andrey86 | 18.10.2013 12:15 | Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-10-2013
Ran by xxxxxx at 2013-10-18 13:08:20
Running from xxxxxxxx
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.20
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.10)
ATK Hotkey (Version: 1.0.0052)
ATK Media (Version: 2.0.0005)
Avira Free Antivirus (Version: 13.0.0.4052)
Brother MFL-Pro Suite DCP-7055W (Version: 1.0.9.0)
Canon IJ Network Scan Utility
Canon Utilities Digital Photo Professional 1.0 (Version: 1.0)
Canon Utilities Digital Photo Professional 3.11 (Version: 3.11.31.0)
Canon Utilities My Printer
CCleaner (Version: 4.06)
CDBurnerXP (Version: 4.4.1.3341)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0314)
DHTML Editing Component (Version: 6.02.0001)
dreamboxEDIT -- The one and only settings editor for your Dreambox
ICQ7M (Version: 7.8)
IrfanView (remove only) (Version: 4.35)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
Java SE Development Kit 7 Update 5 (Version: 1.7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Camera Codec Pack (Version: 16.4.1970.0624)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.4763.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MyFreeCodec
NAVIGON Fresh 3.4.1 (Version: 3.4.1)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
NVIDIA Drivers (Version: 1.3)
PaperPort Image Printer (Version: 1.00.0001)
PDFCreator (Version: 1.6.1)
PDF-XChange 2012 Pro (Version: 5.0.260.0)
PS3 Media Server (Version: 1.54.0)
Realtek High Definition Audio Driver (Version: 6.0.1.5938)
RICOH R5U230 Media Driver ver.2.05.02.02 (Version: 2.05.02.02)
Rossmann Fotowelt Software 4.12.1 (Version: 4.12.1)
Samsung Kies (Version: 2.5.0.12114_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.18.0)
Scansoft PDF Professional
Skype™ 6.3 (Version: 6.3.107)
Synaptics Pointing Device Driver (Version: 13.2.6.1)
TeamViewer 8 (Version: 8.0.16642)
Turbo Lister 2 (Version: 2.00.0000)
VLC media player 2.0.2 (Version: 2.0.2)
WIDCOMM Bluetooth Software (Version: 6.2.0.9600)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR 4.20 (32-Bit) (Version: 4.20.0)
==================== Restore Points =========================
21-07-2013 10:12:24 Geplanter Prüfpunkt
28-07-2013 12:21:52 Microsoft Camera Codec Pack wurde installiert
29-07-2013 19:10:50 Compatibility Pack für 2007 Office System wird installiert
29-07-2013 19:13:10 Compatibility Pack für 2007 Office System wird entfernt
27-08-2013 14:02:13 Geplanter Prüfpunkt
09-09-2013 18:02:17 Geplanter Prüfpunkt
17-09-2013 16:21:09 Installed Java 7 Update 40
07-10-2013 18:36:23 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {16D2C088-C742-4EBD-8466-4B77F46A4138} - System32\Tasks\{38C4F3BD-2DA6-4669-B50E-FFE6E5D9B8E2} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {623CA40F-9387-4079-8D7F-65E51300CDE6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-08] (Adobe Systems Incorporated)
Task: {70E5F148-422E-4660-A070-5D47ADE2DEB1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {BEEE3525-BFCB-46D0-8629-8B5230CFDCEB} - System32\Tasks\{F22FA6CF-0D76-4CAF-A2F5-8913B7603BDE} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DC15A151-8DB3-44A8-90A8-8C825C869856} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {DFD5DBA4-4CDB-40B3-B8EC-509980A899AA} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2009-07-14] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2013-03-27 14:29 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2009-07-01 18:03 - 2009-07-01 18:03 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2013-09-17 19:20 - 2013-09-17 19:20 - 03279768 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/18/2013 01:08:21 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:08:21.105]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:07:08 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:07:08.296]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:05:56 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:05:56.386]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:04:47 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:04:47.322]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:03:35 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:03:35.827]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:02:23 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:02:23.833]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:01:11 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 13:01:11.808]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:59:58 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 12:59:58.831]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:58:49 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/10/18 12:58:49.099]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:58:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: avnotify.exe, Version: 13.6.20.2100, Zeitstempel: 0x51e6b921
Name des fehlerhaften Moduls: avnotify.exe, Version: 13.6.20.2100, Zeitstempel: 0x51e6b921
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001487
ID des fehlerhaften Prozesses: 0x1064
Startzeit der fehlerhaften Anwendung: 0xavnotify.exe0
Pfad der fehlerhaften Anwendung: avnotify.exe1
Pfad des fehlerhaften Moduls: avnotify.exe2
Berichtskennung: avnotify.exe3
System errors:
=============
Error: (10/14/2013 00:33:28 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (10/14/2013 00:33:28 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (10/14/2013 10:51:30 AM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (10/14/2013 10:51:30 AM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (10/14/2013 08:51:27 AM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (10/14/2013 08:51:27 AM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/30/2013 09:31:07 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/30/2013 09:31:07 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/26/2013 06:26:17 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/26/2013 06:26:17 PM) (Source: ACPI) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Microsoft Office Sessions:
=========================
Error: (10/18/2013 01:08:21 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:08:21.105]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:07:08 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:07:08.296]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:05:56 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:05:56.386]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:04:47 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:04:47.322]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:03:35 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:03:35.827]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:02:23 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:02:23.833]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 01:01:11 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 13:01:11.808]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:59:58 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 12:59:58.831]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:58:49 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/10/18 12:58:49.099]: [00000736]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.37]
Error: (10/18/2013 00:58:11 PM) (Source: Application Error)(User: )
Description: avnotify.exe13.6.20.210051e6b921avnotify.exe13.6.20.210051e6b921c000000500001487106401cecbf0ee7693eaC:\Program Files\Avira\AntiVir Desktop\avnotify.exeC:\Program Files\Avira\AntiVir Desktop\avnotify.exe2d28f628-37e4-11e3-8530-002243cc29dc
==================== Memory info ===========================
Percentage of memory in use: 36%
Total physical RAM: 3052.11 MB
Available physical RAM: 1930.53 MB
Total Pagefile: 6102.5 MB
Available Pagefile: 4937.78 MB
Total Virtual: 2047.88 MB
Available Virtual: 1880.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:272.42 GB) (Free:204.94 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:181.61 GB) (Free:144.03 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 97646C29)
Partition 1: (Active) - (Size=272 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=182 GB) - (Type=OF Extended)
==================== End Of Log ============================
FRST
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by xxx (administrator) on xxxx on 18-10-2013 13:07:36
Running fromxxxxxx
Microsoft Windows 7 Home Premium (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Teruten) C:\Windows\system32\FsUsbExService.Exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(CANON INC.) C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
() C:\Windows\System32\ccPrxy.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7739936 2009-09-15] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-20] (Synaptics Incorporated)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [1983816 2009-07-26] (CANON INC.)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2009-04-20] (ASUS)
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM\...\Run: [IJNetworkScanUtility] - C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [136544 2009-05-19] (CANON INC.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [ControlCenter4] - C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2011-04-20] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] - C:\Program Files\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [ccPrxy.exe] - C:\Windows\system32\ccPrxy.exe [20480 2009-07-14] ()
HKCU\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
MountPoints2: {68d44a73-c5e4-11e1-a906-806e6f6e6963} - E:\InstAll.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.asus.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKCU - DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?utf8in=1&fr=ietb&q={SearchTerms}
SearchScopes: HKCU - {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?utf8in=1&fr=ietb&q={SearchTerms}
BHO: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll (Tracker Software Products (Canada) Ltd.)
BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\Tracker Software\PDF-XChange 5\PXCIEaddin5.dll (Tracker Software Products (Canada) Ltd.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default
FF SelectedSearchEngine: ПоиÑк@Mail.Ru
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF SearchPlugin: C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: toolbar - C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\Extensions\toolbar@gmx.net.xpi
FF Extension: No Name - C:\Users\LIbrecht\AppData\Roaming\Mozilla\Firefox\Profiles\78pelyym.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.)
R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-08-05] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-08-31] (DT Soft Ltd)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2013-02-05] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [14392 2009-05-13] (ASUS)
S3 NETw1v32; C:\Windows\System32\DRIVERS\NETw1v32.sys [5958656 2009-07-20] (Intel Corporation)
R2 rixdpcie; C:\Windows\System32\DRIVERS\rixdpe86.sys [38400 2009-07-04] (REDC)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-05] (Avira GmbH)
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-18 13:07 - 2013-10-18 13:07 - 01087213 _____ (Farbar) C:\Users\xxx\Desktop\FRST.exe
2013-10-18 13:07 - 2013-10-18 13:07 - 00000000 ____D C:\FRST
2013-10-17 22:37 - 2013-10-17 22:37 - 00098304 _____ C:\Windows\KB925273-dir.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00040960 _____ C:\Windows\KB936891-doc.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\KB890123-sy.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00020480 _____ C:\Windows\KB877527-ldup.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00016384 _____ C:\Windows\KB914268-inf.log
2013-10-17 22:31 - 2009-07-14 04:37 - 00020480 ____N C:\Windows\system32\ccPrxy.exe
2013-10-17 22:20 - 2013-10-17 22:20 - 00602112 _____ (OldTimer Tools) C:\Users\LIbrecht\Desktop\OTL.exe
2013-10-17 22:14 - 2013-10-17 22:14 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-17 22:14 - 2013-10-17 22:14 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\Malwarebytes
2013-10-17 22:13 - 2013-10-17 22:14 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-17 22:13 - 2013-10-17 22:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-17 22:13 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-17 21:42 - 2013-10-17 21:42 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-17 21:42 - 2013-10-17 21:42 - 00000000 ____D C:\Program Files\CCleaner
2013-10-17 21:08 - 2013-10-17 22:10 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\Systweak
2013-10-17 19:53 - 2013-10-17 22:37 - 00021216 _____ C:\Windows\ldjs.txt
2013-10-14 07:44 - 2013-10-14 07:44 - 00000000 ____D C:\Users\LIbrecht\Desktop\IAC8008HS
2013-10-12 19:32 - 2013-10-12 19:51 - 00000000 ____D C:\Users\LIbrecht\Desktop\MAX Video
2013-10-08 22:07 - 2013-10-10 21:06 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-06 00:33 - 2013-10-06 08:49 - 00000000 ____D C:\Users\LIbrecht\Desktop\NAVIGON
==================== One Month Modified Files and Folders =======
2013-10-18 13:07 - 2013-10-18 13:07 - 01087213 _____ (Farbar) C:\Users\LIbrecht\Desktop\FRST.exe
2013-10-18 13:07 - 2013-10-18 13:07 - 00000000 ____D C:\FRST
2013-10-18 13:06 - 2013-04-24 17:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-18 13:04 - 2009-07-14 06:34 - 00014608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-18 13:04 - 2009-07-14 06:34 - 00014608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-18 13:00 - 2012-07-04 16:33 - 01298629 _____ C:\Windows\WindowsUpdate.log
2013-10-18 12:57 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-18 12:57 - 2009-07-14 06:39 - 00101390 _____ C:\Windows\setupact.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00098304 _____ C:\Windows\KB925273-dir.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00040960 _____ C:\Windows\KB936891-doc.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\KB890123-sy.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00020480 _____ C:\Windows\KB877527-ldup.log
2013-10-17 22:37 - 2013-10-17 22:37 - 00016384 _____ C:\Windows\KB914268-inf.log
2013-10-17 22:37 - 2013-10-17 19:53 - 00021216 _____ C:\Windows\ldjs.txt
2013-10-17 22:33 - 2012-07-04 16:59 - 00095496 _____ C:\Windows\PFRO.log
2013-10-17 22:20 - 2013-10-17 22:20 - 00602112 _____ (OldTimer Tools) C:\Users\LIbrecht\Desktop\OTL.exe
2013-10-17 22:14 - 2013-10-17 22:14 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-17 22:14 - 2013-10-17 22:14 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\Malwarebytes
2013-10-17 22:14 - 2013-10-17 22:13 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-10-17 22:13 - 2013-10-17 22:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-17 22:10 - 2013-10-17 21:08 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\Systweak
2013-10-17 21:42 - 2013-10-17 21:42 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-17 21:42 - 2013-10-17 21:42 - 00000000 ____D C:\Program Files\CCleaner
2013-10-17 20:54 - 2013-06-29 23:51 - 00000000 ____D C:\Users\LIbrecht\Desktop\102CANON
2013-10-17 20:06 - 2011-01-28 19:35 - 00000000 ____D C:\Users\LIbrecht\Desktop\100CANON
2013-10-15 22:16 - 2012-07-17 16:40 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\vlc
2013-10-14 12:49 - 2012-07-04 15:45 - 00000000 ____D C:\Users\LIbrecht\Desktop\Internet
2013-10-14 07:44 - 2013-10-14 07:44 - 00000000 ____D C:\Users\LIbrecht\Desktop\IAC8008HS
2013-10-12 19:51 - 2013-10-12 19:32 - 00000000 ____D C:\Users\LIbrecht\Desktop\MAX Video
2013-10-12 18:42 - 2013-05-09 13:39 - 00000000 ____D C:\Users\LIbrecht\Desktop\für natascha
2013-10-10 21:06 - 2013-10-08 22:07 - 17813896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2013-10-10 21:06 - 2012-07-04 19:49 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-10 21:06 - 2012-07-04 19:49 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-06 08:49 - 2013-10-06 00:33 - 00000000 ____D C:\Users\LIbrecht\Desktop\NAVIGON
2013-10-01 18:06 - 2009-08-20 05:40 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-30 09:11 - 2012-07-04 20:12 - 00000000 ____D C:\Users\LIbrecht\AppData\Roaming\Skype
2013-09-19 14:50 - 2012-07-04 18:09 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
Some content of TEMP:
====================
C:\Users\LIbrecht\AppData\Local\Temp\AskSLib.dll
C:\Users\LIbrecht\AppData\Local\Temp\GuardMailRu.exe
C:\Users\LIbrecht\AppData\Local\Temp\jna1609584646615689623.dll
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\LIbrecht\AppData\Local\Temp\MSETUP4.EXE
C:\Users\LIbrecht\AppData\Local\Temp\ose00000.exe
C:\Users\LIbrecht\AppData\Local\Temp\SkypeSetup.exe
C:\Users\LIbrecht\AppData\Local\Temp\_is2D27.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-13 18:24
==================== End Of Log ============================ --- --- --- |