britt1405 | 02.02.2014 11:45 | FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-02-2014 03
Ran by Britta (administrator) on BRITTA-VAIO on 02-02-2014 11:25:40
Running from C:\Users\Britta\Downloads
Microsoft Windows 7 Starter (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Spigot, Inc.) C:\Program Files\Application Updater\ApplicationUpdater.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\ProgramData\DatacardService\DCService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
( ) C:\Windows\System32\lxeccoms.exe
() C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\Mcshield.exe
(McAfee, Inc.) C:\Program Files\McAfee\MPF\MpfSrv.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSK\msksrver.exe
() C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
() C:\Program Files\Verbindungsassistent\WTGService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VAIOCareService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Sony Corporation) C:\Program Files\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Sony Corporation) C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(McAfee, Inc.) C:\Program Files\McAfee.com\Agent\mcagent.exe
(Ask) C:\Program Files\Ask.com\Updater\Updater.exe
() C:\Program Files\Lexmark Pro800-Pro900 Series\lxecmon.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
() C:\Program Files\Lexmark Pro800-Pro900 Series\ezprint.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spigot, Inc.) C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcsysmon.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\mcmscsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\mcsvrcnt.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\mcupdui.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-23] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1578280 2009-12-23] (Synaptics Incorporated)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [935288 2009-09-04] (Adobe Systems Incorporated)
HKLM\...\Run: [ISBMgr.exe] - C:\Program Files\Sony\ISB Utility\ISBMgr.exe [320880 2009-08-26] (Sony Corporation)
HKLM\...\Run: [McENUI] - C:\Program Files\McAfee\MHN\McENUI.exe [1176808 2009-04-09] (McAfee, Inc.)
HKLM\...\Run: [NortonOnlineBackupReminder] - C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [538472 2009-06-17] (Symantec Corporation)
HKLM\...\Run: [PMBVolumeWatcher] - C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [597792 2009-10-24] (Sony Corporation)
HKLM\...\Run: [MarketingTools] - C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [26624 2010-07-28] (Sony Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [mcagent_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [645328 2009-05-01] (McAfee, Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [ROC_roc_ssl_v12] - "C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
HKLM\...\Run: [ApnUpdater] - C:\Program Files\Ask.com\Updater\Updater.exe [1648264 2013-04-25] (Ask)
HKLM\...\Run: [lxecmon.exe] - C:\Program Files\Lexmark Pro800-Pro900 Series\lxecmon.exe [772712 2013-01-23] ()
HKLM\...\Run: [EzPrint] - C:\Program Files\Lexmark Pro800-Pro900 Series\ezprint.exe [150264 2013-01-23] ()
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [SearchSettings] - C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe [1384256 2014-01-16] (Spigot, Inc.)
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation)
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\Run: [DAEMON Tools Pro Agent] - C:\Program Files\DAEMON Tools Pro\DTAgent.exe [570688 2010-11-11] (DT Soft Ltd)
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\Run: [MobileDocuments] - C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19604072 2013-06-03] (Skype Technologies S.A.)
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\Run: [KSS] - C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202328 2012-12-07] (Kaspersky Lab ZAO)
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\MountPoints2: D - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-412157055-3031647674-3566990054-1000\...\MountPoints2: {9f998f26-a67b-11e0-9e3a-c0cb38deadb1} - D:\AutoRun.exe
AppInit_DLLs: c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll => C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll [3618304 2013-11-18] ()
Startup: C:\Users\Britta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page =
URLSearchHook: HKCU - YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\8.6\ytdToolbarIE.dll (Spigot, Inc.)
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
SearchScopes: HKCU - DefaultScope {495D25A6-CFC7-49F6-BE80-6D710662D573} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {03E459F6-D457-40E9-89E1-A559358345C0} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^DE&apn_uid=51FE40C8-B864-47BA-A69E-52542CD59C50&apn_sauid=84D9B572-284A-4D94-91AF-EF8E428E7C4B
SearchScopes: HKCU - {196FEA37-4CF2-43EE-8A4B-6DE4D2EEB066} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {495D25A6-CFC7-49F6-BE80-6D710662D573} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {9FF0C01D-A2AD-40A7-9D41-690CD3D85437} URL = hxxp://www.zinio.com/search/index.jsp?s={searchTerms}&rf=sonyie8search
SearchScopes: HKCU - {F06FF2C3-B328-4153-9E27-7637FF170720} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-0/4?satitle={searchTerms}
SearchScopes: HKCU - {F42495F5-311F-4D12-AD9B-05D10731ADF9} URL = hxxp://de.shopping.com/?linkin_id=8056363
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - C:\Program Files\McAfee\MSK\MskAPBho.dll ()
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
BHO: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\8.6\ytdToolbarIE.dll (Spigot, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
Toolbar: HKLM - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files\YTD Toolbar\IE\8.6\ytdToolbarIE.dll (Spigot, Inc.)
Toolbar: HKCU - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Toolbar: HKCU - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll ()
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1C28AD85-539A-4182-936E-43B63AD170EE}: [NameServer]85.62.229.133 85.62.229.134
Tcpip\..\Interfaces\{8F668B9D-DC20-4404-9664-D8F7AA03D4C0}: [NameServer]85.62.229.133 85.62.229.134
Chrome:
=======
CHR HomePage: hxxp://search.babylon.com/?babsrc=HP_ss_din2g&mntrId=5C86C0CB38DEADB1&affID=121562&tsp=4923
CHR DefaultSearchKeyword: delta-search.com
CHR DefaultSearchProvider: Delta Search
CHR DefaultSearchURL: hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=5C86C0CB38DEADB1&affID=121562&tsp=4923
CHR Extension: (Angry Birds) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2012-11-08]
CHR Extension: (Google Drive) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-11-08]
CHR Extension: (YouTube) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-08]
CHR Extension: (Google Search) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-08]
CHR Extension: (Angry Birds Space) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\echcgcnnjpaoiandnoaabdpgjbkdnbdl [2012-11-08]
CHR Extension: (Angry Birds Rio) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\igpbjfbdomonphnncmmmligdokfpijkg [2012-11-08]
CHR Extension: (Google Wallet) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-30]
CHR Extension: (Angry Birds Seasons) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\phelepmjcjmdeeglafbadihdajcfbnda [2012-11-08]
CHR Extension: (Gmail) - C:\Users\Britta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-08]
CHR HKLM\...\Chrome\Extension: [aaaaojmikegpiepcfdkkjaplodkpfmlo] - C:\Users\Britta\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx [2013-02-08]
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Britta\AppData\Roaming\BabSolution\CR\Delta.crx [2013-06-24]
CHR HKLM\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files\Common Files\Spigot\GC\ErrorAssistant_1.3.crx [2013-12-27]
CHR HKLM\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files\Common Files\Spigot\GC\coupons_2.4.crx [2013-04-26]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Application Updater; C:\Program Files\Application Updater\ApplicationUpdater.exe [807800 2014-01-16] (Spigot, Inc.)
R2 BitGuard; C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3780064 2013-11-18] ()
R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [229376 2010-05-08] ()
R2 KSS; C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202328 2012-12-07] (Kaspersky Lab ZAO)
S2 lxecCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxecserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxec_device; C:\Windows\system32\lxeccoms.exe [598696 2010-04-14] ( )
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [203280 2009-01-23] ()
R2 mcmscsvc; C:\Program Files\McAfee\MSC\mcmscsvc.exe [865832 2009-05-01] (McAfee, Inc.)
R2 McNASvc; C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe [2482848 2009-04-09] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [365072 2009-05-08] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe [359952 2009-04-09] (McAfee, Inc.)
R2 McShield; C:\Program Files\McAfee\VirusScan\Mcshield.exe [144704 2009-05-13] (McAfee, Inc.)
R3 McSysmon; C:\Program Files\McAfee\VirusScan\mcsysmon.exe [606736 2009-05-08] (McAfee, Inc.)
R2 MpfService; C:\Program Files\McAfee\MPF\MPFSrv.exe [893112 2009-05-08] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\McAfee\MSK\MskSrver.exe [26640 2009-04-09] (McAfee, Inc.)
S3 SampleCollector; C:\Program Files\Sony\VAIO Care\collsvc.exe [122880 2009-09-16] (Intel Corporation)
S3 SOHDBSvr; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952 2009-10-15] (Sony Corporation)
S3 SOHPlMgr; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432 2009-10-15] (Sony Corporation)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [69632 2009-09-14] (Sony Corporation)
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [204648 2009-11-30] (Sony Corporation)
S3 VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [513392 2009-12-16] (Sony Corporation)
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [480624 2009-09-16] (Sony Corporation)
S3 VcmINSMgr; C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [361840 2009-09-01] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [696320 2010-03-08] (Sony Corporation)
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [669040 2009-10-30] (Sony Corporation)
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [206336 2009-09-14] (Sony Corporation)
R2 WTGService; C:\Program Files\Verbindungsassistent\WTGService.exe [330696 2010-11-18] ()
==================== Drivers (Whitelisted) ====================
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [219200 2011-07-09] (DT Soft Ltd)
S3 ewsercd; C:\Windows\System32\DRIVERS\ewsercd.sys [100224 2011-07-04] (Huawei Technologies Co., Ltd.)
S3 hwusbfake; C:\Windows\System32\DRIVERS\ewusbfake.sys [103040 2011-07-04] (Huawei Technologies Co., Ltd.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [79816 2009-05-13] (McAfee, Inc.)
R3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [35272 2009-05-13] (McAfee, Inc.)
R1 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [214024 2009-05-13] (McAfee, Inc.)
S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [34248 2009-05-13] (McAfee, Inc.)
R3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [40552 2009-05-13] (McAfee, Inc.)
R1 MPFP; C:\Windows\System32\Drivers\Mpfp.sys [130424 2009-04-09] (McAfee, Inc.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [420920 2011-07-09] ()
U3 a1vxmkwz; C:\Windows\system32\Drivers\a1vxmkwz.sys [0 ] (Advanced Micro Devices)
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-02 11:25 - 2014-02-02 11:28 - 00022007 _____ () C:\Users\Britta\Downloads\FRST.txt
2014-02-02 11:25 - 2014-02-02 11:25 - 00000000 ____D () C:\FRST
2014-02-02 11:24 - 2014-02-02 11:24 - 01137152 _____ (Farbar) C:\Users\Britta\Downloads\FRST.exe
2014-02-02 11:23 - 2014-02-02 11:24 - 00671056 _____ () C:\Users\Britta\Downloads\ZipExtractorSetup.exe
2014-01-31 23:49 - 2014-01-31 23:49 - 00001047 _____ () C:\Users\Britta\Desktop\Kaspersky Security Scan.lnk
2014-01-31 23:49 - 2014-01-31 23:49 - 00000000 ____D () C:\Users\Britta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2014-01-31 23:47 - 2014-01-31 23:47 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-01-31 23:47 - 2014-01-31 23:47 - 00000000 ____D () C:\Program Files\Kaspersky Lab
2014-01-31 23:44 - 2014-01-31 23:45 - 00179984 _____ (Kaspersky Lab) C:\Users\Britta\Downloads\kss12.0.1.117mlg_en-de_ru-de_fr-de_de-de.exe
2014-01-31 00:11 - 2014-01-31 00:12 - 03975896 _____ (Avira Operations GmbH & Co. KG) C:\Users\Britta\Downloads\avira_oe_client_antivirus_de.exe
2014-01-30 23:48 - 2014-01-30 23:48 - 00000000 ____D () C:\Program Files\YTD Toolbar
2014-01-30 23:48 - 2014-01-30 23:48 - 00000000 ____D () C:\Program Files\Application Updater
==================== One Month Modified Files and Folders =======
2014-02-02 11:28 - 2014-02-02 11:25 - 00022007 _____ () C:\Users\Britta\Downloads\FRST.txt
2014-02-02 11:26 - 2009-07-14 05:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-02 11:26 - 2009-07-14 05:34 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-02 11:25 - 2014-02-02 11:25 - 00000000 ____D () C:\FRST
2014-02-02 11:24 - 2014-02-02 11:24 - 01137152 _____ (Farbar) C:\Users\Britta\Downloads\FRST.exe
2014-02-02 11:24 - 2014-02-02 11:23 - 00671056 _____ () C:\Users\Britta\Downloads\ZipExtractorSetup.exe
2014-02-02 11:23 - 2010-07-28 14:15 - 00022687 _____ () C:\Windows\system32\Config.MPF
2014-02-02 11:17 - 2012-11-08 00:02 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-02 11:08 - 2013-06-24 21:00 - 00000000 ____D () C:\Users\Britta\AppData\Roaming\Skype
2014-02-02 11:08 - 2012-04-15 15:41 - 00008594 _____ () C:\ProgramData\lxecscan.log
2014-02-02 11:06 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-02 11:06 - 2009-07-14 05:39 - 00063370 _____ () C:\Windows\setupact.log
2014-02-01 08:59 - 2011-07-04 18:11 - 01707371 _____ () C:\Windows\WindowsUpdate.log
2014-02-01 08:47 - 2012-11-08 00:02 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-01 01:00 - 2010-07-28 14:02 - 00000348 _____ () C:\Windows\Tasks\McQcTask.job
2014-02-01 00:10 - 2013-06-24 20:59 - 00002505 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-01 00:10 - 2013-06-24 20:57 - 00000000 ____D () C:\ProgramData\Skype
2014-01-31 23:49 - 2014-01-31 23:49 - 00001047 _____ () C:\Users\Britta\Desktop\Kaspersky Security Scan.lnk
2014-01-31 23:49 - 2014-01-31 23:49 - 00000000 ____D () C:\Users\Britta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2014-01-31 23:47 - 2014-01-31 23:47 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-01-31 23:47 - 2014-01-31 23:47 - 00000000 ____D () C:\Program Files\Kaspersky Lab
2014-01-31 23:45 - 2014-01-31 23:44 - 00179984 _____ (Kaspersky Lab) C:\Users\Britta\Downloads\kss12.0.1.117mlg_en-de_ru-de_fr-de_de-de.exe
2014-01-31 23:34 - 2010-07-28 14:16 - 00423982 _____ () C:\Windows\PFRO.log
2014-01-31 00:12 - 2014-01-31 00:11 - 03975896 _____ (Avira Operations GmbH & Co. KG) C:\Users\Britta\Downloads\avira_oe_client_antivirus_de.exe
2014-01-30 23:48 - 2014-01-30 23:48 - 00000000 ____D () C:\Program Files\YTD Toolbar
2014-01-30 23:48 - 2014-01-30 23:48 - 00000000 ____D () C:\Program Files\Application Updater
2014-01-30 23:48 - 2013-02-18 14:47 - 00000000 ____D () C:\Program Files\Common Files\Spigot
2014-01-30 23:44 - 2010-07-28 14:01 - 00000000 ____D () C:\Program Files\McAfee
2014-01-30 23:44 - 2010-07-23 23:18 - 01498506 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-30 23:33 - 2013-10-01 22:37 - 00000000 ____D () C:\ProgramData\BitGuard
Some content of TEMP:
====================
C:\Users\Britta\AppData\Local\Temp\APNStub.exe
C:\Users\Britta\AppData\Local\Temp\avguidx.dll
C:\Users\Britta\AppData\Local\Temp\GenericWndApi.dll
C:\Users\Britta\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Britta\AppData\Local\Temp\oi_{D3D0E1C2-A660-4D28-AA0E-1A97E9F74251}.exe
C:\Users\Britta\AppData\Local\Temp\ose00000.exe
C:\Users\Britta\AppData\Local\Temp\setup.exe
C:\Users\Britta\AppData\Local\Temp\UNINSTALL.EXE
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-04-30 07:14
==================== End Of Log ============================ --- --- ---
--- --- ---
--- --- ---
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 01-02-2014 03
Ran by Britta at 2014-02-02 11:29:36
Running from C:\Users\Britta\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee VirusScan (Enabled - Up to date) {86355677-4064-3EA7-ABB3-1B136EB04637}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Personal Firewall (Enabled) {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
==================== Installed Programs ======================
Adobe Flash Player 10 ActiveX (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Reader 9.2 - Deutsch (Version: 9.2.0 - Adobe Systems Incorporated)
Apple Application Support (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
ArcSoft WebCam Companion 3 (Version: 3.0.21.368 - ArcSoft)
Ask Toolbar (Version: 1.15.25.0 - Ask.com) <==== ATTENTION
Ask Toolbar Updater (HKCU Version: 1.2.6.44892 - Ask.com) <==== ATTENTION
BitGuard (Version: - MediaTechSoft Inc.) <==== ATTENTION
Bonjour (Version: 3.0.0.10 - Apple Inc.)
ClipGrab 3.2.1.0 (Version: - Philipp Schmieder Medien)
DAEMON Tools Pro (Version: 4.40.0311.0197 - DT Soft Ltd)
Delta Chrome Toolbar (Version: - Visual Tools) <==== ATTENTION
DHTML Editing Component (Version: 6.02.0001 - Microsoft Corporation)
Einstellungen für VAIO-Inhaltsüberwachung (Version: 2.4.1.09180 - Sony Corporation)
Evernote (Version: 3.5.0.545 - Evernote Corp.)
Google Chrome (Version: 32.0.1700.102 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
iCloud (Version: 2.1.2.8 - Apple Inc.)
Intel(R) Graphics Media Accelerator Driver (Version: 8.14.10.1972 - Intel Corporation)
iTunes (Version: 11.0.4.4 - Apple Inc.)
Java 7 Update 9 (Version: 7.0.90 - Oracle)
Java Auto Updater (Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 16 (Version: 6.0.160 - Sun Microsystems, Inc.)
JMicron Ethernet Adapter NDIS Driver (Version: 6.0.14.11 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (Version: 1.0.39.1 - JMicron Technology Corp.)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Kaspersky Security Scan (Version: 12.0.1.340 - Kaspersky Lab)
Kaspersky Security Scan (Version: 12.0.1.340 - Kaspersky Lab) Hidden
Lexmark Pro800-Pro900 Series (Version: - Lexmark International, Inc.)
McAfee SecurityCenter (Version: - McAfee, Inc.)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (Version: 1.2.123.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation)
Mobile Partner (Version: 16.001.06.01.687 - Huawei Technologies Co.,Ltd)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicStation (Version: 2.0.4.1199 - Omnifone)
Norton Online Backup (Version: 1.2.20.0 - Symantec)
PDFCreator (Version: 1.5.0 - Frank Heindörfer, Philip Chinery)
PMB (Version: 5.0.00.10260 - Sony Corporation)
QuickTime (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (Version: 6.0.1.6005 - Realtek Semiconductor Corp.)
Setting Utility Series (Version: 5.1.0.11200 - Sony Corporation)
Skype™ 6.5 (Version: 6.5.158 - Skype Technologies S.A.)
Sony Home Network Library (Version: 2.0.1.10160 - Sony Corporation) Hidden
Synaptics Pointing Device Driver (Version: 14.0.10.0 - Synaptics Incorporated)
Turbo Lister 2 (Version: 2.00.0000 - eBay Inc.)
VAIO Care (Version: 5.0.3.11130 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 3.6.0.09250 - Sony Corporation) Hidden
VAIO Content Metadata Intelligent Network Service Manager (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata Intelligent Network Service Manager (Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Content Metadata Manager Settings (Version: 3.6.0.09240 - Sony Corporation)
VAIO Content Metadata Manager Settings (Version: 3.6.0.09240 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (Version: 3.6.0.09080 - Sony Corporation)
VAIO Content Metadata XML Interface Library (Version: 3.6.0.09080 - Sony Corporation) Hidden
VAIO Content Monitoring Settings (Version: 2.4.1.09180 - Sony Corporation) Hidden
VAIO Control Center (Version: 4.1.0.10160 - Sony Corporation)
VAIO Data Restore Tool (Version: 1.2.0.09150 - Sony Corporation) Hidden
VAIO Energie Verwaltung (Version: 5.0.0.12150 - Sony Corporation)
VAIO Entertainment Platform (Version: 3.6.0.09150 - Sony Corporation)
VAIO Entertainment Platform (Version: 3.6.0.09150 - Sony Corporation) Hidden
VAIO Event Service (Version: 5.1.0.11300 - Sony Corporation)
VAIO Gate (Version: 1.3.0.09240 - Sony Corporation)
VAIO Gate Default (Version: 1.0.0.10290 - Sony Corporation)
VAIO Hardware Diagnostics (Version: 3.9.1 - Sony Corporation) Hidden
VAIO Marketing Tools (Version: - Sony Corporation)
VAIO Media plus (Version: 2.0.1.10160 - Sony Corporation)
VAIO Media plus Opening Movie (Version: 1.2.0.09100 - Sony Corporation)
VAIO Original Function Settings (Version: 2.0.0.07010 - Sony Corporation) Hidden
VAIO Original Funktion Einstellungen (Version: 2.0.0.07010 - Sony Corporation)
VAIO Premium Partners (Version: 1.0 - Sony Europe)
VAIO Smart Network (Version: 3.2.0.15080 - Sony Corporation)
VAIO Update 5 (Version: 5.0.0.10300 - Sony Corporation)
VAIO-Support für Übertragungen (Version: 1.1.0.10200 - Sony Corporation)
Verbindungsassistent (Version: 3.1 - Verbindungsassistent)
VLC media player 2.0.5 (Version: 2.0.5 - VideoLAN)
WIDCOMM Bluetooth Software (Version: 6.2.1.500 - Broadcom Corporation)
Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) (Version: 09/09/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Anmelde-Assistent (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Toolbar (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 4.01 (32-Bit) (Version: 4.01.0 - win.rar GmbH)
YTD Toolbar v8.6 (Version: 8.6 - Spigot, Inc.)
YTD Video Downloader 3.9 (Version: - GreenTree Applications SRL)
==================== Restore Points =========================
26-03-2012 11:55:04 Geplanter Prüfpunkt
26-03-2012 17:45:39 Turbo Lister 2 wurde installiert.
26-03-2012 18:12:46 Installed iTunes
18-06-2012 20:03:06 Geplanter Prüfpunkt
13-09-2012 12:01:40 Geplanter Prüfpunkt
04-10-2012 11:40:29 Geplanter Prüfpunkt
07-11-2012 22:50:20 Removed Safari
21-11-2012 10:57:07 Installed Java 7 Update 9
30-04-2013 06:22:31 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {009BDB80-6DBC-4121-B835-57502E7BB642} - System32\Tasks\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2009-10-19] (Sony Corporation)
Task: {060703C3-9E70-4ACA-9D02-B80D13875F65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-08] (Google Inc.)
Task: {10016D4D-0067-48DB-A58A-C16AA248F95A} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-12-16] (Sony Corporation)
Task: {3573E7ED-D726-4B79-BBF5-FB15F69D816D} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2009-09-24] (Sony Corporation)
Task: {3A46AC0C-3757-4973-BBE0-55792917F00E} - System32\Tasks\VAIO Care Service => C:\Program Files\Sony\VAIO Care\VAIOCareService.exe [2009-10-21] (Sony Corporation)
Task: {42D54F3E-9791-4E6B-9CF3-CCEF640F67AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-08] (Google Inc.)
Task: {580AC1A3-A97D-4845-9F7A-A58C1D11FA41} - System32\Tasks\McQcTask => C:\Program Files\McAfee\MQC\QcConsol.exe [2009-04-09] (McAfee, Inc.)
Task: {6588EDF0-21B8-4435-BDBE-DA922BF707EF} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-12-16] (Sony Corporation)
Task: {8E286772-D0D4-4E28-92C6-BCE79255B433} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BA84A574-9B9B-4183-A23F-9154F7B7C5DC} - System32\Tasks\EPUpdater => C:\Users\Britta\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-06-06] () <==== ATTENTION
Task: {D5957B29-843F-46A5-BAE1-9CA9630DA99D} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2009-12-16] (Sony Corporation)
Task: {E7CBA6EF-0568-4BB2-8E10-5D4981692DE8} - System32\Tasks\McDefragTask => C:\Program Files\McAfee\MQC\QcConsol.exe [2009-04-09] (McAfee, Inc.)
Task: {FCABC769-B447-4709-B00A-B820F9890678} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe [2013-04-25] ()
Task: {FEF13588-EB73-465E-85E9-541BFF2A1FDE} - System32\Tasks\SONY\VAIO Update\VAIO Update 5 => C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2009-10-30] (Sony Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\McDefragTask.job => C:\Windows\system32\defrag.exe
Task: C:\Windows\Tasks\McQcTask.job => c:\PROGRA~1\mcafee\mqc\QcConsol.exe
==================== Loaded Modules (whitelisted) =============
2013-12-29 12:15 - 2013-11-18 15:31 - 03618304 _____ () C:\ProgramData\BitGuard\2.7.1832.68\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll
2010-07-28 14:10 - 2009-01-23 09:46 - 00013840 _____ () C:\Program Files\McAfee\SiteAdvisor\saHook.dll
2010-01-30 01:41 - 2010-01-30 01:41 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-03-06 13:14 - 2010-04-01 12:23 - 00389120 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\lxecscw.dll
2009-05-27 11:16 - 2009-05-27 11:16 - 00192512 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxecdatr.dll
2009-05-27 11:13 - 2009-05-27 11:13 - 00081920 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxeccats.dll
2013-03-06 13:13 - 2010-04-01 12:24 - 01159168 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\lxecDRS.dll
2013-03-06 13:13 - 2009-03-10 00:43 - 00155648 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\lxeccaps.dll
2009-02-20 07:48 - 2009-02-20 07:48 - 00299008 _____ () C:\Windows\system32\lxecsm.dll
2009-04-28 06:56 - 2009-04-28 06:56 - 00024064 _____ () C:\Windows\system32\lxecsmr.dll
2013-03-06 13:13 - 2010-04-05 05:56 - 00716954 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\Epwizard.DLL
2013-03-06 13:13 - 2010-04-05 05:55 - 00159890 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\customui.dll
2013-03-06 13:13 - 2010-04-05 05:54 - 00123033 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\Eputil.DLL
2013-03-06 13:13 - 2010-04-05 05:54 - 00143502 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\Imagutil.DLL
2013-03-06 13:13 - 2010-04-05 05:55 - 00061604 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\Epfunct.DLL
2013-03-06 13:13 - 2009-06-23 06:09 - 02203648 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\EPWizRes.dll
2013-03-06 13:13 - 2009-06-23 06:10 - 00045056 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\epstring.dll
2013-03-06 13:13 - 2009-06-23 06:11 - 00102400 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\EPOEMDll.dll
2013-03-06 13:13 - 2009-04-07 14:25 - 00409600 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\iptk.dll
2013-03-06 13:14 - 2009-03-02 09:25 - 00151552 _____ () C:\Program Files\Lexmark Pro800-Pro900 Series\lxecptp.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 02126264 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtCore4.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 07422392 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtGui4.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 02453944 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtDeclarative4.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 01270200 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtScript4.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 00192952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtSql4.dll
2012-12-07 15:15 - 2012-12-07 15:15 - 00795064 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\QtNetwork4.dll
2014-01-31 00:05 - 2014-01-23 06:56 - 00715544 _____ () C:\Program Files\Google\Chrome\Application\32.0.1700.102\libglesv2.dll
2014-01-31 00:05 - 2014-01-23 06:56 - 00100120 _____ () C:\Program Files\Google\Chrome\Application\32.0.1700.102\libegl.dll
2014-01-31 00:05 - 2014-01-23 06:56 - 04055320 _____ () C:\Program Files\Google\Chrome\Application\32.0.1700.102\pdf.dll
2014-01-31 00:05 - 2014-01-23 06:57 - 00399640 _____ () C:\Program Files\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll
2014-01-31 00:05 - 2014-01-23 06:55 - 01634584 _____ () C:\Program Files\Google\Chrome\Application\32.0.1700.102\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/02/2014 11:29:34 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:25:21 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:16:37 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:10:46 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:10:25 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:09:04 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:07:16 AM) (Source: VzCdbSvc) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (02/02/2014 11:07:15 AM) (Source: VzCdbSvc) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA}) (Fehlercode = 0x80042000)
Error: (02/02/2014 11:06:42 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (02/02/2014 11:06:42 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"1".
Die abhängige Assemblierung "Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (02/02/2014 11:12:19 AM) (Source: DCOM) (User: )
Description: {51FA2736-5DEE-11D4-98E8-006008BF430C}
Error: (02/02/2014 11:09:08 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Real-time Scanner" wurde nicht richtig gestartet.
Error: (02/02/2014 11:06:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lxecCATSCustConnectService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/02/2014 11:06:46 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst lxecCATSCustConnectService erreicht.
Error: (02/01/2014 09:00:15 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Error: (02/01/2014 08:17:46 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Error: (02/01/2014 08:02:52 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Error: (02/01/2014 08:02:21 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Error: (02/01/2014 08:01:42 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Error: (02/01/2014 06:19:36 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Spooler erreicht.
Microsoft Office Sessions:
=========================
Error: (02/02/2014 11:29:34 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:25:21 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:16:37 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:10:46 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:10:25 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:09:04 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:07:16 AM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019
Error: (02/02/2014 11:07:15 AM) (Source: VzCdbSvc)(User: )
Description: {48512A59-C8A5-4805-9048-23C9E4194BFA}0x80042000
Error: (02/02/2014 11:06:42 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
Error: (02/02/2014 11:06:42 AM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.SystemCompatible,processorArchitecture="x86",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.7600.16823"C:\Windows\system32\conhost.exe
==================== Memory info ===========================
Percentage of memory in use: 84%
Total physical RAM: 1012.9 MB
Available physical RAM: 161.96 MB
Total Pagefile: 2036.9 MB
Available Pagefile: 529.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1896.69 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:225.72 GB) (Free:170.89 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: E9699419)
Partition 1: (Not Active) - (Size=7 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=226 GB) - (Type=07 NTFS)
==================== End Of Log ============================ --- --- ---
Danke für die schnelle Antwort. Hoffe das ist alles richtig. |