Shurican | 02.02.2014 21:49 | Ok jetzt gings. Hier die beiden logs:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04
Ran by HP-PC (administrator) on HP on 02-02-2014 21:46:33
Running from C:\Users\HP-PC\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\psksvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe
(Panda Security) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\WebProxy.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrlS.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe
(Panda Security, S.L.) C:\Program Files (x86)\Common Files\Panda Security\PavShld\PavPrSrv.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\AVENGINE.EXE
(Panda Security International) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\FIREWALL\PSHost.exe
(Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe
() C:\Windows\System32\valWBFPolicyService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\ApVxdWin.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\SrvLoad.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavBckPT.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
() C:\Program Files (x86)\HP SimplePass\DownloadAD.exe
(Farbar) C:\Users\HP-PC\Downloads\FRST64(1).exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-14] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2874168 2012-09-14] (Synaptics Incorporated)
HKLM-x32\...\Run: [BtTray] - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491632 2012-09-10] (CyberLink Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [APVXDWIN] - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APVXDWIN.EXE [1062880 2013-09-30] (Panda Security, S.L.)
HKLM-x32\...\Run: [SCANINICIO] - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\Inicio.exe [71648 2013-09-30] (Panda Security, S.L.)
Winlogon\Notify\avldr: C:\Windows\system32\avldr64.dll (On-Access Anti-Malware Scanner Sync)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-227508969-234495266-3810002790-1002\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKU\S-1-5-21-227508969-234495266-3810002790-1002\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [247144 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Users\HP-PC\AppData\Local\DProtect\eBP.dll,C:\Users\HP-PC\AppData\Local\DProtect\eBPSD.dll => File Not Found
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPCON13/12
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM - {780BDEAB-AF0C-4C67-8B11-64ABE1AA5B31} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - {780BDEAB-AF0C-4C67-8B11-64ABE1AA5B31} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {780BDEAB-AF0C-4C67-8B11-64ABE1AA5B31} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5222-29882-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWow64\skype4com.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
FireFox:
========
FF ProfilePath: C:\Users\HP-PC\AppData\Roaming\Mozilla\Firefox\Profiles\oclcfl4h.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @authentec.com/ffwloplugin - C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files (x86)\BetterSurf\ff
FF HKLM-x32\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files (x86)\Better-Surf\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@bettersurfplus.com] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha3856.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha3856\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta778.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta778\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha578.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha578\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha578\ff [2014-01-30]
==================== Services (Whitelisted) =================
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641320 2012-08-10] (HP)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Panda Software Controller; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe [177440 2012-11-19] (Panda Security, S.L.)
R2 PAVFNSVR; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe [202016 2012-09-21] (Panda Security, S.L.)
R2 PavPrSrv; C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [62768 2008-02-04] (Panda Security, S.L.)
R2 PAVSRV; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe [313664 2011-04-13] (Panda Security, S.L.)
R2 PSHost; c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.EXE [226560 2009-11-26] (Panda Security International)
R2 PSIMSVC; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe [108288 2008-06-19] (Panda Security S.L.)
R2 PskSvcRetail; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe [28992 2010-08-16] (Panda Security, S.L.)
R2 TPSrv; C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe [173344 2012-11-16] (Panda Security, S.L.)
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc.)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-06] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R2 AmFSM; C:\Windows\System32\DRIVERS\amm6460.sys [71432 2012-03-26] (Panda Security, S.L.)
R2 APPFLT; C:\Windows\system32\Drivers\APPFLT64.SYS [129096 2011-01-31] (Panda Security, S.L.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
S4 BthAvrcpTg;
S4 BthHFEnum;
S4 bthhfhid;
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R2 ComFiltr; C:\Windows\system32\DRIVERS\COMFiltr.sys [15928 2014-01-30] ()
R2 DSAFLT; C:\Windows\system32\Drivers\DSAFLT64.SYS [82952 2009-09-25] (Panda Security, S.L.)
R2 FNETMON; C:\Windows\system32\Drivers\fnetm64.SYS [31752 2009-09-25] (Panda Security, S.L.)
R2 IDSFLT; C:\Windows\system32\Drivers\IDSFLT64.SYS [78920 2010-09-09] (Panda Security, S.L.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 NETFLTDI; C:\Windows\system32\Drivers\NETTDI64.SYS [170504 2009-09-25] (Panda Security, S.L.)
R3 NETIMFLT01060044; C:\Windows\system32\DRIVERS\n64i1644.sys [216648 2010-09-01] (Panda Security, S.L.)
R0 pavboot; C:\Windows\System32\Drivers\pavboot64.sys [30792 2010-06-22] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [273040 2012-08-09] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [692832 2012-10-02] (Ralink Technology, Corp.)
R1 ShldFlt; C:\Windows\System32\DRIVERS\ShldFlt.sys [48136 2009-10-27] (Panda Security, S.L.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-09-14] (Synaptics Incorporated)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R2 WNMFLT; C:\Windows\system32\Drivers\WNMFLT64.SYS [74760 2009-09-25] (Panda Security, S.L.)
S5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 PavTPK.sys; \??\C:\Windows\system32\PavTPK.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-02 21:39 - 2014-02-02 21:39 - 02080256 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST64(1).exe
2014-02-02 18:10 - 2014-02-02 20:42 - 00000360 _____ () C:\Windows\system32\Drivers\etc\wnmuth.wlt.bck
2014-02-02 18:10 - 2014-02-02 20:42 - 00000360 _____ () C:\Windows\system32\Drivers\etc\wnmuth.wlt
2014-01-30 20:07 - 2014-01-30 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 20:06 - 2014-01-30 20:06 - 01037068 _____ (Thisisu) C:\Users\HP-PC\Downloads\JRT.exe
2014-01-30 19:57 - 2014-01-30 19:57 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-30 19:56 - 2014-01-30 19:57 - 23924520 _____ (Mozilla) C:\Users\HP-PC\Downloads\Firefox Setup 26.0.exe
2014-01-30 19:27 - 2014-01-30 19:27 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\Malwarebytes
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-30 19:27 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-30 19:26 - 2014-01-30 19:26 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\HP-PC\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-30 19:22 - 2014-02-02 21:46 - 00019273 _____ () C:\Users\HP-PC\Downloads\FRST.txt
2014-01-30 19:22 - 2014-01-30 19:23 - 00016503 _____ () C:\Users\HP-PC\Downloads\Addition.txt
2014-01-30 19:21 - 2014-02-02 21:46 - 00000000 ____D () C:\FRST
2014-01-30 19:20 - 2014-01-30 19:20 - 02079744 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST64.exe
2014-01-30 19:19 - 2014-01-30 19:19 - 01137152 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST.exe
2014-01-30 19:12 - 2014-01-30 19:12 - 00688992 ____R (Swearware) C:\Users\HP-PC\Downloads\dds.exe
2014-01-30 19:07 - 2014-01-30 19:42 - 00000092 _____ () C:\Windows\system32\Drivers\etc\NetLoc.wlt.bck
2014-01-30 19:07 - 2014-01-30 19:42 - 00000092 _____ () C:\Windows\system32\Drivers\etc\NetLoc.wlt
2014-01-30 19:02 - 2014-01-30 19:03 - 00000000 ____D () C:\AdwCleaner
2014-01-30 19:01 - 2014-01-30 19:01 - 01166132 _____ () C:\Users\HP-PC\Downloads\adwcleaner.exe
2014-01-30 19:00 - 2014-01-30 19:00 - 01166132 _____ () C:\Users\HP-PC\Downloads\adwcleaner-3.018.exe
2014-01-30 13:19 - 2014-01-30 13:21 - 00001236 _____ () C:\Windows\SysWOW64\PCloudCleanerService.log
2014-01-30 13:17 - 2014-02-02 18:10 - 00008627 _____ () C:\Windows\SysWOW64\PAV_FOG.OPC
2014-01-30 13:17 - 2014-01-30 13:17 - 00004148 _____ () C:\Windows\SysWOW64\BroomData.bit
2014-01-30 13:17 - 2013-04-08 15:30 - 00022752 _____ () C:\Windows\system32\PCloudBroom64.exe
2014-01-30 13:00 - 2014-01-30 13:01 - 00001282 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-01-30 13:00 - 2013-04-29 08:17 - 00047632 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2014-01-30 12:59 - 2014-02-02 21:18 - 00000104 _____ () C:\Windows\system32\Drivers\etc\NetAdapt.cfg.bck
2014-01-30 12:59 - 2014-02-02 21:18 - 00000104 _____ () C:\Windows\system32\Drivers\etc\NetAdapt.cfg
2014-01-30 12:59 - 2014-01-30 19:42 - 00000252 _____ () C:\Windows\system32\Drivers\etc\IdsFlt.cfg.bck
2014-01-30 12:59 - 2014-01-30 19:42 - 00000252 _____ () C:\Windows\system32\Drivers\etc\IdsFlt.cfg
2014-01-30 12:59 - 2014-01-30 19:42 - 00000068 _____ () C:\Windows\system32\Drivers\etc\NetFlt.cfg.bck
2014-01-30 12:59 - 2014-01-30 19:42 - 00000068 _____ () C:\Windows\system32\Drivers\etc\NetFlt.cfg
2014-01-30 12:59 - 2014-01-30 19:42 - 00000056 _____ () C:\Windows\system32\Drivers\etc\WnmFlt.cfg.bck
2014-01-30 12:59 - 2014-01-30 19:42 - 00000056 _____ () C:\Windows\system32\Drivers\etc\WnmFlt.cfg
2014-01-30 12:59 - 2014-01-30 19:42 - 00000056 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.cfg.bck
2014-01-30 12:59 - 2014-01-30 19:42 - 00000056 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.cfg
2014-01-30 12:59 - 2014-01-30 19:40 - 00000064 _____ () C:\Windows\system32\Drivers\etc\NetAR.wlt.bck
2014-01-30 12:59 - 2014-01-30 19:40 - 00000064 _____ () C:\Windows\system32\Drivers\etc\NetAR.wlt
2014-01-30 12:57 - 2014-01-30 12:57 - 00000000 ____D () C:\ProgramData\Panda Software
2014-01-30 12:56 - 2014-01-30 12:56 - 00000000 ____D () C:\Users\HP-PC\AppData\Local\Panda Security
2014-01-30 12:55 - 2014-02-02 21:39 - 00265376 _____ () C:\Windows\system32\Drivers\APPFCONT.DAT.bck
2014-01-30 12:55 - 2014-02-02 21:39 - 00265376 _____ () C:\Windows\system32\Drivers\APPFCONT.DAT
2014-01-30 12:55 - 2014-01-30 19:42 - 00303044 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.rls.bck
2014-01-30 12:55 - 2014-01-30 19:42 - 00303044 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.rls
2014-01-30 12:55 - 2014-01-30 19:42 - 00001132 _____ () C:\Windows\system32\Drivers\APPFLTR.CFG.bck
2014-01-30 12:55 - 2014-01-30 19:42 - 00001132 _____ () C:\Windows\system32\Drivers\APPFLTR.CFG
2014-01-30 12:55 - 2014-01-30 12:55 - 00015928 _____ () C:\Windows\system32\Drivers\COMFiltr.sys
2014-01-30 12:55 - 2014-01-30 12:55 - 00002528 _____ () C:\Users\Public\Desktop\Remote-Zugriff installieren.lnk
2014-01-30 12:55 - 2014-01-30 12:55 - 00002247 _____ () C:\Users\Public\Desktop\Panda Internet Security 2014.lnk
2014-01-30 12:55 - 2014-01-30 12:55 - 00000274 _____ () C:\Windows\system32\PavCPL64.dat
2014-01-30 12:55 - 2014-01-30 12:55 - 00000000 ____D () C:\ProgramData\Backup
2014-01-30 12:55 - 2011-01-31 16:41 - 00129096 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\APPFLT64.SYS
2014-01-30 12:55 - 2010-09-09 16:23 - 00078920 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\idsflt64.sys
2014-01-30 12:55 - 2009-09-25 14:54 - 00170504 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\NETTDI64.SYS
2014-01-30 12:55 - 2009-09-25 14:54 - 00082952 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\dsaflt64.sys
2014-01-30 12:55 - 2009-09-25 14:54 - 00074760 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\wnmflt64.sys
2014-01-30 12:55 - 2009-09-25 14:54 - 00031752 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\fnetm64.sys
2014-01-30 12:54 - 2014-01-30 13:00 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\Windows\SysWOW64\PAV
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\Panda Security
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\ProgramData\Panda Security
2014-01-30 12:54 - 2013-06-25 17:03 - 00024544 _____ (Panda Security, S.L.) C:\Windows\system32\sysHelper64.dll
2014-01-30 12:54 - 2012-11-20 12:20 - 00545056 _____ (Panda Security, S.L.) C:\Windows\SysWOW64\PavSHookWow.dll
2014-01-30 12:54 - 2012-11-16 12:08 - 00837920 _____ (Panda Security, S.L.) C:\Windows\system32\PavSHook64.dll
2014-01-30 12:54 - 2012-05-22 15:54 - 00087328 _____ (Panda Security, S.L.) C:\Windows\SysWOW64\PavLspHookWow.dll
2014-01-30 12:54 - 2012-05-22 15:52 - 00117024 _____ (Panda Security, S.L.) C:\Windows\system32\PavLspHook64.dll
2014-01-30 12:54 - 2012-03-26 18:57 - 00071432 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\amm6460.sys
2014-01-30 12:54 - 2010-09-01 11:09 - 00216648 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\n64i1644.sys
2014-01-30 12:54 - 2010-06-22 18:20 - 00030792 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\pavboot64.sys
2014-01-30 12:54 - 2010-06-21 17:02 - 00323392 _____ (Panda Security, S.L.) C:\Windows\system32\TpUtil64.dll
2014-01-30 12:54 - 2010-06-21 17:02 - 00202048 _____ (Panda Security, S.L.) C:\Windows\SysWOW64\TpUtilWow.dll
2014-01-30 12:54 - 2010-06-21 17:01 - 00090944 _____ (Panda Security, S.L.) C:\Windows\system32\PavIpc64.dll
2014-01-30 12:54 - 2010-06-21 17:01 - 00066880 _____ (Panda Security, S.L.) C:\Windows\SysWOW64\PavIpcWow.dll
2014-01-30 12:54 - 2010-03-24 12:56 - 00064768 _____ (On-Access Anti-Malware Scanner Sync) C:\Windows\system32\avldr64.dll
2014-01-30 12:54 - 2009-08-10 13:46 - 00025344 _____ (Panda Security, S.L.) C:\Windows\SysWOW64\sysHelper32.dll
2014-01-30 12:54 - 2007-03-15 19:38 - 00046640 _____ (Panda Software) C:\Windows\system32\pavcpl64.cpl
2014-01-30 12:54 - 2003-10-22 18:23 - 00446464 _____ (eHelp Corporation.) C:\Windows\SysWOW64\HHActiveX.dll
2014-01-30 12:53 - 2009-10-27 12:07 - 00048136 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\ShldFlt.sys
2014-01-30 12:51 - 2014-01-30 12:51 - 01061256 _____ () C:\Users\HP-PC\Downloads\PANDAIS14ESD(1).exe
2014-01-30 12:49 - 2014-01-30 12:49 - 01061256 _____ () C:\Users\HP-PC\Downloads\PANDAIS14ESD.exe
2014-01-30 12:49 - 2014-01-30 12:49 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-01-30 12:49 - 2014-01-30 12:49 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-01-23 19:11 - 2014-01-30 13:19 - 00434032 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-21 18:29 - 2014-01-21 18:29 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\TuneUp Software
2014-01-21 18:26 - 2014-01-30 12:47 - 00000000 ____D () C:\ProgramData\MFAData
2014-01-21 18:26 - 2014-01-21 18:26 - 04435768 _____ (AVG Technologies) C:\Users\HP-PC\Downloads\avg_avct_stb_all_2014_4259_cm10.exe
2014-01-21 18:26 - 2014-01-21 18:26 - 00000000 ____D () C:\Users\HP-PC\AppData\Local\MFAData
2014-01-19 19:40 - 2013-12-07 07:37 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-01-19 19:40 - 2013-12-07 07:37 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-19 19:40 - 2013-12-07 06:15 - 00562688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-01-19 19:40 - 2013-12-07 06:15 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-19 19:40 - 2013-10-31 06:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-01-19 19:40 - 2013-10-31 06:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2014-01-19 19:40 - 2013-10-31 05:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2014-01-19 19:40 - 2013-10-31 04:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2014-01-19 19:40 - 2013-10-28 06:50 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-01-19 19:40 - 2013-10-28 05:05 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-01-19 19:40 - 2013-10-13 21:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-01-19 19:40 - 2013-08-27 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-19 19:40 - 2013-08-27 06:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-19 19:40 - 2013-08-26 23:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-19 19:40 - 2013-08-26 23:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-14 19:03 - 2014-01-09 09:02 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-14 19:03 - 2014-01-09 09:02 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-10 20:57 - 2014-01-30 19:38 - 00000000 ____D () C:\Program Files (x86)\VideoPlayerV3
2014-01-10 20:16 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-10 20:16 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-10 20:16 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-10 20:16 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-10 20:16 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-10 20:16 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-10 20:16 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-01-10 20:16 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-01-10 20:11 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-10 20:11 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-10 20:11 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-01-10 20:11 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-10 20:11 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-10 20:11 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-10 20:11 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-10 20:11 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-10 20:11 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-10 20:11 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-10 20:11 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-10 20:11 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-10 20:11 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-10 20:11 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-10 20:11 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-10 20:11 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-10 20:11 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-10 20:11 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-10 20:11 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-01-10 20:10 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 20:10 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-10 20:10 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-10 20:10 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-01-10 20:10 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-10 20:10 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2014-01-10 20:10 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-10 20:10 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-10 20:10 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-10 20:10 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-01-10 20:10 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-10 20:10 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-10 20:10 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-01-10 20:10 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-01-10 20:10 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-01-10 20:10 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-01-10 20:10 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-01-10 20:10 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-01-10 20:10 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-01-10 20:10 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-01-10 20:10 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-01-10 20:10 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-01-10 20:10 - 2013-10-03 23:09 - 00385528 _____ () C:\Windows\system32\ApnDatabase.xml
2014-01-10 20:10 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-10 20:10 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-01-10 20:10 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-01-10 20:10 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-10 20:10 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-01-10 20:10 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-01-10 20:10 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-01-10 20:10 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-01-10 20:10 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-01-10 20:10 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-01-10 20:10 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-10 20:10 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2014-01-10 20:10 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-01-10 20:10 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-01-10 20:10 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-01-10 20:10 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-01-10 20:10 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2014-01-10 20:10 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-01-10 20:10 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2014-01-10 20:10 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2014-01-10 20:10 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-01-10 20:10 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2014-01-10 20:10 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-10 20:10 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-10 20:10 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-01-10 20:10 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-01-10 20:10 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-01-10 20:10 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
==================== One Month Modified Files and Folders =======
2014-02-02 21:46 - 2014-01-30 19:22 - 00019273 _____ () C:\Users\HP-PC\Downloads\FRST.txt
2014-02-02 21:46 - 2014-01-30 19:21 - 00000000 ____D () C:\FRST
2014-02-02 21:39 - 2014-02-02 21:39 - 02080256 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST64(1).exe
2014-02-02 21:39 - 2014-01-30 12:55 - 00265376 _____ () C:\Windows\system32\Drivers\APPFCONT.DAT.bck
2014-02-02 21:39 - 2014-01-30 12:55 - 00265376 _____ () C:\Windows\system32\Drivers\APPFCONT.DAT
2014-02-02 21:21 - 2013-09-04 21:51 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-02 21:21 - 2012-09-26 08:53 - 00000950 _____ () C:\Windows\SysWOW64\bscs.ini
2014-02-02 21:18 - 2014-01-30 12:59 - 00000104 _____ () C:\Windows\system32\Drivers\etc\NetAdapt.cfg.bck
2014-02-02 21:18 - 2014-01-30 12:59 - 00000104 _____ () C:\Windows\system32\Drivers\etc\NetAdapt.cfg
2014-02-02 21:18 - 2013-05-08 13:18 - 00003620 _____ () C:\Windows\SysWOW64\LOCALSERVICE.INI
2014-02-02 21:18 - 2013-05-08 13:18 - 00000043 _____ () C:\Windows\SysWOW64\LOCALDEVICE.INI
2014-02-02 20:42 - 2014-02-02 18:10 - 00000360 _____ () C:\Windows\system32\Drivers\etc\wnmuth.wlt.bck
2014-02-02 20:42 - 2014-02-02 18:10 - 00000360 _____ () C:\Windows\system32\Drivers\etc\wnmuth.wlt
2014-02-02 20:02 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-02-02 18:18 - 2013-05-31 11:42 - 01947991 _____ () C:\Windows\WindowsUpdate.log
2014-02-02 18:10 - 2014-01-30 13:17 - 00008627 _____ () C:\Windows\SysWOW64\PAV_FOG.OPC
2014-01-31 21:15 - 2013-07-29 08:57 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-227508969-234495266-3810002790-1002
2014-01-30 20:07 - 2014-01-30 20:07 - 00000000 ____D () C:\Windows\ERUNT
2014-01-30 20:06 - 2014-01-30 20:06 - 01037068 _____ (Thisisu) C:\Users\HP-PC\Downloads\JRT.exe
2014-01-30 19:57 - 2014-01-30 19:57 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-30 19:57 - 2014-01-30 19:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-01-30 19:57 - 2014-01-30 19:56 - 23924520 _____ (Mozilla) C:\Users\HP-PC\Downloads\Firefox Setup 26.0.exe
2014-01-30 19:42 - 2014-01-30 19:07 - 00000092 _____ () C:\Windows\system32\Drivers\etc\NetLoc.wlt.bck
2014-01-30 19:42 - 2014-01-30 19:07 - 00000092 _____ () C:\Windows\system32\Drivers\etc\NetLoc.wlt
2014-01-30 19:42 - 2014-01-30 12:59 - 00000252 _____ () C:\Windows\system32\Drivers\etc\IdsFlt.cfg.bck
2014-01-30 19:42 - 2014-01-30 12:59 - 00000252 _____ () C:\Windows\system32\Drivers\etc\IdsFlt.cfg
2014-01-30 19:42 - 2014-01-30 12:59 - 00000068 _____ () C:\Windows\system32\Drivers\etc\NetFlt.cfg.bck
2014-01-30 19:42 - 2014-01-30 12:59 - 00000068 _____ () C:\Windows\system32\Drivers\etc\NetFlt.cfg
2014-01-30 19:42 - 2014-01-30 12:59 - 00000056 _____ () C:\Windows\system32\Drivers\etc\WnmFlt.cfg.bck
2014-01-30 19:42 - 2014-01-30 12:59 - 00000056 _____ () C:\Windows\system32\Drivers\etc\WnmFlt.cfg
2014-01-30 19:42 - 2014-01-30 12:59 - 00000056 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.cfg.bck
2014-01-30 19:42 - 2014-01-30 12:59 - 00000056 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.cfg
2014-01-30 19:42 - 2014-01-30 12:55 - 00303044 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.rls.bck
2014-01-30 19:42 - 2014-01-30 12:55 - 00303044 _____ () C:\Windows\system32\Drivers\etc\DsaFlt.rls
2014-01-30 19:42 - 2014-01-30 12:55 - 00001132 _____ () C:\Windows\system32\Drivers\APPFLTR.CFG.bck
2014-01-30 19:42 - 2014-01-30 12:55 - 00001132 _____ () C:\Windows\system32\Drivers\APPFLTR.CFG
2014-01-30 19:40 - 2014-01-30 12:59 - 00000064 _____ () C:\Windows\system32\Drivers\etc\NetAR.wlt.bck
2014-01-30 19:40 - 2014-01-30 12:59 - 00000064 _____ () C:\Windows\system32\Drivers\etc\NetAR.wlt
2014-01-30 19:40 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-01-30 19:39 - 2012-08-03 23:23 - 00740302 _____ () C:\Windows\PFRO.log
2014-01-30 19:39 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-01-30 19:38 - 2014-01-10 20:57 - 00000000 ____D () C:\Program Files (x86)\VideoPlayerV3
2014-01-30 19:27 - 2014-01-30 19:27 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\Malwarebytes
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-30 19:27 - 2014-01-30 19:27 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-30 19:26 - 2014-01-30 19:26 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\HP-PC\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-30 19:23 - 2014-01-30 19:22 - 00016503 _____ () C:\Users\HP-PC\Downloads\Addition.txt
2014-01-30 19:20 - 2014-01-30 19:20 - 02079744 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST64.exe
2014-01-30 19:19 - 2014-01-30 19:19 - 01137152 _____ (Farbar) C:\Users\HP-PC\Downloads\FRST.exe
2014-01-30 19:12 - 2014-01-30 19:12 - 00688992 ____R (Swearware) C:\Users\HP-PC\Downloads\dds.exe
2014-01-30 19:03 - 2014-01-30 19:02 - 00000000 ____D () C:\AdwCleaner
2014-01-30 19:03 - 2013-05-31 11:45 - 00000995 _____ () C:\Users\HP-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 19:01 - 2014-01-30 19:01 - 01166132 _____ () C:\Users\HP-PC\Downloads\adwcleaner.exe
2014-01-30 19:00 - 2014-01-30 19:00 - 01166132 _____ () C:\Users\HP-PC\Downloads\adwcleaner-3.018.exe
2014-01-30 13:21 - 2014-01-30 13:19 - 00001236 _____ () C:\Windows\SysWOW64\PCloudCleanerService.log
2014-01-30 13:19 - 2014-01-23 19:11 - 00434032 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 13:17 - 2014-01-30 13:17 - 00004148 _____ () C:\Windows\SysWOW64\BroomData.bit
2014-01-30 13:13 - 2013-09-14 14:41 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-30 13:08 - 2012-07-26 08:52 - 00000000 ____D () C:\Windows\ShellNew
2014-01-30 13:07 - 2012-07-26 06:26 - 00000076 _____ () C:\Windows\win.ini
2014-01-30 13:06 - 2012-11-08 19:22 - 00831158 _____ () C:\Windows\system32\perfh007.dat
2014-01-30 13:06 - 2012-11-08 19:22 - 00188760 _____ () C:\Windows\system32\perfc007.dat
2014-01-30 13:06 - 2012-11-08 19:16 - 00864930 _____ () C:\Windows\system32\perfh00C.dat
2014-01-30 13:06 - 2012-11-08 19:16 - 00188118 _____ () C:\Windows\system32\perfc00C.dat
2014-01-30 13:06 - 2012-07-26 08:28 - 03007708 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-30 13:05 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-01-30 13:01 - 2014-01-30 13:00 - 00001282 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-01-30 13:00 - 2014-01-30 12:54 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-01-30 12:57 - 2014-01-30 12:57 - 00000000 ____D () C:\ProgramData\Panda Software
2014-01-30 12:56 - 2014-01-30 12:56 - 00000000 ____D () C:\Users\HP-PC\AppData\Local\Panda Security
2014-01-30 12:55 - 2014-01-30 12:55 - 00015928 _____ () C:\Windows\system32\Drivers\COMFiltr.sys
2014-01-30 12:55 - 2014-01-30 12:55 - 00002528 _____ () C:\Users\Public\Desktop\Remote-Zugriff installieren.lnk
2014-01-30 12:55 - 2014-01-30 12:55 - 00002247 _____ () C:\Users\Public\Desktop\Panda Internet Security 2014.lnk
2014-01-30 12:55 - 2014-01-30 12:55 - 00000274 _____ () C:\Windows\system32\PavCPL64.dat
2014-01-30 12:55 - 2014-01-30 12:55 - 00000000 ____D () C:\ProgramData\Backup
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\Windows\SysWOW64\PAV
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\Panda Security
2014-01-30 12:54 - 2014-01-30 12:54 - 00000000 ____D () C:\ProgramData\Panda Security
2014-01-30 12:54 - 2012-11-08 11:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-30 12:51 - 2014-01-30 12:51 - 01061256 _____ () C:\Users\HP-PC\Downloads\PANDAIS14ESD(1).exe
2014-01-30 12:49 - 2014-01-30 12:49 - 01061256 _____ () C:\Users\HP-PC\Downloads\PANDAIS14ESD.exe
2014-01-30 12:49 - 2014-01-30 12:49 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-01-30 12:49 - 2014-01-30 12:49 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerV1
2014-01-30 12:49 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-01-30 12:49 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-01-30 12:47 - 2014-01-21 18:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-01-30 12:47 - 2013-05-08 13:41 - 00000000 ____D () C:\ProgramData\Norton
2014-01-30 12:44 - 2012-07-26 09:12 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-01-30 12:41 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-01-30 12:18 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-01-29 11:49 - 2012-07-26 08:21 - 00040997 _____ () C:\Windows\setupact.log
2014-01-29 11:38 - 2013-05-31 11:42 - 00000000 ____D () C:\Users\HP-PC\AppData\Local\VirtualStore
2014-01-23 19:10 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\WinStore
2014-01-21 18:29 - 2014-01-21 18:29 - 00000000 ____D () C:\Users\HP-PC\AppData\Roaming\TuneUp Software
2014-01-21 18:26 - 2014-01-21 18:26 - 04435768 _____ (AVG Technologies) C:\Users\HP-PC\Downloads\avg_avct_stb_all_2014_4259_cm10.exe
2014-01-21 18:26 - 2014-01-21 18:26 - 00000000 ____D () C:\Users\HP-PC\AppData\Local\MFAData
2014-01-19 20:08 - 2013-09-02 18:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-19 20:06 - 2013-06-03 16:27 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 19:00 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-01-14 19:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-01-10 20:21 - 2012-07-26 06:38 - 00000000 ____D () C:\Windows\system32\oobe
2014-01-09 09:02 - 2014-01-14 19:03 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-09 09:02 - 2014-01-14 19:03 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 21:26 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
Some content of TEMP:
====================
C:\Users\HP-PC\AppData\Local\Temp\Better-Surf.exe
C:\Users\HP-PC\AppData\Local\Temp\BetterSurfPlusInstaller.exe
C:\Users\HP-PC\AppData\Local\Temp\PCloudCleanerUpdater.exe
C:\Users\HP-PC\AppData\Local\Temp\Quarantine.exe
C:\Users\HP-PC\AppData\Local\Temp\Setup1.exe
C:\Users\HP-PC\AppData\Local\Temp\Setup2.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-30 12:28
==================== End Of Log ============================ --- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-02-2014 04
Ran by HP-PC at 2014-02-02 21:47:11
Running from C:\Users\HP-PC\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Panda Internet Security 2014 (Enabled - Up to date) {5FD6C936-849B-5CE2-14BA-709E1D6FD1DA}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Internet Security 2014 (Enabled - Up to date) {E4B728D2-A2A1-536C-2E0A-4BEC66E89B67}
FW: Panda Personal Firewall 2014 (Enabled) {67ED4813-CEF4-5DBA-3FE5-D9ABE3BC96A1}
==================== Installed Programs ======================
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.6.636 - Adobe Systems, Inc.)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.86 - AuthenTec, Inc.) Hidden
Connected Music powered by Universal Music Group version 1.0 (x32 Version: 1.0 - Snowite)
CyberLink LabelPrint (x32 Version: 2.5.2.5712 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.2.5712 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.2.2114 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.2.2114 - CyberLink Corp.) Hidden
CyberLink PhotoDirector (x32 Version: 2.0.2.3317 - CyberLink Corp.)
CyberLink PhotoDirector (x32 Version: 2.0.2.3317 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (x32 Version: 8.0.2.2110 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.2.2110 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.2.2126 - CyberLink Corp.)
CyberLink PowerDirector 10 (x32 Version: 10.0.2.2126 - CyberLink Corp.) Hidden
CyberLink PowerDVD (x32 Version: 10.0.7.4528 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 10.0.7.4528 - CyberLink Corp.) Hidden
CyberLink YouCam (x32 Version: 3.5.5.5811 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.5.5.5811 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Energy Star (x32 Version: 1.0.9 - Hewlett-Packard Company)
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (Version: 4.2.8.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (x32 Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (x32 Version: 1.0.1218 - Hewlett-Packard)
HP CoolSense (x32 Version: 2.10.42 - Hewlett-Packard Company)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Documentation (x32 Version: 1.2.0.0 - Hewlett-Packard)
HP Postscript Converter (Version: 3.1.3591 - Hewlett-Packard) Hidden
HP Quick Launch (x32 Version: 3.0.6 - Hewlett-Packard Company)
HP Recovery Manager (x32 Version: 8.00 - Hewlett-Packard) Hidden
HP Registration Service (Version: 1.1.6232.4245 - Hewlett-Packard)
HP SimplePass (x32 Version: 6.0.100.244 - Hewlett-Packard)
HP Support Assistant (x32 Version: 7.0.39.15 - Hewlett-Packard Company)
HP Utility Center (x32 Version: 1.0.8 - Hewlett-Packard)
HP Wireless Button Driver (x32 Version: 1.0.6.1 - Hewlett-Packard Company)
iCloud (Version: 3.0.2.163 - Apple Inc.)
IDT Audio (x32 Version: 1.0.6423.0 - IDT)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2857 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.9.1002 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Player (x32 Version: 1.1 - Media Player)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
NVIDIA Grafiktreiber 306.97 (Version: 306.97 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.85.551 - NVIDIA Corporation) Hidden
NVIDIA Optimus 1.10.8 (Version: 1.10.8 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 306.97 (Version: 306.97 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
Panda Cloud Cleaner (x32 Version: 1.0.83 - Panda Security)
Panda Internet Security 2014 (x32 Version: 19.01.01 - Panda Security)
Panda Internet Security 2014 (x32 Version: 19.01.01 - Panda Security) Hidden
Password Depot 7 - Panda Secure Vault Edition (x32 Version: 7.1.0 - AceBIT GmbH)
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Raccolta foto (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Ralink Bluetooth Stack64 (Version: 9.0.725.0 - Ralink Corporation)
Ralink RT3290 802.11bgn Wi-Fi Adapter (x32 Version: 5.0.5.0 - Ralink)
Realtek Ethernet Controller Driver (x32 Version: 8.2.612.2012 - Realtek)
Realtek PCIE Card Reader (x32 Version: 6.2.8400.29034 - Realtek Semiconductor Corp.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 16.2.15.0 - Synaptics Incorporated)
Validity WBF DDK (Version: 4.4.234.0 - Validity Sensors, Inc.)
Windows Live (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
==================== Restore Points =========================
10-01-2014 19:19:41 Windows Update
19-01-2014 19:04:11 Windows Update
21-01-2014 17:28:28 Installed AVG 2014
21-01-2014 17:28:49 Installed AVG 2014
30-01-2014 11:43:36 Removed AVG 2014
==================== Hosts content: ==========================
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {06F0ED5F-72CC-4CF1-9587-251C7F425F74} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {1D528648-44B8-4EA2-90EA-B20BAE348C5C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {3DFF14C1-D0B7-49D7-8C62-A73B68B087CB} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {4F9E6AF5-9FB7-4A9D-B87C-1D9075E38179} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08] (CyberLink)
Task: {5E588A32-8F52-49F8-A10B-242352020758} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-10-12] (CyberLink)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {BB287BD0-3C96-4DA8-A260-8B63D5D4DC4E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {DAC99DAF-94A4-4C09-AC3C-1818F487610F} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-09-14] (Apple Inc.)
Task: {E5FABFC0-0CF0-44AB-9F4E-437FF0658288} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {ECDF254F-B50E-412E-8E30-A1106F0E9EF8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2012-09-19 17:37 - 2012-09-19 17:37 - 00017160 _____ () C:\Windows\system32\BsHelpCSps.dll
2013-06-11 13:32 - 2013-06-11 14:13 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2013-05-08 13:02 - 2012-09-24 23:13 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-10-12 17:22 - 2012-10-12 17:22 - 00120224 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesModule.dll
2012-10-12 17:22 - 2012-10-12 17:22 - 00048544 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesProxy.dll
2012-10-12 17:22 - 2012-10-12 17:22 - 00180224 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\zxing.dll
2013-05-31 11:43 - 2013-05-31 11:43 - 00120224 _____ () C:\Users\HP-PC\AppData\Local\assembly\dl3\X5371647.RDO\LTXQBRQ4.32J\b8d81331\004b58b8_95a8cd01\HPItunesModule.DLL
2013-09-13 18:51 - 2013-09-13 18:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 18:51 - 2013-09-13 18:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-09-19 17:37 - 2012-09-19 17:37 - 00029960 _____ () C:\Windows\SYSTEM32\BsTrace.dll
2012-09-19 17:37 - 2012-09-19 17:37 - 00017160 _____ () C:\Windows\SYSTEM32\BsHelpCSps.dll
2012-09-19 17:37 - 2012-09-19 17:37 - 00062216 _____ () C:\Windows\SYSTEM32\BlueSoleilCSps.dll
2012-09-24 13:27 - 2012-09-24 13:27 - 00335176 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\USB\tl_filter.dll
2012-05-02 16:28 - 2012-05-02 16:28 - 00012800 _____ () C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\Driver\AMP\IVTAMPRL.dll
2014-01-30 12:54 - 2007-02-14 13:55 - 00165424 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\MiniCrypto.dll
2014-01-30 12:54 - 2004-05-19 11:33 - 00507904 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\libxml2.dll
2014-01-30 12:54 - 2007-02-14 13:55 - 00099888 _____ () C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APIcr.dll
2013-05-08 13:30 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 10:34 - 2012-06-08 10:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2012-09-19 17:37 - 2012-09-19 17:37 - 00079624 _____ () C:\Windows\SYSTEM32\BsProfilefunc.dll
2012-09-19 17:37 - 2012-09-19 17:37 - 00363784 _____ () C:\Windows\SYSTEM32\BsExtendFunc.dll
2013-09-08 10:14 - 2013-09-08 10:14 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\580dd8b0082db602dda6a42bf4fb1b17\PSIClient.ni.dll
2013-05-08 13:01 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-01-30 19:57 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2012-08-10 00:36 - 2012-08-10 00:36 - 00018792 _____ () C:\Program Files (x86)\HP SimplePass\DownloadManager.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 29%
Total physical RAM: 8081.27 MB
Available physical RAM: 5700.23 MB
Total Pagefile: 9297.27 MB
Available Pagefile: 6458.75 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:440.58 GB) (Free:389.42 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:24.4 GB) (Free:2.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: A50E1C7D)
Partition: GPT Partition Type
==================== End Of Log ============================ |