LuckyLukeAUT | 09.07.2013 20:39 | FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-07-2013 01
Ran by Q45 (administrator) on 09-07-2013 21:36:27
Running from C:\Users\Q45\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Avira\AntiVir Desktop\sched.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\System32\ChgService.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\ProgramData\MobileBrServ\mbbservice.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\Malwarebytes' Anti-Malware\mbamgui.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files\ZTE Join Air\AssistantServices.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(SoftPerfect Research) C:\Program Files\networx\networx.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Dropbox, Inc.) C:\Users\Q45\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
() C:\Program Files\ZTE Join Air\UIMain.exe
() C:\Program Files\ZTE Join Air\CMUpdater.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_7_700_224.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [173592 2009-09-23] (Intel Corporation)
HKLM\...\Run: [Persistence] - C:\Windows\system32\igfxpers.exe [150552 2009-09-23] (Intel Corporation)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [839680 2007-04-17] (Synaptics, Inc.)
HKLM\...\Run: [TrueImageMonitor.exe] - C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [5082488 2009-09-12] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] - "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe" [357800 2009-09-12] (Acronis)
HKLM\...\Run: [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [avgnt] - "C:\Program Files\Avira\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - "C:\Program Files\iTunes\iTunesHelper.exe" [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [NetWorx] - "C:\Program Files\NetWorx\networx.exe" /auto [3340920 2013-06-07] (SoftPerfect Research)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [x]
MountPoints2: E - E:\AutoRun.exe
MountPoints2: {18e6c420-9549-11e2-8d01-001fe1f5eed8} - E:\AutoRun.exe
MountPoints2: {1930fa93-7f8c-11e0-8094-001fe1f5eed8} - G:\SETUP.EXE
MountPoints2: {3c0d479d-1f9a-11e2-8ddd-001fe1f5eed8} - E:\AutoRun.exe
MountPoints2: {3c0d47bb-1f9a-11e2-8ddd-001fe1f5eed8} - E:\AutoRun.exe
MountPoints2: {56ff7684-5cc4-11e2-8da8-001fe1f5eed8} - E:\AutoRun.exe
MountPoints2: {56ff7689-5cc4-11e2-8da8-001fe1f5eed8} - E:\AutoRun.exe
MountPoints2: {7d13bf8a-da70-11e1-8946-001377900955} - E:\.\ShowModem.exe
MountPoints2: {8638f28d-0a07-11e2-8da9-001fe1f5eed8} - E:\AutoRun.exe
HKU\Default\...\RunOnce: [mctadmin] - C:\Windows\System32\mctadmin.exe [ 2009-07-14] (Microsoft Corporation)
Startup: C:\ProgramData\Start Menu\Programs\Startup\BTTray.lnk
ShortcutTarget: BTTray.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Q45\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Q45\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gmx.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
SearchScopes: HKCU - {CAEF0CD8-17E0-4725-A595-AA7DA380EF3B} URL = hxxp://www.ant.com/search?s=browser&q={searchTerms}
BHO: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files\Ant.com\IE add-on\download.dll (Ant.com)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU -Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{741C406B-32E1-47A4-8861-BCC5700C3390}: [NameServer]213.94.78.17 213.94.78.16
FireFox:
========
FF ProfilePath: C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default
FF Homepage: https://www.facebook.com/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Q45\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\searchplugins\ixquick-https---deutsch.xml
FF Extension: DoNotTrackMe - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\donottrackplus@abine.com
FF Extension: MaskMe - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\idme@abine.com
FF Extension: yogurttree - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\theme@yogurttree.com
FF Extension: WOT - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: DownloadHelper - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: firegestures - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\firegestures@xuldev.org.xpi
FF Extension: jid1-JcGokIiQyjoBAQ - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\jid1-JcGokIiQyjoBAQ@jetpack.xpi
FF Extension: optout - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\optout@google.com.xpi
FF Extension: No Name - C:\Users\Q45\AppData\Roaming\Mozilla\Firefox\Profiles\hu72az5x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========================== Services (Whitelisted) =================
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [660936 2009-09-12] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2326920 2011-05-24] (Acronis)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Avira\AntiVir Desktop\sched.exe [84024 2013-06-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-24] (Avira Operations GmbH & Co. KG)
R2 Change Modem Device Service; C:\Windows\System32\ChgService.exe [135168 2010-10-28] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [230240 2012-09-29] ()
R2 UI Assistant Service; C:\Program Files\ZTE Join Air\AssistantServices.exe [241664 2009-03-24] ()
S3 AVG Security Toolbar Service; C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe [x]
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [84744 2013-05-16] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135136 2013-05-16] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-05-16] (Avira Operations GmbH & Co. KG)
S3 cmnsusbser; C:\Windows\System32\DRIVERS\cmnsusbser.sys [105984 2010-10-28] (QUALCOMM Incorporated)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [24232 2009-02-17] (Elaborate Bytes AG)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 networx; C:\Windows\System32\drivers\networx.sys [52728 2013-01-25] (NetFilterSDK.com)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-05-16] (Avira GmbH)
R0 tdrpman251; C:\Windows\System32\DRIVERS\tdrpm251.sys [902432 2011-05-24] (Acronis)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-08-14] (Microsoft Corporation)
R1 vpcnfltr; C:\Windows\System32\DRIVERS\vpcnfltr.sys [55040 2009-08-14] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-08-14] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [293904 2009-08-14] (Microsoft Corporation)
S3 zte_cdc_acm; C:\Windows\System32\DRIVERS\zte_cdc_acm.sys [67968 2011-08-11] (ZTE)
S3 zte_cdc_ecm; C:\Windows\System32\DRIVERS\zte_cdc_ecm.sys [32768 2011-08-11] (ZTE)
S3 zte_cpo; C:\Windows\System32\DRIVERS\zte_cpo.sys [9984 2011-08-11] (ZTE)
S3 zte_ecm_enum; C:\Windows\System32\DRIVERS\zte_ecm_enum.sys [47488 2011-08-11] (ZTE)
S3 zte_ecm_enum_filter; C:\Windows\System32\DRIVERS\zte_ecm_enum_filter.sys [47488 2011-08-11] (ZTE)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
S3 VMC302; System32\Drivers\VMC302.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-09 21:36 - 2013-07-09 21:36 - 00000000 ____D C:\FRST
2013-07-09 21:35 - 2013-07-09 21:35 - 01216688 ____A (Farbar) C:\Users\Q45\Desktop\FRST.exe
2013-07-09 01:01 - 2013-07-09 01:02 - 00001374 ____A C:\Windows\System32\Drivers\etc\hosts.txt
2013-07-07 23:56 - 2013-07-08 02:24 - 345830261 ____A C:\Users\Q45\Desktop\dernaechstebitte.mp4
2013-07-07 17:54 - 2013-07-07 22:05 - 262715562 ____A C:\Users\Q45\Desktop\dashaeltkeinjahr.flv
2013-07-05 14:32 - 2013-07-05 14:32 - 00001321 ____A C:\Users\Q45\Desktop\JoinAir.lnk
2013-07-05 14:32 - 2009-01-09 08:56 - 00000621 ____A C:\NetworkCfg.xml
2013-07-05 14:11 - 2013-07-05 14:11 - 00000000 ____D C:\ProgramData\SoftPerfect
2013-07-05 14:11 - 2013-01-25 22:44 - 00052728 ____A (NetFilterSDK.com) C:\Windows\System32\Drivers\networx.sys
2013-07-05 14:10 - 2013-07-08 23:39 - 00000000 ____D C:\Program Files\networx
2013-07-05 13:05 - 2013-07-05 13:05 - 00000489 ____A C:\Reload.log
2013-07-05 12:54 - 2013-07-05 12:54 - 00000017 ____A C:\Users\Q45\AppData\Local\resmon.resmoncfg
2013-07-04 09:52 - 2013-07-04 09:52 - 00000000 ____D C:\Users\Q45\Documents\Fax
2013-07-03 18:39 - 2013-06-28 16:45 - 00000000 ____D C:\Users\Q45\Desktop\Wohnung
2013-07-03 11:18 - 2013-07-03 12:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-06-30 17:30 - 2013-06-30 17:30 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-06-26 15:19 - 2013-06-27 16:41 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-06-19 13:37 - 2013-06-12 21:48 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-06-19 13:37 - 2013-06-12 21:43 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-19 13:37 - 2013-06-12 21:43 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-19 13:37 - 2013-06-12 21:43 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2013-06-19 13:36 - 2013-06-19 13:37 - 00004932 ____A C:\Windows\System32\jupdate-1.7.0_25-b16.log
2013-06-19 13:17 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-19 13:17 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-19 13:17 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-19 13:17 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-19 13:17 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-19 13:17 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-19 12:56 - 2013-05-17 03:26 - 00042496 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-19 12:56 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-19 12:56 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-19 12:56 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-19 12:43 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-19 12:43 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-19 12:42 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-19 12:42 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-19 12:42 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-19 12:42 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-19 12:42 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-19 12:42 - 2013-05-08 07:38 - 01293672 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-19 12:42 - 2013-05-06 07:06 - 03968872 ____A (Microsoft Corporation) C:\Windows\System32\ntkrnlpa.exe
2013-06-19 12:42 - 2013-05-06 07:06 - 03913576 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2013-06-19 12:42 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-19 12:42 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
==================== One Month Modified Files and Folders =======
2013-07-09 21:36 - 2013-07-09 21:36 - 00000000 ____D C:\FRST
2013-07-09 21:35 - 2013-07-09 21:35 - 01216688 ____A (Farbar) C:\Users\Q45\Desktop\FRST.exe
2013-07-09 21:24 - 2013-05-14 15:53 - 00000000 ____D C:\Users\Q45\AppData\Roaming\Dropbox
2013-07-09 21:22 - 2013-04-03 17:13 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-09 21:20 - 2013-06-04 01:03 - 00000000 ____D C:\Users\Q45\AppData\Roaming\BitTorrent
2013-07-09 18:42 - 2011-05-16 09:05 - 01764231 ____A C:\Windows\WindowsUpdate.log
2013-07-09 09:06 - 2011-05-16 14:53 - 00000000 ____D C:\Users\Q45\AppData\Local\Adobe
2013-07-09 01:09 - 2013-05-14 15:58 - 00000000 ___RD C:\Users\Q45\Dropbox
2013-07-09 01:07 - 2012-04-07 19:22 - 00000292 ____A C:\Windows\Tasks\AutoKMS.job
2013-07-09 01:07 - 2009-07-14 06:53 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-09 01:07 - 2009-07-14 06:39 - 00082208 ____A C:\Windows\setupact.log
2013-07-09 01:02 - 2013-07-09 01:01 - 00001374 ____A C:\Windows\System32\Drivers\etc\hosts.txt
2013-07-08 23:39 - 2013-07-05 14:10 - 00000000 ____D C:\Program Files\networx
2013-07-08 20:59 - 2013-05-19 15:24 - 00000000 ____D C:\Users\Q45\AppData\Roaming\vlc
2013-07-08 19:24 - 2011-05-16 09:18 - 02327870 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-08 19:24 - 2009-08-14 14:34 - 00676496 ____A C:\Windows\System32\perfh019.dat
2013-07-08 19:24 - 2009-08-14 14:34 - 00133054 ____A C:\Windows\System32\perfc019.dat
2013-07-08 13:39 - 2009-07-14 06:34 - 00010288 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-08 13:39 - 2009-07-14 06:34 - 00010288 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-08 02:24 - 2013-07-07 23:56 - 345830261 ____A C:\Users\Q45\Desktop\dernaechstebitte.mp4
2013-07-08 00:52 - 2011-05-24 01:30 - 00000000 ____D C:\Users\Q45\AppData\Roaming\Skype
2013-07-07 22:05 - 2013-07-07 17:54 - 262715562 ____A C:\Users\Q45\Desktop\dashaeltkeinjahr.flv
2013-07-06 16:51 - 2013-05-24 19:10 - 00000000 ____D C:\Users\Q45\Desktop\Holland
2013-07-05 14:43 - 2012-07-30 18:42 - 00000000 ____D C:\Users\Q45\AppData\Local\Apple Computer
2013-07-05 14:32 - 2013-07-05 14:32 - 00001321 ____A C:\Users\Q45\Desktop\JoinAir.lnk
2013-07-05 14:32 - 2013-05-09 21:09 - 00000000 ____D C:\Program Files\ZTE Join Air
2013-07-05 14:11 - 2013-07-05 14:11 - 00000000 ____D C:\ProgramData\SoftPerfect
2013-07-05 13:39 - 2013-04-16 02:24 - 00000000 ____D C:\Program Files\ZNES
2013-07-05 13:05 - 2013-07-05 13:05 - 00000489 ____A C:\Reload.log
2013-07-05 13:05 - 2013-05-09 21:09 - 00037651 ____A C:\Windows\ZTEInstallInfo.log
2013-07-05 13:05 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\DriverStore
2013-07-05 12:54 - 2013-07-05 12:54 - 00000017 ____A C:\Users\Q45\AppData\Local\resmon.resmoncfg
2013-07-05 11:33 - 2013-04-03 16:22 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-04 09:52 - 2013-07-04 09:52 - 00000000 ____D C:\Users\Q45\Documents\Fax
2013-07-03 12:29 - 2013-07-03 11:18 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-06-30 17:30 - 2013-06-30 17:30 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-06-28 16:45 - 2013-07-03 18:39 - 00000000 ____D C:\Users\Q45\Desktop\Wohnung
2013-06-27 16:41 - 2013-06-26 15:19 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-06-25 00:23 - 2013-05-28 02:33 - 00000000 ____D C:\Users\Q45\Desktop\berry
2013-06-24 19:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-06-24 11:06 - 2013-05-17 10:53 - 00067168 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-19 14:36 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-06-19 13:37 - 2013-06-19 13:36 - 00004932 ____A C:\Windows\System32\jupdate-1.7.0_25-b16.log
2013-06-19 13:37 - 2013-05-16 22:09 - 00000000 ____D C:\Program Files\Java
2013-06-19 13:20 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\ru-RU
2013-06-19 13:20 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\System32\de-DE
2013-06-19 13:15 - 2011-05-16 12:56 - 73381792 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-19 12:32 - 2009-07-14 06:33 - 03837928 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-19 00:14 - 2011-05-16 14:00 - 00116584 ____A C:\Users\Q45\AppData\Local\GDIPFONTCACHEV1.DAT
2013-06-18 23:22 - 2013-04-03 17:13 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerApp.exe
2013-06-18 23:22 - 2013-04-03 17:13 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2013-06-12 21:48 - 2013-06-19 13:37 - 00094632 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge.dll
2013-06-12 21:48 - 2013-05-16 22:13 - 00867240 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll
2013-06-12 21:48 - 2013-05-16 22:13 - 00789416 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2013-06-12 21:43 - 2013-06-19 13:37 - 00263592 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2013-06-12 21:43 - 2013-06-19 13:37 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2013-06-12 21:43 - 2013-06-19 13:37 - 00175016 ____A (Oracle Corporation) C:\Windows\System32\java.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
nointegritychecks: ==> Integrity Checks is disabled <===== ATTENTION!
LastRegBack: 2013-07-03 20:03
==================== End Of Log ============================ --- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-07-2013 01
Ran by Q45 at 2013-07-09 21:37:16
Running from C:\Users\Q45\Desktop
Boot Mode: Normal
==========================================================
Acronis*True*Image*Home (Version: 13.0.5055)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.0.0)
Adobe After Effects CS4 Third Party Content (Version: 9)
Adobe AIR (Version: 3.7.0.1530)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Creative Suite 4 Master Collection (Version: 4.0)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Download Assistant (Version: 1.2.5)
Adobe Encore CS4 Codecs (Version: 4)
Adobe Flash Player 10 ActiveX (Version: 10.0.22.87)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Help Manager (Version: 4.0.244)
Adobe InDesign CS6 (Version: 8.0)
Adobe Media Encoder CS4 Exporter (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe Media Player (Version: 1.8)
Adobe Premiere Pro CS4 Third Party Content (Version: 4)
Adobe Reader XI (11.0.03) - Deutsch (Version: 11.0.03)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Adobe Soundbooth CS4 Codecs (Version: 2)
Agere Systems HDA Modem
Ant.com IE add-on (Version: 2.2.1.75)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Avira Free Antivirus (Version: 13.0.0.3737)
Bonjour (Version: 3.0.0.10)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (HKCU Version: 2.0.22)
DVDFab 6.2.1.8 (31/12/2009)
Fotogalerie (Version: 16.4.3508.0205)
Fotostory 3 für Windows (Version: 3.0.1115.15)
Hold 'Em (Version: 6.0.6000.17034)
Intel(R) Graphics Media Accelerator Driver (Version: 8.15.10.1930)
Intel(R) PROSet/Wireless Software (Version: 11.01.0000)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Join Air (Version: 1.0.0.1)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
mCore (Version: 9.03.0000)
mDriver (Version: 9.03.0000)
mHelp (Version: 9.03.0000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access database engine 2007 (German) (Version: 12.0.6425.1000)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable Package (Version: 1.0.0)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
mMHouse (Version: 9.03.0000)
MMX310C USB Manager 2.2.5.6.2.178.1 (Version: 2.2.5.6.2.178.1)
Mobile Broadband HL Service (Version: 22.001.10.00.03)
Mobile Connect (Version: 1.00.0000)
Movie Maker (Version: 16.4.3508.0205)
Mozilla Firefox 22.0 (x86 de) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
Mozilla Thunderbird 17.0.7 (x86 de) (Version: 17.0.7)
mPfMgr (Version: 9.03.0000)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NetWorx 5.2.8
NVIDIA Drivers
PDF Settings CS5 (Version: 10.0)
PDF Settings CS6 (Version: 11.0)
Photo Common (Version: 16.4.3508.0205)
Photo Gallery (Version: 16.4.3508.0205)
PlayCamera (Version: 1.00.27)
QuickTime (Version: 7.74.80.86)
Shutdown Timer (Version: 3.3.4)
Skype™ 6.3 (Version: 6.3.107)
Suite Shared Configuration CS4 (Version: 1.0)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 9.1.15.0)
TeamViewer 8 (Version: 8.0.18051)
Unity Web Player (HKCU Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
VirtualCloneDrive
VLC media player 2.0.6 (Version: 2.0.6)
WIDCOMM Bluetooth Software (Version: 6.0.1.3700)
Windows Live Communications Platform (Version: 16.4.3508.0205)
Windows Live Essentials (Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3508.0205)
Windows Live Photo Common (Version: 16.4.3508.0205)
Windows Live PIMT Platform (Version: 16.4.3508.0205)
Windows Live SOXE (Version: 16.4.3508.0205)
Windows Live SOXE Definitions (Version: 16.4.3508.0205)
Windows Live UX Platform (Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205)
WinRAR
==================== Restore Points =========================
09-07-2013 17:49:57 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2009-07-14 04:04 - 2013-07-09 01:02 - 00001374 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 validation.sls.microsoft.com
127.0.0.1 google-analytics.com
==================== Scheduled Tasks (whitelisted) =============
Task: {00F26EE6-E01F-4004-9904-BA6526773080} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
Task: {429CDFF8-CC6D-42B2-9F96-6A7E728376A4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {AA8F2C20-9ADA-423D-A447-42113E8E3292} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask No Task File
Task: {B00FD1F9-225C-4000-B178-0BDD28820403} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {B189F942-3C8F-4492-9C82-B5B206F47D83} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B9053479-B3F5-4693-8A11-8599CAD7649D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-18] (Adobe Systems Incorporated)
Task: {EEEC4BEE-E4F9-42BA-84F7-37D25C9B2933} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe No File
Task: {F6A1E316-372D-427A-BC0D-94EF737E92E2} - System32\Tasks\AdobeAAMUpdater-1.0-Q45-PC-Q45 => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {FC04C026-A0BC-4805-A291-CAD1D5B3055A} - System32\Tasks\{846E6AC4-5C39-4011-BEC5-24E37D3D0419} => C:\Program Files\Skype\\Phone\Skype.exe [2013-04-19] (Skype Technologies S.A.)
Task: {FC94CA86-48D0-4ACC-A276-E3ADC3C0D53B} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline No Task File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/09/2013 07:47:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Plug-ins\Common\TSStrider,type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "Plug-ins\Common\TSStrider,type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 32959906
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 32959906
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 25856792
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 25856792
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8518
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8518
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
System errors:
=============
Error: (07/08/2013 01:08:04 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "DANIELA-VAIO",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5DEB763E-4CED-40F1-BDD4-241D4-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (07/07/2013 07:01:38 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (07/05/2013 00:54:05 PM) (Source: VDS Basic Provider) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004
Error: (07/05/2013 00:49:06 PM) (Source: BTHUSB) (User: )
Description: Die beiderseitige Authentifizierung zwischen dem lokalen Bluetooth-Adapter und einem Gerät mit Bluetooth-Adapteradresse (a0:07:98:66:b1:d7) ist fehlgeschlagen.
Error: (07/01/2013 00:34:40 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (06/24/2013 07:37:23 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (06/24/2013 06:48:01 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (06/24/2013 00:15:57 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Wlansvc erreicht.
Error: (06/19/2013 00:42:29 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "CARO-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5DEB763E-4CED-40F1-BDD4-241D44B0B2-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (06/18/2013 11:15:06 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office Sessions:
=========================
Error: (07/09/2013 07:47:29 PM) (Source: SideBySide)(User: )
Description: Plug-ins\Common\TSStrider,type="win32",version="1.0.0.0"c:\program files\Adobe\adobe premiere pro cs4\MPEGHDVExport.exe
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 32959906
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 32959906
Error: (07/09/2013 06:42:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 25856792
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 25856792
Error: (07/09/2013 08:56:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8518
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8518
Error: (07/09/2013 01:45:19 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
==================== Memory info ===========================
Percentage of memory in use: 55%
Total physical RAM: 3062.43 MB
Available physical RAM: 1362.56 MB
Total Pagefile: 6121.09 MB
Available Pagefile: 4065.46 MB
Total Virtual: 2047.88 MB
Available Virtual: 1899.12 MB
==================== Drives ================================
Drive c: (WINDOWS 7) (Fixed) (Total:97.56 GB) (Free:13.62 GB) NTFS
Drive f: (DATEN 7) (Fixed) (Total:135.23 GB) (Free:99.72 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: D168249C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=98 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=135 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |