Also, erstmal VIELEN DANK für deine schnelle Antwort! WOW
Hier mal die FRST-Datei:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-09-2013
Ran by Jacqueline (administrator) on JACQUELINE-HP on 27-09-2013 21:30:41
Running from C:\Users\Jacqueline\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
( ) C:\Windows\system32\lxducoms.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Dropbox, Inc.) C:\Users\Jacqueline\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Windows Net) C:\Users\Jacqueline\AppData\Roaming\Windows Net Data\net.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
() C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxdumon.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
() C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxduMsdMon.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Easybits) C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\system32\consent.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2799912 2011-06-10] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [525312 2010-12-17] (IDT, Inc.)
HKLM\...\Run: [SetDefault] - C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [42808 2011-06-27] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1281512 2013-01-27] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-09-04] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [DisableChangePassword] 0
HKCU\...\Policies\Explorer: [DisallowRun] 1
MountPoints2: G - G:\OpenFiles.exe
MountPoints2: {a79b393f-bd7f-11e2-9348-441ea1de96bc} - G:\OpenFiles.exe
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPQuickWebProxy] - C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [168504 2011-06-27] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [37960 2013-05-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [lxdumon.exe] - C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxdumon.exe [676520 2010-02-04] ()
HKLM-x32\...\Run: [lxduamon] - C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxduamon.exe [16040 2010-02-04] ()
HKLM-x32\...\Run: [Win7PDF] - C:\Program Files\PDF Printer for Windows 7\PDF.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254896 2012-09-17] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411440 2013-08-15] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Magic Desktop for HP notification] - C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1238016 2013-07-27] (Easybits)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
Startup: C:\Users\Jacqueline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Jacqueline\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Jacqueline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Jacqueline\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
Startup: C:\Users\Jacqueline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/1
URLSearchHook: (No Name) - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - No File
URLSearchHook: (No Name) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - No File
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM - {3A613D1D-9637-4C3E-83D4-48C7C344D785} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://at.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-111072-7833-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 - {3A613D1D-9637-4C3E-83D4-48C7C344D785} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://at.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-111072-7833-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKCU - {3A613D1D-9637-4C3E-83D4-48C7C344D785} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://at.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-111072-7833-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files (x86)\Lexmark Printable Web\bho.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {C840E246-6B95-475E-9BD7-CAA1C7ECA9F2} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 212.186.211.21 195.34.133.21
FireFox:
========
FF ProfilePath: C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default
FF Homepage: about:home|hxxp://www.giga.de/my_homepage/1024/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF Extension: Visualisateur 3D de 20-20 - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default\Extensions\2020Player_IKEA@2020Technologies.com
FF Extension: Amazon-Icon - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default\Extensions\amazon-icon@winload.de
FF Extension: pricealarm - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default\Extensions\EFGLQA@78ETGYN-0W7FN789T87.COM
FF Extension: Spartipps von SparPilot.com - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default\Extensions\sparpilot@sparpilot.com
FF Extension: No Name - C:\Users\Jacqueline\AppData\Roaming\Mozilla\Firefox\Profiles\o0pihqt3.default\Extensions\{add05588-65ac-4bbd-91ec-36c013386613}.xpi
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: () - C:\Users\JACQUE~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab\background.html
CHR HKLM-x32\...\Chrome\Extension: [leocdeigfnkaojcapikdjcdbedcjmffc] - C:\Users\JACQUE~1\AppData\Local\Temp\crx7C16.tmp
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Jacqueline\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-05] (Advanced Micro Devices, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
R2 lxdu_device; C:\Windows\system32\lxducoms.exe [1039360 2009-10-16] ( )
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-27 21:30 - 2013-09-27 21:30 - 00000000 ____D C:\FRST
2013-09-27 21:29 - 2013-09-27 21:30 - 01953854 _____ (Farbar) C:\Users\Jacqueline\Downloads\FRST64.exe
2013-09-27 21:20 - 2013-09-27 21:20 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{E62885A7-A12C-4F82-B73C-F19D3363B135}
2013-09-27 09:05 - 2013-09-27 09:05 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{01830236-415D-4D52-9E5D-8BB631F33CBC}
2013-09-27 08:54 - 2013-09-27 08:54 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Malwarebytes
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-27 08:54 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-26 18:30 - 2013-09-26 18:30 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-09-26 17:47 - 2013-09-26 17:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jacqueline\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-09-26 17:44 - 2013-09-26 17:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jacqueline\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-26 16:05 - 2013-09-26 16:05 - 02092792 _____ C:\Users\Jacqueline\Downloads\avira_free_4052_antivirus.exe
2013-09-26 15:49 - 2013-09-26 15:49 - 00000000 ____D C:\Users\Jacqueline\Desktop\Nachhilfe
2013-09-26 10:52 - 2013-09-26 10:52 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-09-26 10:22 - 2013-09-26 10:22 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-09-26 10:14 - 2013-09-26 10:14 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-09-26 10:11 - 2013-09-26 10:21 - 00002002 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-09-26 10:11 - 2013-09-26 10:11 - 00001992 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\Documents\samsung
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Samsung
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Samsung
2013-09-26 10:08 - 2013-04-18 19:08 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2013-09-26 10:08 - 2013-04-18 19:06 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-09-26 10:06 - 2013-09-26 10:22 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-09-26 10:06 - 2013-09-26 10:09 - 00000000 ____D C:\ProgramData\Samsung
2013-09-26 10:04 - 2013-09-26 10:22 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Downloaded Installations
2013-09-26 10:03 - 2013-09-26 10:03 - 69552992 _____ (Samsung Electronics Co., Ltd. ) C:\Users\Jacqueline\Downloads\KiesSetup.exe
2013-09-26 08:29 - 2013-09-26 08:29 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D5C64D3A-1543-442A-A9EF-69787FAE42C6}
2013-09-25 12:49 - 2013-09-25 14:01 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Windows Net Data
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\ChromeExtensions
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp62cffb5f9d426b6d803b2d8a9bdd823d
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp5482275e3530aa9bd615635939968a27
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp2daf80f7e738224c09a386a7a8275c1d
2013-09-25 12:48 - 2013-09-25 12:48 - 01345792 _____ C:\Users\Jacqueline\Downloads\SuperOneClick-Setup.exe
2013-09-25 12:42 - 2013-09-25 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2013-09-24 10:32 - 2013-09-24 10:32 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{292877C1-9F36-4CC9-9A7C-F5467A76CBCE}
2013-09-24 10:07 - 2013-09-24 10:07 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{C8DA8C11-AA8A-414C-96AD-B695B3C0BEE4}
2013-09-23 12:50 - 2013-09-23 12:50 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{411F5C89-49E9-4EAE-AE27-1051EF24969C}
2013-09-22 20:28 - 2013-09-22 20:28 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{A9ECEE26-1105-4AD4-B974-2A00A9135D47}
2013-09-22 18:10 - 2013-09-22 19:03 - 00000000 ____D C:\Users\Jacqueline\Desktop\Literatur Diplomarbeit
2013-09-20 10:43 - 2013-09-20 10:43 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{E52688C0-E12F-4976-9A05-F929E21E1E02}
2013-09-18 11:11 - 2013-09-18 11:12 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{1886B67B-1EAB-422A-87E3-BA3BABAB8AEE}
2013-09-16 10:35 - 2013-09-16 10:35 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{94C4C92E-5445-4698-8AFC-4CE730A83F5C}
2013-09-13 21:51 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-13 21:51 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-13 21:51 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-13 21:51 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-13 21:51 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-13 21:51 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-13 21:51 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-13 21:51 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-13 21:51 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-13 21:51 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-13 21:51 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-13 21:51 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-13 21:51 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-13 21:51 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-12 22:20 - 2013-09-13 19:18 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{66EFC7C5-2E46-4510-B47C-FF495A647F73}
2013-09-12 13:21 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-12 13:21 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 13:21 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 13:21 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-12 13:21 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-12 13:21 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-12 13:21 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 13:21 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-12 13:21 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 13:21 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-12 13:21 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-12 13:21 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-12 13:21 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-12 13:21 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-12 13:21 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 13:21 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-12 13:21 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 13:21 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-12 13:20 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-12 13:20 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-12 13:20 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-12 13:20 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-12 13:20 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 13:20 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-12 13:20 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 13:20 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 13:20 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-12 13:20 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-12 09:11 - 2013-09-12 09:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{85DA70E8-D684-4BE9-AB74-3FA530AE292A}
2013-09-11 19:52 - 2013-09-11 19:52 - 435300643 _____ C:\Windows\MEMORY.DMP
2013-09-11 19:52 - 2013-09-11 19:52 - 00305448 _____ C:\Windows\Minidump\091113-57236-01.dmp
2013-09-11 19:52 - 2013-09-11 19:52 - 00000000 ____D C:\Windows\Minidump
2013-09-11 10:09 - 2013-09-11 10:09 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{789FE9AB-3F9F-4341-B2DD-69D372D35459}
2013-09-10 09:48 - 2013-09-10 09:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{44CC5B01-816F-4BC8-A2F9-89EB8F869BAB}
2013-09-09 21:48 - 2013-09-09 21:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{026013E0-4416-4DFE-9605-54B520B789AD}
2013-09-09 09:58 - 2013-09-09 09:57 - 00425064 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2013-09-09 09:58 - 2013-09-09 09:57 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2013-09-09 09:48 - 2013-09-09 09:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{11FF364A-3A14-4DFF-811E-44D08E5308AD}
2013-09-06 09:57 - 2013-09-06 09:57 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D9FB7FC6-917A-4196-96AD-A138AF0C1FEA}
2013-09-05 10:21 - 2013-09-05 10:21 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{760D6EAB-4FA6-4E66-974D-6EB4A33B44A8}
2013-09-05 01:43 - 2013-09-05 01:43 - 00045880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys
2013-09-04 09:38 - 2013-09-04 09:38 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{604FF817-65AA-4468-A091-866868ADA32C}
2013-09-03 10:26 - 2013-09-03 10:26 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{4B0D5A6D-1DC1-466E-945D-21A8416D7F9B}
2013-09-02 09:58 - 2013-09-02 09:58 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{CA054B8B-1C6E-4E38-A250-D5585BA0A23D}
2013-08-31 11:11 - 2013-08-31 11:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{761C8188-FA2D-4E37-A534-F2850C07D7C2}
2013-08-30 08:24 - 2013-08-30 08:24 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D3F83DF1-E636-4FD8-B14E-60408C21F23B}
==================== One Month Modified Files and Folders =======
2013-09-27 21:30 - 2013-09-27 21:30 - 00000000 ____D C:\FRST
2013-09-27 21:30 - 2013-09-27 21:29 - 01953854 _____ (Farbar) C:\Users\Jacqueline\Downloads\FRST64.exe
2013-09-27 21:26 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-27 21:26 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-27 21:22 - 2011-09-15 01:41 - 01252533 _____ C:\Windows\WindowsUpdate.log
2013-09-27 21:20 - 2013-09-27 21:20 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{E62885A7-A12C-4F82-B73C-F19D3363B135}
2013-09-27 21:19 - 2012-03-12 20:32 - 00000000 ___RD C:\Users\Jacqueline\Dropbox
2013-09-27 21:19 - 2012-03-12 20:30 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Dropbox
2013-09-27 21:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-27 21:16 - 2009-07-14 06:51 - 00124046 _____ C:\Windows\setupact.log
2013-09-27 20:46 - 2012-04-03 08:19 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-27 20:10 - 2010-11-21 05:47 - 00382472 _____ C:\Windows\PFRO.log
2013-09-27 20:08 - 2013-03-04 11:32 - 00000000 ____D C:\ProgramData\MFAData
2013-09-27 20:07 - 2011-10-29 19:26 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\SoftGrid Client
2013-09-27 20:04 - 2013-07-06 09:37 - 00000000 ____D C:\Users\Jacqueline\Desktop\Pablo Arbeit
2013-09-27 20:04 - 2012-07-28 09:35 - 00003216 _____ C:\Windows\System32\Tasks\HPCeeScheduleForJacqueline
2013-09-27 20:04 - 2012-07-28 09:35 - 00000352 _____ C:\Windows\Tasks\HPCeeScheduleForJacqueline.job
2013-09-27 20:04 - 2011-11-10 19:54 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Skype
2013-09-27 20:04 - 2011-10-28 18:02 - 00003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9492721E-B895-4B3A-ACB6-B93217A00044}
2013-09-27 09:05 - 2013-09-27 09:05 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{01830236-415D-4D52-9E5D-8BB631F33CBC}
2013-09-27 08:54 - 2013-09-27 08:54 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Malwarebytes
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-27 08:54 - 2013-09-27 08:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-26 18:30 - 2013-09-26 18:30 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-09-26 18:30 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-09-26 18:17 - 2013-05-29 09:27 - 00000000 ____D C:\Users\Jacqueline\Desktop\Pablo
2013-09-26 17:48 - 2013-09-26 17:47 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jacqueline\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-09-26 17:48 - 2013-09-26 17:44 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jacqueline\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-26 16:43 - 2013-03-04 11:32 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Avg2013
2013-09-26 16:05 - 2013-09-26 16:05 - 02092792 _____ C:\Users\Jacqueline\Downloads\avira_free_4052_antivirus.exe
2013-09-26 15:49 - 2013-09-26 15:49 - 00000000 ____D C:\Users\Jacqueline\Desktop\Nachhilfe
2013-09-26 15:17 - 2011-07-19 20:45 - 00697322 _____ C:\Windows\system32\perfh007.dat
2013-09-26 15:17 - 2011-07-19 20:45 - 00148328 _____ C:\Windows\system32\perfc007.dat
2013-09-26 15:17 - 2009-07-14 07:13 - 01614036 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-26 15:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-26 10:52 - 2013-09-26 10:52 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-09-26 10:23 - 2011-07-19 11:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 10:22 - 2013-09-26 10:22 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-09-26 10:22 - 2013-09-26 10:06 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-09-26 10:22 - 2013-09-26 10:04 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Downloaded Installations
2013-09-26 10:21 - 2013-09-26 10:11 - 00002002 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-09-26 10:14 - 2013-09-26 10:14 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-09-26 10:11 - 2013-09-26 10:11 - 00001992 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\Documents\samsung
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Samsung
2013-09-26 10:11 - 2013-09-26 10:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Samsung
2013-09-26 10:09 - 2013-09-26 10:06 - 00000000 ____D C:\ProgramData\Samsung
2013-09-26 10:03 - 2013-09-26 10:03 - 69552992 _____ (Samsung Electronics Co., Ltd. ) C:\Users\Jacqueline\Downloads\KiesSetup.exe
2013-09-26 08:29 - 2013-09-26 08:29 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D5C64D3A-1543-442A-A9EF-69787FAE42C6}
2013-09-26 08:25 - 2011-11-08 21:21 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\CrashDumps
2013-09-25 14:01 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Roaming\Windows Net Data
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\ChromeExtensions
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp62cffb5f9d426b6d803b2d8a9bdd823d
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp5482275e3530aa9bd615635939968a27
2013-09-25 12:49 - 2013-09-25 12:49 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\Temp2daf80f7e738224c09a386a7a8275c1d
2013-09-25 12:49 - 2011-10-28 18:02 - 00000000 ___RD C:\Users\Jacqueline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-25 12:49 - 2011-10-28 17:56 - 00000000 ____D C:\Users\Jacqueline
2013-09-25 12:48 - 2013-09-25 12:48 - 01345792 _____ C:\Users\Jacqueline\Downloads\SuperOneClick-Setup.exe
2013-09-25 12:42 - 2013-09-25 12:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2013-09-25 11:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-24 14:22 - 2013-03-19 11:02 - 00000000 ____D C:\Users\Jacqueline\Desktop\DaF SS 13
2013-09-24 10:32 - 2013-09-24 10:32 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{292877C1-9F36-4CC9-9A7C-F5467A76CBCE}
2013-09-24 10:07 - 2013-09-24 10:07 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{C8DA8C11-AA8A-414C-96AD-B695B3C0BEE4}
2013-09-23 12:50 - 2013-09-23 12:50 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{411F5C89-49E9-4EAE-AE27-1051EF24969C}
2013-09-22 20:28 - 2013-09-22 20:28 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{A9ECEE26-1105-4AD4-B974-2A00A9135D47}
2013-09-22 19:03 - 2013-09-22 18:10 - 00000000 ____D C:\Users\Jacqueline\Desktop\Literatur Diplomarbeit
2013-09-22 18:03 - 2011-10-29 17:02 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-09-22 18:02 - 2011-11-20 10:35 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-09-20 10:46 - 2012-04-03 08:19 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-20 10:46 - 2012-04-03 08:19 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-20 10:46 - 2011-07-19 11:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-20 10:43 - 2013-09-20 10:43 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{E52688C0-E12F-4976-9A05-F929E21E1E02}
2013-09-18 11:12 - 2013-09-18 11:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{1886B67B-1EAB-422A-87E3-BA3BABAB8AEE}
2013-09-16 10:35 - 2013-09-16 10:35 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{94C4C92E-5445-4698-8AFC-4CE730A83F5C}
2013-09-14 19:04 - 2013-03-04 11:43 - 00000981 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-09-14 18:51 - 2011-10-28 18:02 - 00000000 ___RD C:\Users\Jacqueline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-14 18:50 - 2009-07-14 06:45 - 00317160 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-13 21:51 - 2011-10-29 19:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-13 21:51 - 2011-09-15 01:51 - 01641654 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-13 20:48 - 2012-07-20 09:06 - 00000000 ____D C:\Users\Jacqueline\Desktop\Sonstiges
2013-09-13 19:18 - 2013-09-12 22:20 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{66EFC7C5-2E46-4510-B47C-FF495A647F73}
2013-09-12 09:11 - 2013-09-12 09:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{85DA70E8-D684-4BE9-AB74-3FA530AE292A}
2013-09-11 19:52 - 2013-09-11 19:52 - 435300643 _____ C:\Windows\MEMORY.DMP
2013-09-11 19:52 - 2013-09-11 19:52 - 00305448 _____ C:\Windows\Minidump\091113-57236-01.dmp
2013-09-11 19:52 - 2013-09-11 19:52 - 00000000 ____D C:\Windows\Minidump
2013-09-11 19:50 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-09-11 11:41 - 2011-10-28 18:00 - 00074136 _____ C:\Users\Jacqueline\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-11 10:09 - 2013-09-11 10:09 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{789FE9AB-3F9F-4341-B2DD-69D372D35459}
2013-09-10 09:48 - 2013-09-10 09:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{44CC5B01-816F-4BC8-A2F9-89EB8F869BAB}
2013-09-09 21:48 - 2013-09-09 21:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{026013E0-4416-4DFE-9605-54B520B789AD}
2013-09-09 10:07 - 2011-07-19 11:31 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-09-09 10:06 - 2011-07-19 11:18 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-09-09 10:05 - 2011-02-10 21:23 - 00000000 ____D C:\SWSetup
2013-09-09 10:01 - 2011-09-15 01:54 - 00000000 ____D C:\Program Files (x86)\Realtek
2013-09-09 10:00 - 2011-09-15 01:57 - 00878184 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192ce.sys
2013-09-09 09:57 - 2013-09-09 09:58 - 00425064 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2013-09-09 09:57 - 2013-09-09 09:58 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll
2013-09-09 09:57 - 2011-09-15 01:55 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2013-09-09 09:48 - 2013-09-09 09:48 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{11FF364A-3A14-4DFF-811E-44D08E5308AD}
2013-09-06 09:57 - 2013-09-06 09:57 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D9FB7FC6-917A-4196-96AD-A138AF0C1FEA}
2013-09-05 10:21 - 2013-09-05 10:21 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{760D6EAB-4FA6-4E66-974D-6EB4A33B44A8}
2013-09-05 01:43 - 2013-09-05 01:43 - 00045880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys
2013-09-04 09:38 - 2013-09-04 09:38 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{604FF817-65AA-4468-A091-866868ADA32C}
2013-09-03 18:17 - 2011-12-14 19:43 - 00000000 ____D C:\ProgramData\lx_Cats
2013-09-03 10:26 - 2013-09-03 10:26 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{4B0D5A6D-1DC1-466E-945D-21A8416D7F9B}
2013-09-02 09:58 - 2013-09-02 09:58 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{CA054B8B-1C6E-4E38-A250-D5585BA0A23D}
2013-08-31 11:11 - 2013-08-31 11:11 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{761C8188-FA2D-4E37-A534-F2850C07D7C2}
2013-08-30 08:24 - 2013-08-30 08:24 - 00000000 ____D C:\Users\Jacqueline\AppData\Local\{D3F83DF1-E636-4FD8-B14E-60408C21F23B}
Some content of TEMP:
====================
C:\Users\Jacqueline\AppData\Local\Temp\amazonicon.exe
C:\Users\Jacqueline\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\Jacqueline\AppData\Local\Temp\comic!.exe
C:\Users\Jacqueline\AppData\Local\Temp\contentDATs.exe
C:\Users\Jacqueline\AppData\Local\Temp\Extract.exe
C:\Users\Jacqueline\AppData\Local\Temp\HPHelpUpdater.exe
C:\Users\Jacqueline\AppData\Local\Temp\ICReinstall_bechdel_fun.pdf.exe
C:\Users\Jacqueline\AppData\Local\Temp\installhelper.dll
C:\Users\Jacqueline\AppData\Local\Temp\install_reader10_de_mssa_aih.exe
C:\Users\Jacqueline\AppData\Local\Temp\IPx64_1031.exe
C:\Users\Jacqueline\AppData\Local\Temp\JavaIC.dll
C:\Users\Jacqueline\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Jacqueline\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Jacqueline\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Jacqueline\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Jacqueline\AppData\Local\Temp\msbtwygu.dll
C:\Users\Jacqueline\AppData\Local\Temp\msscct32.dll
C:\Users\Jacqueline\AppData\Local\Temp\Resource.exe
C:\Users\Jacqueline\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Jacqueline\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Jacqueline\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Jacqueline\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP53794.exe
C:\Users\Jacqueline\AppData\Local\Temp\sp54620.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP54714.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP55081.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP55083.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP55085.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP55152.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP56215.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP56878.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP56929.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP57049.exe
C:\Users\Jacqueline\AppData\Local\Temp\sp58915.exe
C:\Users\Jacqueline\AppData\Local\Temp\SP59792.exe
C:\Users\Jacqueline\AppData\Local\Temp\SRAssetsHelper.dll
C:\Users\Jacqueline\AppData\Local\Temp\tbuTo0.dll
C:\Users\Jacqueline\AppData\Local\Temp\tbWinl.dll
C:\Users\Jacqueline\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Jacqueline\AppData\Local\Temp\utt2CE2.tmp.exe
C:\Users\Jacqueline\AppData\Local\Temp\utt456A.tmp.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-23 21:53
==================== End Of Log ============================ --- --- ---
--- --- ---
Und hier die Addition-Datei: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-09-2013
Ran by Jacqueline at 2013-09-27 21:33:24
Running from C:\Users\Jacqueline\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {3F839487-C7A2-C958-E30C-E2825BA31FB5}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2013 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: Microsoft Security Essentials (Enabled - Up to date) {84E27563-E198-C6D6-D9BC-D9F020245508}
==================== Installed Programs ======================
µTorrent (x32 Version: 3.0.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Reader X (10.1.2) MUI (x32 Version: 10.1.2)
Adobe Reader X (10.1.7) - Deutsch (x32 Version: 10.1.7)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.9.620)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Catalyst Install Manager (Version: 3.0.847.0)
AMD Fuel (Version: 2011.0705.1115.18310)
AMD Media Foundation Decoders (Version: 1.0.60705.1113)
AMD Steady Video Plug-In (Version: 1.00.0000)
AMD System Monitor (x32 Version: 1.0.6)
AMD VISION Engine Control Center (x32 Version: 2011.0705.1115.18310)
Audacity 2.0.2 (x32 Version: 2.0.2)
AVG 2013 (Version: 13.0.3222)
AVG 2013 (Version: 13.0.3408)
AVG 2013 (Version: 2013.0.3408)
Bejeweled 3 (x32 Version: 2.2.0.97)
Blasterball 3 (x32 Version: 2.2.0.97)
Bounce Symphony (x32 Version: 2.2.0.97)
Bullzip PDF Printer 9.0.0.1437 (Version: 9.0.0.1437)
Cake Mania (x32 Version: 2.2.0.95)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0705.1115.18310)
Catalyst Control Center InstallProxy (x32 Version: 2011.0928.607.9079)
Catalyst Control Center Localization All (x32 Version: 2011.0705.1115.18310)
CCC Help Chinese Standard (x32 Version: 2011.0705.1114.18310)
CCC Help Chinese Traditional (x32 Version: 2011.0705.1114.18310)
CCC Help Czech (x32 Version: 2011.0705.1114.18310)
CCC Help Danish (x32 Version: 2011.0705.1114.18310)
CCC Help Dutch (x32 Version: 2011.0705.1114.18310)
CCC Help English (x32 Version: 2011.0705.1114.18310)
CCC Help Finnish (x32 Version: 2011.0705.1114.18310)
CCC Help French (x32 Version: 2011.0705.1114.18310)
CCC Help German (x32 Version: 2011.0705.1114.18310)
CCC Help Greek (x32 Version: 2011.0705.1114.18310)
CCC Help Hungarian (x32 Version: 2011.0705.1114.18310)
CCC Help Italian (x32 Version: 2011.0705.1114.18310)
CCC Help Japanese (x32 Version: 2011.0705.1114.18310)
CCC Help Korean (x32 Version: 2011.0705.1114.18310)
CCC Help Norwegian (x32 Version: 2011.0705.1114.18310)
CCC Help Polish (x32 Version: 2011.0705.1114.18310)
CCC Help Portuguese (x32 Version: 2011.0705.1114.18310)
CCC Help Russian (x32 Version: 2011.0705.1114.18310)
CCC Help Spanish (x32 Version: 2011.0705.1114.18310)
CCC Help Swedish (x32 Version: 2011.0705.1114.18310)
CCC Help Thai (x32 Version: 2011.0705.1114.18310)
CCC Help Turkish (x32 Version: 2011.0705.1114.18310)
ccc-utility64 (Version: 2011.0705.1115.18310)
Chronicles of Albian (x32 Version: 2.2.0.95)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Cradle of Rome 2 (x32 Version: 2.2.0.95)
CyberLink YouCam (x32 Version: 3.5.1.4119)
D3DX10 (x32 Version: 15.4.2368.0902)
Dropbox (HKCU Version: 2.0.22)
ESU for Microsoft Windows 7 SP1 (x32 Version: 2.1.1)
Evernote v. 4.2.3 (x32 Version: 4.2.3.22)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE (x32 Version: 2.2.0.97)
FlexPoints 2.01 (x32 Version: 2.01.0000)
Free Easy Burner V 5.1 (x32 Version: 5.1.0.0)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.1.0)
HP Games (x32 Version: 1.0.2.5)
HP Launch Box (Version: 1.0.11)
HP On Screen Display (x32 Version: 1.3.5)
HP Power Manager (x32 Version: 1.4.7)
HP Quick Launch (x32 Version: 2.7.2)
HP QuickWeb (x32 Version: 3.1.0.9760)
HP Setup (x32 Version: 8.7.4751.3798)
HP Setup Manager (x32 Version: 1.1.13476.3753)
HP Software Framework (x32 Version: 4.5.10.1)
HP Support Assistant (x32 Version: 7.0.39.15)
IDT Audio (x32 Version: 1.0.6319.0)
Java Auto Updater (x32 Version: 2.0.7.2)
Java(TM) 6 Update 39 (x32 Version: 6.0.390)
Jewel Quest Solitaire (x32 Version: 2.2.0.95)
Jewel Quest: The Sleepless Star - Collector's Edition (x32 Version: 2.2.0.95)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Kalender-Excel-8.9 (x32 Version: 8.9)
Lexmark (x32 Version: 1.0.0.0)
Lexmark 5600-6600 Series (x32)
Mah Jong Medley (x32 Version: 2.2.0.95)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.5128.5002)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 23.0.1 (x86 en-US) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MyFreeCodec (HKCU)
Mystery of Mortlake Mansion (x32 Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (x32 Version: 2.2.0.95)
OpenOffice.org 3.3 (x32 Version: 3.3.9567)
Penguins! (x32 Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.97)
Realtek Ethernet Controller Driver (x32 Version: 7.40.126.2011)
Realtek PCIE Card Reader (x32 Version: 6.1.7601.83)
REALTEK Wireless LAN Driver (x32 Version: 1.00.11.0706)
Recovery Manager (x32 Version: 2.0.0)
Samsung Kies (x32 Version: 2.5.3.13043_14)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Skype™ 6.1 (x32 Version: 6.1.129)
Slingo Deluxe (x32 Version: 2.2.0.95)
Synaptics Pointing Device Driver (Version: 15.3.11.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update Installer for WildTangent Games App (x32)
Vacation Quest - The Hawaiian Islands (x32 Version: 2.2.0.97)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 1.1.11 (x32 Version: 1.1.11)
WildTangent Games App (x32 Version: 4.0.10.2)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Utils (x32)
Zuma Deluxe (x32 Version: 2.2.0.95)
==================== Restore Points =========================
08-09-2013 17:19:15 Windows Update
09-09-2013 07:54:42 HPSF Applying updates
09-09-2013 07:55:14 HPSF Applying updates
09-09-2013 07:57:36 Installiert Realtek Ethernet Controller Driver
09-09-2013 08:01:03 Installiert REALTEK PCIE Wireless LAN Driver
09-09-2013 08:03:40 Removed HP Quick Launch
09-09-2013 08:04:21 Installed HP Quick Launch
09-09-2013 08:05:56 Removed HP Power Manager
09-09-2013 08:06:34 Installed HP Power Manager
11-09-2013 19:42:23 Windows Update
13-09-2013 19:44:30 Windows Update
18-09-2013 09:19:15 Windows Update
22-09-2013 16:02:04 Windows Update
26-09-2013 08:05:02 Installed Samsung Kies
26-09-2013 08:23:00 Installiert Samsung Story Album Viewer
26-09-2013 14:51:52 Windows Modules Installer
27-09-2013 07:07:08 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {3A77DEC1-55BA-4AB0-AC60-0AF2103C0FF3} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation)
Task: {5240D81D-554F-45C7-9DF6-AA535401AC4D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20] (Adobe Systems Incorporated)
Task: {68C91B21-A2A2-4C14-B373-16FED64874DE} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-06-15] (CyberLink)
Task: {85DDBEAF-4D1F-4D2C-806F-143E7A4A9CE9} - System32\Tasks\{2B411F57-1605-4A71-AEBE-3E153F721A1A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.115.161/en/abandoninstall?page=tsMain
Task: {938BA4D4-06FE-4D75-AD34-BFAEAE55BC0E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {9677F4CC-9CCF-4EC9-8810-E16C0BC845FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {996BD7D6-B0D8-4E6E-803A-1DDF66513AE3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {9B1CE13A-D800-474E-BF3B-206FEC40558F} - System32\Tasks\User_Feed_Synchronization-{9492721E-B895-4B3A-ACB6-B93217A00044} => C:\Windows\system32\msfeedssync.exe [2013-07-17] (Microsoft Corporation)
Task: {A48B9794-92F9-46DD-93D9-B8B8C3F65C9D} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {A7F432BD-5104-486E-8373-646C349D7DD3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-04-01] (Hewlett-Packard Company)
Task: {B7E3EF82-61E5-40C8-8A40-98521D2876DF} - System32\Tasks\HPCeeScheduleForJacqueline => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {DA6BD1C9-BAAC-4766-BFC6-89D915EC33CE} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2011-10-29] (Microsoft Corporation)
Task: {EF1D219C-9705-4E5B-8176-8E1A010AEEF6} - System32\Tasks\Installation App Launcher => C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxduamon.exe [2010-02-04] ()
Task: {F45389D7-C316-4823-A5D9-3E009EFB79C0} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2011-06-27] ()
Task: {F6745AEC-01D1-41F7-A90E-11A02F223630} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-08-09] (Hewlett-Packard)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForJacqueline.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2011-07-05 11:27 - 2011-07-05 11:27 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-05 11:13 - 2011-07-05 11:13 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-17 13:42 - 2011-06-17 13:42 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 24978944 _____ () C:\Users\Jacqueline\AppData\Roaming\Dropbox\bin\libcef.dll
2011-01-17 17:19 - 2011-11-04 09:58 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2011-12-14 19:39 - 2010-02-04 06:52 - 00380928 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxduscw.dll
2011-12-14 19:39 - 2009-10-16 12:53 - 00188416 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxdudatr.dll
2011-12-14 19:39 - 2009-10-16 12:53 - 00073728 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxducats.dll
2011-12-14 19:39 - 2010-02-04 06:52 - 01036288 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxduDRS.dll
2011-12-14 19:39 - 2010-02-04 06:52 - 00081920 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxducaps.dll
2011-12-14 19:39 - 2010-02-04 06:35 - 00069632 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\lxducnv4.dll
2011-12-14 19:39 - 2010-01-21 07:09 - 00028672 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\App4R.Monitor.Common.dll
2011-12-14 19:39 - 2010-01-21 07:09 - 00036864 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\App4R.Monitor.Core.dll
2011-12-14 19:39 - 2010-01-21 07:08 - 00065536 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\app4r.devmons.mcmdevmon.dll
2011-12-14 19:39 - 2008-03-25 05:53 - 00012288 _____ () C:\Program Files (x86) (x86)\Lexmark 5600-6600 Series\app4r.devmons.mcmdevmon.autoplayutil.dll
2013-08-19 11:58 - 2013-08-19 11:59 - 03551640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/27/2013 09:17:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/27/2013 08:11:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/27/2013 08:48:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/26/2013 05:53:07 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:53:00 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:52:52 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:52:46 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:52:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:52:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (09/26/2013 05:52:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
System errors:
=============
Error: (09/27/2013 09:17:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Client Virtualization Handler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (09/27/2013 09:17:08 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Client Virtualization Handler erreicht.
Error: (09/27/2013 09:16:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.
Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126
Error: (09/27/2013 09:02:22 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (09/27/2013 08:12:54 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (09/27/2013 08:10:45 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.
Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126
Error: (09/27/2013 08:08:37 PM) (Source: Service Control Manager) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (09/27/2013 09:10:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definitionsupdate für Microsoft Security Essentials – KB2310138 (Definition 1.159.851.0)
Error: (09/27/2013 09:09:36 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.159.672.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.2.0223.00
Quellpfad: 4.2.0223.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (09/27/2013 08:47:31 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lxdu_device" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office Sessions:
=========================
Error: (09/27/2013 09:17:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/27/2013 08:11:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/27/2013 08:48:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/26/2013 05:53:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_cdburnerxp-pro(1).exe
Error: (09/26/2013 05:53:00 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_fuer_excel-kalender-vorlage.exe
Error: (09/26/2013 05:52:52 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_sharepod(1).exe
Error: (09/26/2013 05:52:46 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_mediamonkey.exe
Error: (09/26/2013 05:52:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_free-easy-cd-dvd-burner.exe
Error: (09/26/2013 05:52:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_sharepod.exe
Error: (09/26/2013 05:52:44 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Jacqueline\Downloads\SoftonicDownloader_para_cdburnerxp-pro.exe
==================== Memory info ===========================
Percentage of memory in use: 54%
Total physical RAM: 3561.41 MB
Available physical RAM: 1622.48 MB
Total Pagefile: 7121 MB
Available Pagefile: 4479.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:678.76 GB) (Free:475.58 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery) (Fixed) (Total:15.71 GB) (Free:1.71 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.1 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 1ECE8725)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=679 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=4 GB) - (Type=0C)
==================== End Of Log ============================ Soll ich die Log-Dateien von Malwarebytes auch noch hinzufügen?
LG Jacqueline |