2012-05-01 03:47 - 00060416 ___SH C:\Users\Conny\Documents\Thumbs.db
2013-09-06 22:35 - 2012-11-03 20:34 - 00397312 ___SH C:\Users\Conny\Desktop\Thumbs.db
2013-09-06 22:34 - 2013-09-06 22:34 - 00000000 _____ C:\Windows\setuperr.log
2013-09-06 19:27 - 2013-09-06 13:28 - 96462459 _____ C:\Windows\SysWOW64\顩讴¦
2013-09-06 17:36 - 2013-09-06 17:36 - 00000000 ____D C:\ProgramData\GlarySoft
2013-09-06 17:31 - 2013-03-31 18:58 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FirstRowSportApp.com
2013-09-06 17:31 - 2012-10-28 18:45 - 00000000 ____D C:\Windows\Minidump
2013-09-06 17:31 - 2009-07-27 22:41 - 00000000 ____D C:\Windows\Panther
2013-09-06 17:26 - 2013-09-06 17:26 - 00002630 _____ C:\Windows\System32\Tasks\GlaryInitialize 3
2013-09-06 17:26 - 2013-09-06 17:26 - 00001092 _____ C:\Users\Public\Desktop\Glary Utilities 3.lnk
2013-09-06 17:26 - 2013-09-06 17:26 - 00000075 _____ C:\DiskDefrag.log
2013-09-06 17:26 - 2011-07-19 21:45 - 00000000 ____D C:\Users\Conny\AppData\Roaming\GlarySoft
2013-09-06 17:25 - 2013-09-06 17:25 - 16243768 _____ C:\Users\Conny\Downloads\Glary_Utilities_v3.9.1.exe
2013-09-06 13:42 - 2012-12-27 20:04 - 00000448 ____H C:\Windows\Tasks\Norton Security Scan for Conny.job
2013-09-06 00:57 - 2011-06-29 02:20 - 00061803 _____ C:\Windows\wininit.ini
2013-09-05 18:01 - 2011-07-24 18:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-05 17:29 - 2013-09-05 17:27 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-05 17:28 - 2013-09-05 17:28 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-09-05 17:28 - 2013-05-09 07:59 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-05 17:28 - 2013-03-31 18:32 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-05 17:28 - 2013-03-31 18:32 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-05 17:27 - 2013-09-05 17:27 - 00001391 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-09-05 17:27 - 2011-07-24 18:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2013-09-05 17:26 - 2013-09-05 17:26 - 37672592 _____ (Safer-Networking Ltd. ) C:\Users\Conny\Downloads\spybotsd-2.1.21-SR2.exe
2013-09-04 23:25 - 2011-06-04 11:08 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-02 11:09 - 2013-09-06 17:26 - 00117024 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2013-08-26 05:38 - 2013-08-26 05:38 - 00000000 ____D C:\Users\Conny\AppData\Roaming\DivX
2013-08-24 23:39 - 2012-04-22 08:33 - 00059480 _____ C:\Users\Conny\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-24 23:38 - 2009-07-14 06:45 - 00284200 _____ C:\Windows\system32\FNTCACHE.DAT
2013-08-24 19:19 - 2013-08-24 19:19 - 00000052 _____ C:\Users\Conny\AppData\Roaming\WB.CFG
2013-08-24 19:18 - 2013-08-24 19:18 - 00000000 ____D C:\Users\Conny\AppData\Local\avgchrome
2013-08-24 18:23 - 2013-08-24 18:23 - 00001621 _____ C:\Users\Conny\Desktop\DivX Movies.lnk
2013-08-24 18:23 - 2013-08-24 18:20 - 00000000 ____D C:\ProgramData\DivX
2013-08-24 18:23 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\DivX
2013-08-24 18:22 - 2013-08-24 18:22 - 00001124 _____ C:\Users\Public\Desktop\DivX Plus Player.lnk
2013-08-24 18:21 - 2013-08-24 18:21 - 00001164 _____ C:\Users\Public\Desktop\DivX Plus Converter.lnk
2013-08-24 18:21 - 2013-08-24 18:21 - 00000000 ____D C:\Program Files\DivX
2013-08-24 18:20 - 2013-08-24 18:20 - 00715038 _____ C:\Windows\unins000.exe
2013-08-24 18:20 - 2013-08-24 18:20 - 00001990 _____ C:\Windows\unins000.dat
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\LavFilters
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Users\Conny\AppData\Roaming\CDXReader
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\OpenSource Flash Video Splitter
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\Haali
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\ffdshow
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\DSP-worx
2013-08-24 18:20 - 2013-08-24 18:20 - 00000000 ____D C:\Program Files (x86)\DirectVobSub
2013-08-24 18:19 - 2013-08-24 18:19 - 00705136 _____ C:\Users\Conny\Downloads\UltimateCodec.exe
2013-08-24 18:12 - 2013-08-24 18:12 - 03986216 _____ (Smart PC Solutions ) C:\Users\Conny\Downloads\PCSpeedMaximizer.exe
2013-08-23 19:07 - 2013-08-23 19:05 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Eiszeichnen Waldau
2013-08-23 19:05 - 2013-08-23 18:58 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Allgäu Urlaub
2013-08-23 19:04 - 2013-08-23 18:58 - 00000000 ____D C:\Users\Conny\Desktop\08.2013 Wilhelma
2013-08-23 19:00 - 2013-08-23 18:57 - 00000000 ____D C:\Users\Conny\Desktop\03.08.2013 Flynn Geburtstag
2013-08-23 18:54 - 2012-04-15 02:53 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-23 18:54 - 2012-04-15 02:53 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-23 18:54 - 2011-06-04 20:40 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-22 07:47 - 2013-08-22 07:47 - 00000000 ____D C:\Program Files (x86)\SkypeWebPlugin
2013-08-21 09:46 - 2012-04-25 19:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-20 11:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-18 20:49 - 2013-08-18 20:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-15 22:07 - 2013-08-15 22:03 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 22:03 - 2011-02-17 21:39 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Files to move or delete:
====================
C:\Users\Conny\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-06 09:08
==================== End Of Log ============================ --- --- ---
--- --- --- |