Hallo,
danke für deine Hilfe. Hier die logs:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-11-2013 01
Ran by Faye (administrator) on FAYE-PC on 22-11-2013 18:15:49
Running from C:\Users\Faye\Downloads
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\windows\system32\igfxsrvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\windows\SYSTEM32\Rezip.exe
(Intel Corporation) C:\windows\system32\igfxext.exe
(Intel Corporation) C:\windows\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8092192 2009-11-18] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1578280 2009-10-10] (Synaptics Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-17] (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default\searchplugins\anime-news-network.xml
FF SearchPlugin: C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default\searchplugins\wikipedia-eng.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: FoxyProxy Basic - C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default\Extensions\foxyproxy@eric.h.jung
FF Extension: DownloadHelper - C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Adblock Plus - C:\Users\Faye\AppData\Roaming\Mozilla\Firefox\Profiles\7u3beads.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-17] (AVAST Software)
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] ()
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [35656 2013-11-17] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [70384 2013-11-17] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [79720 2013-11-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-11-17] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [774392 2013-11-17] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [403440 2013-11-17] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57672 2013-11-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-11-17] ()
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-22 18:15 - 2013-11-22 18:19 - 00006313 _____ C:\Users\Faye\Downloads\FRST.txt
2013-11-22 18:15 - 2013-11-22 18:15 - 00000000 ____D C:\FRST
2013-11-22 18:13 - 2013-11-22 18:14 - 01091001 _____ (Farbar) C:\Users\Faye\Downloads\FRST.exe
2013-11-18 21:27 - 2013-11-18 21:27 - 00000000 ____D C:\Users\Faye\AppData\Roaming\Malwarebytes
2013-11-18 21:26 - 2013-11-18 21:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-18 21:26 - 2013-11-18 21:26 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-18 21:26 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2013-11-18 21:22 - 2013-11-18 21:24 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Faye\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-17 21:30 - 2013-11-17 21:31 - 24489269 _____ C:\Users\Faye\Downloads\vlc-2.1.1-win32.exe
2013-11-17 18:29 - 2013-11-17 18:29 - 00000000 ____D C:\Users\Faye\AppData\Roaming\AVAST Software
2013-11-15 21:41 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-11-15 21:41 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-11-15 21:41 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-11-15 21:41 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-11-15 21:41 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-11-15 21:41 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-15 21:28 - 2013-11-15 21:28 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-15 20:59 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2013-11-15 20:59 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2013-11-15 20:59 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2013-11-15 20:59 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2013-11-15 20:59 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2013-11-15 20:59 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2013-11-15 20:59 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2013-11-15 20:59 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2013-11-15 20:59 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2013-11-15 20:59 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2013-11-15 20:58 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2013-11-15 20:58 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2013-11-15 20:58 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2013-11-15 20:58 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2013-11-15 20:57 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2013-10-29 22:22 - 2013-10-29 22:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-29 08:49 - 2013-10-29 08:49 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log
==================== One Month Modified Files and Folders =======
2013-11-22 18:19 - 2013-11-22 18:15 - 00006313 _____ C:\Users\Faye\Downloads\FRST.txt
2013-11-22 18:17 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-22 18:17 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-22 18:15 - 2013-11-22 18:15 - 00000000 ____D C:\FRST
2013-11-22 18:14 - 2013-11-22 18:13 - 01091001 _____ (Farbar) C:\Users\Faye\Downloads\FRST.exe
2013-11-22 18:04 - 2009-12-10 02:29 - 01566463 _____ C:\windows\WindowsUpdate.log
2013-11-22 18:02 - 2012-05-25 22:51 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-11-22 17:56 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-11-22 17:56 - 2009-07-14 05:39 - 00085091 _____ C:\windows\setupact.log
2013-11-18 23:07 - 2009-12-10 04:28 - 00783476 _____ C:\windows\PFRO.log
2013-11-18 23:07 - 2009-07-14 03:37 - 00000000 ____D C:\windows\Help
2013-11-18 21:27 - 2013-11-18 21:27 - 00000000 ____D C:\Users\Faye\AppData\Roaming\Malwarebytes
2013-11-18 21:26 - 2013-11-18 21:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-18 21:26 - 2013-11-18 21:26 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-18 21:24 - 2013-11-18 21:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Faye\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-17 21:31 - 2013-11-17 21:30 - 24489269 _____ C:\Users\Faye\Downloads\vlc-2.1.1-win32.exe
2013-11-17 20:30 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2013-11-17 18:29 - 2013-11-17 18:29 - 00000000 ____D C:\Users\Faye\AppData\Roaming\AVAST Software
2013-11-17 18:27 - 2012-05-07 22:06 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-17 18:20 - 2013-08-15 10:05 - 00403440 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2013-11-17 18:20 - 2013-08-15 10:05 - 00035656 _____ (AVAST Software) C:\windows\system32\Drivers\aswFsBlk.sys
2013-11-17 18:20 - 2013-08-15 10:04 - 00774392 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2013-11-17 18:20 - 2013-08-15 10:04 - 00178304 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-11-17 18:20 - 2013-08-15 10:04 - 00070384 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2013-11-17 18:20 - 2013-08-15 10:04 - 00057672 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2013-11-17 18:20 - 2013-08-15 10:04 - 00049944 _____ C:\windows\system32\Drivers\aswRvrt.sys
2013-11-17 18:19 - 2013-08-15 10:05 - 00079720 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2013-11-17 18:19 - 2013-08-15 10:04 - 00269216 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2013-11-17 18:19 - 2013-08-15 10:03 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2013-11-17 18:09 - 2009-07-14 03:04 - 00002577 _____ C:\windows\system32\config.nt
2013-11-17 17:51 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\de-DE
2013-11-15 21:41 - 2013-08-15 10:16 - 00000000 ____D C:\windows\system32\MRT
2013-11-15 21:36 - 2010-06-07 21:45 - 80340640 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-11-15 21:28 - 2013-11-15 21:28 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-03 23:28 - 2010-06-01 04:40 - 00000000 ____D C:\Users\Faye\AppData\Roaming\vlc
2013-10-31 08:16 - 2010-06-01 04:27 - 00000000 ____D C:\Users\Faye\AppData\Local\Mozilla
2013-10-30 19:08 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\NDF
2013-10-30 13:31 - 2009-07-26 21:06 - 01472002 _____ C:\windows\system32\PerfStringBackup.INI
2013-10-29 22:22 - 2013-10-29 22:22 - 00000000 ____D C:\ProgramData\Oracle
2013-10-29 08:55 - 2013-08-15 10:01 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-29 08:50 - 2013-06-28 20:50 - 00000000 ____D C:\Program Files\Java
2013-10-29 08:49 - 2013-10-29 08:49 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log
Files to move or delete:
====================
C:\ProgramData\PKP_DLbx.DAT
C:\ProgramData\PKP_DLck.DAT
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-20 17:58
==================== End Of Log ============================ --- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-11-2013 01
Ran by Faye at 2013-11-22 18:20:38
Running from C:\Users\Faye\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Flash Player ActiveX (Version: 9.0.124.0)
Adobe Reader X (10.1.8) - Deutsch (Version: 10.1.8)
Atheros Client Installation Program (Version: 1.0.1.0805)
avast! Free Antivirus (Version: 9.0.2008)
BatteryLifeExtender (Version: 1.0.1)
ChargeableUSB (Version: 1.0.0.0)
Easy Display Manager (Version: 3.0)
Easy Network Manager (Version: 4.2.4)
Easy Resolution Manager (Version: 1.0.0)
Easy SpeedUp Manager (Version: 3.0.0.5)
EasyBatteryManager (Version: 4.0.0.3)
El Dorado Quest
ffdshow v1.1.3814 [2011-04-11] (Version: 1.1.3814.0)
Intel(R) Graphics Media Accelerator Driver (Version: 8.14.10.2230)
Intel® Matrix Storage Manager
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Marvell Miniport Driver (Version: 11.22.3.3)
Mein eigener Bauernhof
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 25.0.1 (x86 de) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OpenOffice.org 3.2 (Version: 3.2.9483)
Picture Control Utility (Version: 1.2.1)
PreSetup HyperSpace (Version: 1.00.6627)
Realtek High Definition Audio Driver (Version: 6.0.1.5983)
REALTEK Wireless LAN Software (Version: 1.01.0088)
Samsung Recovery Solution 4 (Version: 4.0.0.42)
Skype™ 6.7 (Version: 6.7.102)
Synaptics Pointing Device Driver (Version: 14.0.10.0)
Tetris Unlimited 0.5.0 (Version: 0.5.0)
Ultima Underworld 1 and 2
User Guide (Version: 1.0)
VLC media player 2.1.1 (Version: 2.1.1)
WIDCOMM Bluetooth Software (Version: 6.2.1.800)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) (Version: 09/11/2009 6.2.0.9407)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
==================== Restore Points =========================
17-10-2013 18:13:10 Windows Update
17-10-2013 20:04:31 Windows Update
21-10-2013 19:39:43 Windows Update
29-10-2013 07:45:31 Windows Update
29-10-2013 07:55:20 avast! antivirus system restore point
15-11-2013 19:55:43 Windows Update
15-11-2013 20:34:45 Windows Update
17-11-2013 17:13:12 avast! antivirus system restore point
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0C340826-EB54-4F7B-8579-77B9583F538C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-17] (Adobe Systems Incorporated)
Task: {2D6CC0D9-7657-43C5-AAD5-0A11D0BA6B45} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2009-11-04] (Samsung Electronics Co., Ltd.)
Task: {3B05D557-7661-4BE7-8B79-F919555F78F4} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-10-16] (SAMSUNG Electronics co., LTD.)
Task: {3C27A7A6-96DF-4273-B36B-1C24842AB82C} - System32\Tasks\EasySpeedUpManager => C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe [2009-10-13] (Samsung Electronics Co., Ltd.)
Task: {3D0D3BA0-747B-41ED-B295-17AEB0B1D660} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
Task: {3DBDFE67-B086-4B50-8D36-E387F5FE36BA} - System32\Tasks\{5597D444-CF8E-4FEE-BCFE-E2E5F19DEEFA} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {7C7BE4F2-CEE7-4B9A-BA4F-D1F24ACE1420} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-11-19] (Samsung Electronics. Co. Ltd.)
Task: {7C8CACC0-8BCB-4758-A173-7B4417122E14} - System32\Tasks\{D830C876-A9C3-4B2A-A97A-12F49C0AE619} => C:\Program Files\Skype\Phone\Skype.exe [2013-07-25] (Skype Technologies S.A.)
Task: {A73C38C0-4797-4F55-AAD1-6F6E2ADEC12A} - System32\Tasks\{B80E2C2E-329F-4702-AC68-0B1489E77EFA} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=4.2.0.169.259&LastError=12007
Task: {B736AD7B-00F6-43B2-9EA5-48F4A9A4FD00} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2009-11-20] (SEC)
Task: {DCED71F5-B17C-4D2D-8BA8-96DB15965BD8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-17] (AVAST Software)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2013-11-17 18:19 - 2013-11-17 18:19 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-12-10 02:38 - 2006-08-12 04:48 - 00049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
2013-11-15 21:28 - 2013-11-15 21:28 - 03363952 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:4CF61E54
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== Faulty Device Manager Devices =============
Name: Broadcom BCM2070 Bluetooth 2.1+EDR USB Device
Description: Broadcom BCM2070 Bluetooth 2.1+EDR USB Device
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/22/2013 05:57:10 PM) (Source: ESENT) (User: )
Description: taskhost (484) Versuch, Datei "C:\Users\Faye\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/19/2013 07:17:13 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/19/2013 07:17:12 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/19/2013 07:16:10 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/19/2013 06:37:47 PM) (Source: ESENT) (User: )
Description: taskhost (468) Versuch, Datei "C:\Users\Faye\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/18/2013 07:51:56 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/18/2013 07:51:55 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/18/2013 07:50:50 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/17/2013 08:23:34 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/17/2013 08:23:32 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (11/22/2013 05:57:07 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/21/2013 08:29:28 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "UPnP-Gerätehost" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (11/21/2013 08:29:28 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "upnphost" konnte sich nicht als "NT AUTHORITY\LocalService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/21/2013 08:29:28 AM) (Source: DCOM) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}
Error: (11/21/2013 07:58:32 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/20/2013 05:39:53 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/19/2013 06:37:43 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/18/2013 11:08:13 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/18/2013 11:06:28 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (11/18/2013 07:28:16 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Microsoft Office Sessions:
=========================
Error: (11/22/2013 05:57:10 PM) (Source: ESENT)(User: )
Description: taskhost484C:\Users\Faye\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/19/2013 07:17:13 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\vista_xp_driver\x64\KStartMem.exe.Manifest
Error: (11/19/2013 07:17:12 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\ChargeableUSB_64.exe
Error: (11/19/2013 07:16:10 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KStartMem.exe.Manifest
Error: (11/19/2013 06:37:47 PM) (Source: ESENT)(User: )
Description: taskhost468C:\Users\Faye\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/18/2013 07:51:56 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\vista_xp_driver\x64\KStartMem.exe.Manifest
Error: (11/18/2013 07:51:55 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\ChargeableUSB_64.exe
Error: (11/18/2013 07:50:50 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Samsung\BatteryLifeExtender\Drv\SABI2x64\KStartMem.exe.Manifest
Error: (11/17/2013 08:23:34 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\vista_xp_driver\x64\KStartMem.exe.Manifest
Error: (11/17/2013 08:23:32 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\Samsung\chargeableusb\ChargeableUSB_64.exe
==================== Memory info ===========================
Percentage of memory in use: 78%
Total physical RAM: 1013.3 MB
Available physical RAM: 216.77 MB
Total Pagefile: 2037.3 MB
Available Pagefile: 1139.16 MB
Total Virtual: 2047.88 MB
Available Virtual: 1902 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:108.89 GB) (Free:68.74 GB) NTFS
Drive d: () (Fixed) (Total:108.89 GB) (Free:65.7 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 9D97BA08)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=109 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=109 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |