ChristianLaa | 16.02.2014 10:40 | Vielen Dank
Anbei 2 Dateien die mir dieses Programm gesendet hat:
FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-02-2014 01
Ran by HPHHH (administrator) on HPHHH-HP on 15-02-2014 21:52:42
Running from C:\Users\HPHHH\Desktop
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\RegHunter\RegHunter.exe
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(SafeApp Software, LLC) C:\Program Files (x86)\Disk Cleaner\DiskCleaner.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(SafeApp Software, LLC) C:\Program Files (x86)\Disk Cleaner\DiskCleanerService.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Hewlett-Packard Company) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Ipswitch) C:\Program Files (x86)\Ipswitch\WS_FTP 12\WsftpCOMHelper.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(SafeApp Software, LLC) C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [hpsysdrv] - c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [568888 2010-01-18] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-09-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-07-22] (Geek Software GmbH)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2013-09-03] (Adobe Systems Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.)
HKLM-x32\...\Run: [Malwarebytes' Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [462408 2012-04-04] (Malwarebytes Corporation)
HKLM-x32\...\Run: [Disk Cleaner] - C:\Program Files (x86)\Disk Cleaner\DiskCleaner.Exe [5142864 2014-01-26] (SafeApp Software, LLC)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\.DEFAULT\...\Run: [Tok-Cirrhatus] - [X]
HKU\.DEFAULT\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-2109268533-3021431479-780890264-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-2109268533-3021431479-780890264-1000\...\Policies\Explorer: [NoSaveSettings] 0
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In
SearchScopes: HKLM - DefaultScope {31BAF291-0494-618D-546A-1F0102BF6CDF} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1Qzu0DyEzzyDyCyEzyyByD0EyByE0B0FzztCtN0D0Tzu0CyCtBtDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=2071626565&ir=
SearchScopes: HKLM - {31BAF291-0494-618D-546A-1F0102BF6CDF} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1Qzu0DyEzzyDyCyEzyyByD0EyByE0B0FzztCtN0D0Tzu0CyCtBtDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=2071626565&ir=
SearchScopes: HKLM-x32 - {494B86C2-5C1B-40C3-46D9-25939E60A927} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1Qzu0DyEzzyDyCyEzyyByD0EyByE0B0FzztCtN0D0Tzu0CyCtBtDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=2071626565&ir=
SearchScopes: HKCU - DefaultScope {31BAF291-0494-618D-546A-1F0102BF6CDF} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1Qzu0DyEzzyDyCyEzyyByD0EyByE0B0FzztCtN0D0Tzu0CyCtBtDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=2071626565&ir=
SearchScopes: HKCU - {31BAF291-0494-618D-546A-1F0102BF6CDF} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dnldmsd&cd=2XzuyEtN2Y1L1Qzu0DyEzzyDyCyEzyyByD0EyByE0B0FzztCtN0D0Tzu0CyCtBtDtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1Q1G1I1Q1H1B1Q&cr=2071626565&ir=
SearchScopes: HKCU - {AC129BF9-68BF-4bc4-A1DC-ECB62712FF99} URL = hxxp://search.kikin.com/search/?q={searchTerms}
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\HPHHH\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\HPHHH\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npatgpc.dll (Cisco WebEx LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\blekkotb.xml
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\staged [2013-12-22]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-22]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-22]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-04-06]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ []
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-15]
CHR Extension: (Google Drive) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-15]
CHR Extension: (YouTube) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-15]
CHR Extension: (Google-Suche) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-15]
CHR Extension: (Skype Click to Call) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-02-15]
CHR Extension: (Google Wallet) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
CHR Extension: (Google Mail) - C:\Users\HPHHH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-15]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-08-14]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.)
R2 Disk Cleaner Service; C:\Program Files (x86)\Disk Cleaner\DiskCleanerService.exe [80224 2014-01-26] (SafeApp Software, LLC)
S4 lmab_device; C:\Windows\system32\LMabcoms.exe [1044992 2009-08-07] ( )
S4 lmab_device; C:\Windows\SysWOW64\LMabcoms.exe [593920 2009-08-07] ( )
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [654408 2012-04-04] (Malwarebytes Corporation)
R2 MSSQL$JTLWAWI; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [635416 2009-10-14] (PDF Complete Inc)
S4 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 Registry Helper Service; C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe [84328 2014-01-26] (SafeApp Software, LLC)
S3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [151848 2013-12-12] (Sophos Limited)
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2412344 2014-01-28] (TuneUp Software)
==================== Drivers (Whitelisted) ====================
R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwfx.sys [15872 2009-03-06] ()
S3 asusgsb; C:\Windows\System32\drivers\asusgsb.sys [17792 2009-02-17] (ASUSTeK Computer Inc.)
S3 AVFSFilter; No ImagePath
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
S3 Dnetr7364; C:\Windows\System32\DRIVERS\Dnetr7364.sys [716800 2009-06-17] (Ralink Technology, Corp.)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 ewusbnet; No ImagePath
S3 Huawei; No ImagePath
S3 hwusbdev; No ImagePath
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24904 2012-04-04] (Malwarebytes Corporation)
S3 RT73; C:\Windows\System32\DRIVERS\Dr71WU.sys [610816 2008-01-16] (Ralink Technology, Corp.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 DRHARD; \??\C:\Windows\system32\DRIVERS\DRHARD.SYS [X]
S1 EIO64; system32\DRIVERS\EIO64.sys [X]
S3 massfilter; system32\DRIVERS\massfilter.sys [X]
S4 NVHDA; system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP5\WNt500x64\Sandra.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
S3 ZTEusbvoice; system32\DRIVERS\ZTEusbvoice.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-15 21:52 - 2014-02-15 21:53 - 00019877 _____ () C:\Users\HPHHH\Desktop\FRST.txt
2014-02-15 21:52 - 2014-02-15 21:52 - 02152960 _____ (Farbar) C:\Users\HPHHH\Desktop\FRST64.exe
2014-02-15 21:52 - 2014-02-15 21:52 - 00000000 ____D () C:\FRST
2014-02-15 21:10 - 2014-02-15 21:10 - 00002209 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-15 20:41 - 2014-02-15 21:30 - 00000000 ____D () C:\ProgramData\Disk Cleaner
2014-02-15 20:41 - 2014-02-15 20:41 - 00000980 _____ () C:\Users\Public\Desktop\Disk Cleaner.lnk
2014-02-15 20:40 - 2014-02-15 20:41 - 00000000 ____D () C:\Program Files (x86)\Disk Cleaner
2014-02-15 19:09 - 2014-02-15 19:14 - 00000000 ____D () C:\Program Files (x86)\Brontok Removal Tool [1]
2014-02-15 19:09 - 2014-02-15 19:09 - 00001288 _____ () C:\Users\HPHHH\Desktop\Brontok Removal Tool [1].lnk
2014-02-15 19:09 - 2014-02-15 19:09 - 00001010 _____ () C:\Users\Public\Desktop\Registry Helper.lnk
2014-02-15 19:09 - 2012-12-10 11:04 - 00356352 _____ (eSellerate Inc.) C:\Windows\eSellerateEngine.dll
2014-02-15 19:09 - 2012-12-10 11:04 - 00081920 _____ (eSellerate Inc.) C:\Windows\eSellerateControl350.dll
2014-02-15 19:08 - 2014-02-15 19:09 - 00000000 ____D () C:\Program Files (x86)\Registry Helper
2014-02-15 08:40 - 2014-02-15 08:57 - 00000000 ___SD () C:\ComboFix
2014-02-15 08:37 - 2014-02-15 08:40 - 00000000 ___SD () C:\32788R22FWJFW
2014-02-15 08:15 - 2014-02-15 08:15 - 02405664 _____ (Trend Micro Inc.) C:\Users\HPHHH\Downloads\HousecallLauncher64.exe
2014-02-15 08:15 - 2014-02-15 08:15 - 02405664 _____ (Trend Micro Inc.) C:\Users\HPHHH\Downloads\HousecallLauncher64 (1).exe
2014-02-15 06:19 - 2011-01-26 07:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-15 06:19 - 2011-01-26 07:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-02-15 06:19 - 2011-01-26 07:31 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-02-15 06:19 - 2010-11-02 06:18 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-15 06:19 - 2010-11-02 06:12 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-15 06:19 - 2010-11-02 05:41 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2014-02-15 06:19 - 2010-06-26 06:31 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-02-15 06:19 - 2010-06-26 06:14 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2014-02-14 16:08 - 2014-02-14 16:08 - 00000000 _____ () C:\Users\HPHHH\AppData\Local\ListHost17.txt
2014-02-14 14:31 - 2014-02-14 19:59 - 00811078 _____ () C:\Users\HPHHH\Desktop\Namensliste (1).pptx
2014-02-14 14:31 - 2014-02-14 14:31 - 00632732 _____ () C:\Users\HPHHH\Downloads\Namensliste (1).pptx
2014-02-14 14:29 - 2014-02-14 14:29 - 00632732 _____ () C:\Users\HPHHH\Downloads\Namensliste.pptx
2014-02-14 14:23 - 2014-02-14 14:23 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (4).exe
2014-02-14 14:15 - 2014-02-14 14:15 - 09741296 _____ () C:\Users\HPHHH\Downloads\yet_another_cleaner.exe
2014-02-14 13:44 - 2014-02-14 13:44 - 00003192 _____ () C:\Windows\System32\Tasks\{93E9B291-F7B0-4588-A15D-82EA6318C8B2}
2014-02-14 13:25 - 2014-02-14 13:25 - 00000000 ____D () C:\ProgramData\Sophos
2014-02-14 13:23 - 2014-02-14 13:23 - 00003205 _____ () C:\Users\HPHHH\Desktop\Sophos Virus Removal Tool.lnk
2014-02-14 13:23 - 2014-02-14 13:23 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-02-14 13:23 - 2014-02-14 13:23 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-02-14 13:16 - 2014-02-14 13:16 - 84263280 _____ (Sophos Limited) C:\Users\HPHHH\Downloads\Sophos Virus Removal Tool.exe
2014-02-14 13:13 - 2014-02-14 13:13 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Ok-SendMail-Bron-tok
2014-02-14 13:11 - 2014-02-14 13:11 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (3).exe
2014-02-14 13:11 - 2014-02-14 13:11 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (2).exe
2014-02-14 13:10 - 2014-02-14 13:10 - 00193306 _____ () C:\Users\HPHHH\Desktop\doterra24.rar
2014-02-14 13:10 - 2014-02-14 13:10 - 00000051 _____ () C:\Users\HPHHH\AppData\Local\Kosong.Bron.Tok.txt
2014-02-14 12:43 - 2014-02-14 12:43 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Bron.tok-17-14
2014-02-14 12:26 - 2014-02-14 12:28 - 00001071 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-14 12:26 - 2014-02-14 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-14 12:26 - 2012-04-04 15:56 - 00024904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-14 11:55 - 2014-02-14 11:55 - 01166132 _____ () C:\Users\HPHHH\Downloads\adwcleaner.exe
2014-02-14 11:40 - 2014-02-14 11:40 - 00000000 ____D () C:\Users\HPHHH\Desktop\folien
2014-02-14 04:48 - 2014-02-14 04:48 - 00201301 _____ () C:\Users\HPHHH\Downloads\FREE_TRIAL_Namensliste.pptx
2014-02-14 04:47 - 2014-02-14 04:47 - 00117974 _____ () C:\Users\HPHHH\Desktop\powerpointleer.pptx
2014-02-14 04:12 - 2011-02-11 18:41 - 00597432 _____ () C:\Users\HPHHH\Desktop\Telefonmarketing.pptx
2014-02-14 04:12 - 2010-11-02 18:53 - 22256839 _____ () C:\Users\HPHHH\Desktop\diens.pptx
2014-02-14 04:11 - 2014-02-15 16:06 - 00000000 ____D () C:\Users\HPHHH\Desktop\altenwanewsletter
2014-02-13 20:56 - 2014-02-13 21:37 - 00000000 ____D () C:\Users\HPHHH\Desktop\powerleg
2014-02-13 20:48 - 2014-02-13 20:48 - 00000000 ____D () C:\Users\HPHHH\Desktop\index_files
2014-02-13 15:24 - 2014-02-13 15:24 - 07020544 ____N () C:\Users\HPHHH\Desktop\Struktur20062011Laacklaendergeordnet.xls
2014-02-13 15:18 - 2014-02-13 15:18 - 00024576 ____N () C:\Users\HPHHH\Desktop\frateamglobal.xls
2014-02-13 15:17 - 2014-02-13 15:17 - 03194368 ____N () C:\Users\HPHHH\Desktop\frankreichliste.xls
2014-02-13 15:15 - 2014-02-13 15:15 - 00416220 _____ () C:\Users\HPHHH\Desktop\frankreichliste.csv
2014-02-13 15:11 - 2014-02-13 15:11 - 00001951 _____ () C:\Users\HPHHH\Desktop\185296_471452592888799_1160758362_n - Shortcut.lnk
2014-02-13 15:05 - 2010-10-11 10:51 - 01105870 _____ () C:\Users\HPHHH\Desktop\Folie 19.wav
2014-02-13 14:31 - 2014-02-13 14:31 - 00190875 _____ () C:\Users\HPHHH\Desktop\Lucas.pptx
2014-02-13 13:30 - 2014-02-13 13:33 - 206860718 _____ () C:\Users\HPHHH\Downloads\Windows6.0-KB947821-v32-x64.msu
2014-02-13 11:13 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-13 11:13 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-13 11:13 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-13 11:13 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-13 11:13 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-13 11:13 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-13 11:13 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-13 11:13 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-13 11:07 - 2014-02-15 08:41 - 00000000 ____D () C:\Qoobox
2014-02-13 11:05 - 2014-02-13 11:57 - 00000000 ____D () C:\Windows\erdnt
2014-02-13 11:02 - 2014-02-15 08:37 - 05183211 ____R (Swearware) C:\Users\HPHHH\Downloads\ComboFix.exe
2014-02-12 18:24 - 2014-02-12 18:24 - 60220980 _____ () C:\Users\HPHHH\Downloads\achtung_experiment_-_16_-_strampeln_fuer_strom.mp4
2014-02-12 09:51 - 2014-02-12 11:19 - 00023417 ____H () C:\Users\HPHHH\Desktop\~WRL0003.tmp
2014-02-11 20:09 - 2014-02-11 20:09 - 00003340 _____ () C:\Windows\System32\Tasks\RegHunterStartup
2014-02-11 20:08 - 2014-02-11 20:08 - 00001165 _____ () C:\Users\Public\Desktop\RegHunter.lnk
2014-02-11 19:49 - 2014-02-11 19:49 - 00004516 _____ () C:\spyhunter.log
2014-02-11 18:49 - 2014-02-11 18:50 - 00016682 _____ () C:\sh4_service.log
2014-02-11 18:45 - 2013-10-18 15:01 - 00285747 _____ () C:\shldr
2014-02-11 18:45 - 2013-10-18 15:01 - 00008192 _____ () C:\shldr.mbr
2014-02-11 14:26 - 2014-02-14 13:48 - 00000007 ___SH () C:\autoexec.bat
2014-02-11 14:25 - 2014-02-15 15:54 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-02-11 14:25 - 2014-02-11 20:08 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-11 14:25 - 2014-02-11 14:25 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (1).exe
2014-02-11 14:25 - 2014-02-11 14:25 - 00003326 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-11 14:25 - 2014-02-11 14:25 - 00002256 _____ () C:\Users\HPHHH\Desktop\SpyHunter.lnk
2014-02-11 14:25 - 2014-02-11 14:25 - 00000000 ____D () C:\sh4ldr
2014-02-11 14:25 - 2012-06-22 11:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2014-02-11 14:22 - 2014-02-11 14:25 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-11 14:21 - 2014-02-11 14:22 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer.exe
2014-02-11 10:07 - 2014-02-15 08:29 - 00000000 ____D () C:\Users\HPHHH\Desktop\anzeige FORD
2014-02-11 09:44 - 2014-02-11 09:44 - 00179984 _____ (Kaspersky Lab) C:\Users\HPHHH\Downloads\kss12.0.1.117mlg_en-de_ru-de_fr-de_de-de.exe
2014-02-10 14:50 - 2014-02-10 14:50 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Avira
2014-02-10 14:48 - 2014-02-10 14:48 - 00002028 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-10 14:48 - 2014-02-10 14:48 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-10 14:48 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-10 14:48 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-10 14:48 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-10 14:48 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-10 14:46 - 2014-02-10 14:47 - 129598176 _____ () C:\Users\HPHHH\Downloads\avira_free344_antivirus_de.exe
2014-02-08 17:44 - 2014-02-08 17:44 - 00055148 _____ () C:\Users\HPHHH\Downloads\julia_nowak.vcf
2014-02-06 15:55 - 2014-02-06 15:55 - 01987005 _____ (Bimesoft) C:\Users\HPHHH\Downloads\SurfOffline_Standard.exe
2014-02-06 15:47 - 2014-02-13 21:11 - 00000000 ____D () C:\Users\HPHHH\Desktop\eriklandingpage
2014-02-06 14:51 - 2014-02-11 19:47 - 00000000 ____D () C:\ProgramData\Bimesoft
2014-02-06 14:49 - 2014-02-06 14:50 - 02088353 _____ (Bimesoft) C:\Users\HPHHH\Downloads\SurfOffline_Professional.exe
2014-02-06 13:51 - 2014-02-06 13:51 - 02551605 _____ () C:\Users\HPHHH\Desktop\laackteamglobal101anwendungen.pptm
2014-02-06 11:46 - 2014-02-06 11:46 - 00000100 ____H () C:\Users\HPHHH\Desktop\.~lock.Abrechnung_Laack.ods#
2014-02-01 11:14 - 2014-02-10 12:37 - 00000000 ____D () C:\Users\HPHHH\Downloads\formular_aktuelle_modue
2014-02-01 11:14 - 2014-02-01 11:14 - 00028833 _____ () C:\Users\HPHHH\Downloads\formular_aktuelle_modue.zip
2014-01-29 19:26 - 2014-01-29 19:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-29 19:26 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-29 19:26 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-29 19:26 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-29 19:26 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-29 19:25 - 2014-01-29 19:26 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-26 03:57 - 2014-01-26 03:57 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\RegistryHelperLM.ocx
2014-01-26 03:55 - 2014-01-26 03:55 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\DiskCleanerLM.ocx
2014-01-23 17:47 - 2014-01-23 17:47 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\EuroTalk
2014-01-18 15:54 - 2014-01-18 15:54 - 00000969 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-01-18 15:53 - 2014-01-18 15:54 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-01-17 12:57 - 2014-01-17 12:57 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\ing-saal
==================== One Month Modified Files and Folders =======
2014-02-15 21:53 - 2014-02-15 21:52 - 00019877 _____ () C:\Users\HPHHH\Desktop\FRST.txt
2014-02-15 21:52 - 2014-02-15 21:52 - 02152960 _____ (Farbar) C:\Users\HPHHH\Desktop\FRST64.exe
2014-02-15 21:52 - 2014-02-15 21:52 - 00000000 ____D () C:\FRST
2014-02-15 21:48 - 2013-10-28 09:52 - 06498816 ___SH () C:\Users\HPHHH\Desktop\Thumbs.db
2014-02-15 21:39 - 2009-07-14 05:45 - 00015568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-15 21:39 - 2009-07-14 05:45 - 00015568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-15 21:36 - 2011-04-01 09:54 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\FileZilla
2014-02-15 21:34 - 2013-06-13 08:23 - 01410607 _____ () C:\Windows\WindowsUpdate.log
2014-02-15 21:30 - 2014-02-15 20:41 - 00000000 ____D () C:\ProgramData\Disk Cleaner
2014-02-15 21:29 - 2011-03-22 19:19 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-02-15 21:28 - 2011-05-02 14:12 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-15 21:27 - 2013-07-19 07:59 - 00024542 _____ () C:\Windows\setupact.log
2014-02-15 21:27 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-15 21:26 - 2013-07-19 07:59 - 00620814 _____ () C:\Windows\PFRO.log
2014-02-15 21:13 - 2012-09-18 11:32 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-15 21:12 - 2011-03-21 18:38 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Skype
2014-02-15 21:10 - 2014-02-15 21:10 - 00002209 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-15 21:10 - 2011-05-02 14:12 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-15 21:03 - 2011-05-02 14:12 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-15 21:01 - 2013-07-15 10:43 - 00000256 _____ () C:\Windows\Tasks\HP Photo Creations Messager.job
2014-02-15 20:41 - 2014-02-15 20:41 - 00000980 _____ () C:\Users\Public\Desktop\Disk Cleaner.lnk
2014-02-15 20:41 - 2014-02-15 20:40 - 00000000 ____D () C:\Program Files (x86)\Disk Cleaner
2014-02-15 19:14 - 2014-02-15 19:09 - 00000000 ____D () C:\Program Files (x86)\Brontok Removal Tool [1]
2014-02-15 19:13 - 2013-01-20 22:08 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000UA.job
2014-02-15 19:09 - 2014-02-15 19:09 - 00001288 _____ () C:\Users\HPHHH\Desktop\Brontok Removal Tool [1].lnk
2014-02-15 19:09 - 2014-02-15 19:09 - 00001010 _____ () C:\Users\Public\Desktop\Registry Helper.lnk
2014-02-15 19:09 - 2014-02-15 19:08 - 00000000 ____D () C:\Program Files (x86)\Registry Helper
2014-02-15 19:09 - 2011-06-29 12:59 - 00000000 ____D () C:\ProgramData\Registry Helper
2014-02-15 18:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2014-02-15 18:38 - 2011-03-21 18:19 - 00001405 _____ () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-15 18:15 - 2013-03-04 12:14 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\calibre
2014-02-15 18:15 - 2012-05-12 23:30 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\YoWindow
2014-02-15 18:15 - 2011-11-30 13:15 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\TeamViewer
2014-02-15 18:15 - 2011-06-13 10:59 - 00000000 ____D () C:\Users\HPHHH\Desktop\Diverses
2014-02-15 18:15 - 2011-05-15 16:39 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\vlc
2014-02-15 18:15 - 2011-04-27 10:52 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Thunderbird
2014-02-15 18:15 - 2011-04-11 16:59 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\WinRAR
2014-02-15 18:15 - 2011-03-22 17:09 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\SoftGrid Client
2014-02-15 18:14 - 2013-09-09 12:10 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Dropbox
2014-02-15 18:14 - 2013-02-01 19:23 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\RCP 6
2014-02-15 18:14 - 2012-08-02 12:10 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\QuickScan
2014-02-15 18:14 - 2011-06-29 12:58 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\FinalMediaPlayer
2014-02-15 18:14 - 2011-05-29 15:05 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Power Sound Editor Free
2014-02-15 18:14 - 2011-04-20 17:23 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\SendBlaster2
2014-02-15 18:14 - 2011-04-18 09:58 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Ipswitch
2014-02-15 18:14 - 2011-03-31 17:40 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\PSpad
2014-02-15 18:13 - 2013-10-31 17:01 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\ArchiCrypt Ultimate RAM-Disk3
2014-02-15 18:13 - 2013-02-18 18:31 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\COMPUTERBILD-Abzockschutz
2014-02-15 18:13 - 2011-12-29 13:08 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Audacity
2014-02-15 18:13 - 2011-11-25 10:41 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Aquamarin Haushaltsbuch
2014-02-15 18:13 - 2011-11-16 08:44 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Audio Recorder for Free
2014-02-15 18:13 - 2011-08-01 10:09 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\{F27D08FE-72FC-482F-8DFC-9F234D21C06B}
2014-02-15 18:13 - 2011-03-24 18:11 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\{FA6F1E64-A6BD-4822-A094-03171A37E8C6}
2014-02-15 18:13 - 2011-03-23 14:14 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\nwaCompany
2014-02-15 18:12 - 2011-06-30 11:08 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\SENukeX
2014-02-15 18:12 - 2011-04-02 08:44 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\PowerCinema
2014-02-15 18:12 - 2011-03-21 18:19 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\PDFC
2014-02-15 16:06 - 2014-02-14 04:11 - 00000000 ____D () C:\Users\HPHHH\Desktop\altenwanewsletter
2014-02-15 16:05 - 2013-12-07 10:18 - 00000000 ___HD () C:\Users\HPHHH\Desktop\Automatisch beibehalten von Corel
2014-02-15 16:05 - 2013-11-30 10:16 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Loc.Mail.Bron.Tok
2014-02-15 16:05 - 2013-11-06 16:23 - 00000000 ___HD () C:\Users\HPHHH\Desktop\Corel Auto-Preserve
2014-02-15 16:05 - 2013-11-04 16:07 - 00000000 ____D () C:\ProgramData\Protexis
2014-02-15 16:05 - 2013-11-04 16:05 - 00000000 ____D () C:\ProgramData\Protexis64
2014-02-15 16:05 - 2013-07-18 21:26 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-15 16:05 - 2012-12-01 12:15 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-02-15 16:05 - 2012-11-13 14:26 - 00000000 ____D () C:\ProgramData\WebEx
2014-02-15 16:05 - 2012-07-13 19:52 - 00000000 ____D () C:\ProgramData\Vodafone
2014-02-15 16:05 - 2012-05-12 23:30 - 00000000 ____D () C:\ProgramData\YoWindow
2014-02-15 16:05 - 2012-01-05 15:59 - 00000000 ____D () C:\ProgramData\Recovery
2014-02-15 16:05 - 2011-07-19 03:09 - 00000000 ____D () C:\ProgramData\clp
2014-02-15 16:05 - 2011-07-14 08:31 - 00000000 ____D () C:\ProgramData\WEBREG
2014-02-15 16:05 - 2011-06-26 11:11 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-02-15 16:05 - 2011-03-29 15:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-15 16:05 - 2011-03-23 14:14 - 00000000 ____D () C:\ProgramData\firebird
2014-02-15 16:05 - 2010-10-06 01:51 - 00000000 ____D () C:\ProgramData\WildTangent
2014-02-15 16:05 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-15 16:05 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-15 16:05 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-15 16:05 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-15 16:05 - 2009-07-14 04:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-15 16:01 - 2013-07-18 21:28 - 00000000 ____D () C:\ProgramData\FreeDriverScout
2014-02-15 16:01 - 2010-10-06 01:36 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-15 16:00 - 2013-10-10 11:56 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-02-15 16:00 - 2013-07-08 15:23 - 00000000 ____D () C:\ProgramData\Avira
2014-02-15 15:59 - 2013-09-03 13:05 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-15 15:54 - 2014-02-11 14:25 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-02-15 15:54 - 2013-09-09 12:13 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-02-15 15:54 - 2011-05-29 15:05 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Power Sound Editor Free
2014-02-15 15:54 - 2011-04-11 16:59 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-15 15:54 - 2011-03-21 18:19 - 00000000 ___RD () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-15 15:54 - 2011-03-21 18:14 - 00000000 ___RD () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-15 15:54 - 2011-03-21 18:14 - 00000000 ___RD () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-15 08:58 - 2011-03-25 13:21 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\CrashDumps
2014-02-15 08:57 - 2014-02-15 08:40 - 00000000 ___SD () C:\ComboFix
2014-02-15 08:41 - 2014-02-13 11:07 - 00000000 ____D () C:\Qoobox
2014-02-15 08:40 - 2014-02-15 08:37 - 00000000 ___SD () C:\32788R22FWJFW
2014-02-15 08:37 - 2014-02-13 11:02 - 05183211 ____R (Swearware) C:\Users\HPHHH\Downloads\ComboFix.exe
2014-02-15 08:35 - 2013-01-04 10:43 - 00714240 ___SH () C:\Users\HPHHH\Documents\Thumbs.db
2014-02-15 08:32 - 2013-08-21 15:27 - 00000000 ____D () C:\AdwCleaner
2014-02-15 08:29 - 2014-02-11 10:07 - 00000000 ____D () C:\Users\HPHHH\Desktop\anzeige FORD
2014-02-15 08:15 - 2014-02-15 08:15 - 02405664 _____ (Trend Micro Inc.) C:\Users\HPHHH\Downloads\HousecallLauncher64.exe
2014-02-15 08:15 - 2014-02-15 08:15 - 02405664 _____ (Trend Micro Inc.) C:\Users\HPHHH\Downloads\HousecallLauncher64 (1).exe
2014-02-15 07:51 - 2012-02-06 09:51 - 00186368 ___SH () C:\Users\HPHHH\Thumbs.db
2014-02-15 07:51 - 2011-03-21 18:14 - 00000000 ____D () C:\Users\HPHHH
2014-02-15 06:13 - 2011-03-21 18:19 - 00000000 ___RD () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-15 06:11 - 2013-10-31 16:49 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\iSpy
2014-02-15 06:11 - 2009-07-14 08:45 - 00000000 ____D () C:\Windows\ShellNew
2014-02-15 02:00 - 2011-05-04 10:15 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Adobe
2014-02-14 22:13 - 2013-01-20 22:08 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000Core.job
2014-02-14 21:34 - 2013-07-15 10:43 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-02-14 21:34 - 2012-05-29 14:43 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-14 21:33 - 2010-10-06 01:30 - 00000000 ____D () C:\ProgramData\intel
2014-02-14 21:31 - 2013-03-08 15:03 - 00000000 ____D () C:\Users\HPHHH\.gimp-2.8
2014-02-14 21:30 - 2012-09-03 17:21 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Akamai
2014-02-14 21:30 - 2011-11-25 14:49 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Abelssoft
2014-02-14 21:30 - 2011-04-20 16:49 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Corel
2014-02-14 21:26 - 2013-10-12 12:05 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\gtk-2.0
2014-02-14 21:26 - 2011-03-21 18:18 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Hewlett-Packard
2014-02-14 19:59 - 2014-02-14 14:31 - 00811078 _____ () C:\Users\HPHHH\Desktop\Namensliste (1).pptx
2014-02-14 16:08 - 2014-02-14 16:08 - 00000000 _____ () C:\Users\HPHHH\AppData\Local\ListHost17.txt
2014-02-14 14:31 - 2014-02-14 14:31 - 00632732 _____ () C:\Users\HPHHH\Downloads\Namensliste (1).pptx
2014-02-14 14:29 - 2014-02-14 14:29 - 00632732 _____ () C:\Users\HPHHH\Downloads\Namensliste.pptx
2014-02-14 14:28 - 2013-03-04 12:01 - 00000000 ____D () C:\Users\HPHHH\Documents\My Kindle Content
2014-02-14 14:23 - 2014-02-14 14:23 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (4).exe
2014-02-14 14:15 - 2014-02-14 14:15 - 09741296 _____ () C:\Users\HPHHH\Downloads\yet_another_cleaner.exe
2014-02-14 13:48 - 2014-02-11 14:26 - 00000007 ___SH () C:\autoexec.bat
2014-02-14 13:44 - 2014-02-14 13:44 - 00003192 _____ () C:\Windows\System32\Tasks\{93E9B291-F7B0-4588-A15D-82EA6318C8B2}
2014-02-14 13:25 - 2014-02-14 13:25 - 00000000 ____D () C:\ProgramData\Sophos
2014-02-14 13:23 - 2014-02-14 13:23 - 00003205 _____ () C:\Users\HPHHH\Desktop\Sophos Virus Removal Tool.lnk
2014-02-14 13:23 - 2014-02-14 13:23 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-02-14 13:23 - 2014-02-14 13:23 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-02-14 13:16 - 2014-02-14 13:16 - 84263280 _____ (Sophos Limited) C:\Users\HPHHH\Downloads\Sophos Virus Removal Tool.exe
2014-02-14 13:13 - 2014-02-14 13:13 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Ok-SendMail-Bron-tok
2014-02-14 13:11 - 2014-02-14 13:11 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (3).exe
2014-02-14 13:11 - 2014-02-14 13:11 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (2).exe
2014-02-14 13:10 - 2014-02-14 13:10 - 00193306 _____ () C:\Users\HPHHH\Desktop\doterra24.rar
2014-02-14 13:10 - 2014-02-14 13:10 - 00000051 _____ () C:\Users\HPHHH\AppData\Local\Kosong.Bron.Tok.txt
2014-02-14 12:43 - 2014-02-14 12:43 - 00000000 ____D () C:\Users\HPHHH\AppData\Local\Bron.tok-17-14
2014-02-14 12:43 - 2011-09-13 07:42 - 00000000 ____D () C:\Users\HPHHH\vonoehrl
2014-02-14 12:43 - 2011-06-26 08:39 - 00000000 ____D () C:\Users\HPHHH\schufa
2014-02-14 12:28 - 2014-02-14 12:26 - 00001071 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-14 12:28 - 2014-02-14 12:26 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-14 12:15 - 2012-01-09 18:29 - 00000000 ____D () C:\ProgramData\Uniblue
2014-02-14 11:55 - 2014-02-14 11:55 - 01166132 _____ () C:\Users\HPHHH\Downloads\adwcleaner.exe
2014-02-14 11:40 - 2014-02-14 11:40 - 00000000 ____D () C:\Users\HPHHH\Desktop\folien
2014-02-14 11:39 - 2011-12-16 20:31 - 00000000 ____D () C:\ProgramData\Apple
2014-02-14 04:48 - 2014-02-14 04:48 - 00201301 _____ () C:\Users\HPHHH\Downloads\FREE_TRIAL_Namensliste.pptx
2014-02-14 04:47 - 2014-02-14 04:47 - 00117974 _____ () C:\Users\HPHHH\Desktop\powerpointleer.pptx
2014-02-14 04:10 - 2013-08-14 15:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-14 04:05 - 2011-12-16 19:09 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-13 22:17 - 2013-09-08 12:53 - 00000000 ____D () C:\Users\HPHHH\Desktop\DoTerra
2014-02-13 21:37 - 2014-02-13 20:56 - 00000000 ____D () C:\Users\HPHHH\Desktop\powerleg
2014-02-13 21:11 - 2014-02-06 15:47 - 00000000 ____D () C:\Users\HPHHH\Desktop\eriklandingpage
2014-02-13 20:48 - 2014-02-13 20:48 - 00000000 ____D () C:\Users\HPHHH\Desktop\index_files
2014-02-13 15:24 - 2014-02-13 15:24 - 07020544 ____N () C:\Users\HPHHH\Desktop\Struktur20062011Laacklaendergeordnet.xls
2014-02-13 15:18 - 2014-02-13 15:18 - 00024576 ____N () C:\Users\HPHHH\Desktop\frateamglobal.xls
2014-02-13 15:17 - 2014-02-13 15:17 - 03194368 ____N () C:\Users\HPHHH\Desktop\frankreichliste.xls
2014-02-13 15:15 - 2014-02-13 15:15 - 00416220 _____ () C:\Users\HPHHH\Desktop\frankreichliste.csv
2014-02-13 15:11 - 2014-02-13 15:11 - 00001951 _____ () C:\Users\HPHHH\Desktop\185296_471452592888799_1160758362_n - Shortcut.lnk
2014-02-13 14:31 - 2014-02-13 14:31 - 00190875 _____ () C:\Users\HPHHH\Desktop\Lucas.pptx
2014-02-13 13:33 - 2014-02-13 13:30 - 206860718 _____ () C:\Users\HPHHH\Downloads\Windows6.0-KB947821-v32-x64.msu
2014-02-13 11:57 - 2014-02-13 11:05 - 00000000 ____D () C:\Windows\erdnt
2014-02-13 11:51 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-13 11:13 - 2013-12-22 12:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-13 10:59 - 2013-06-17 16:55 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\UseNeXT
2014-02-12 18:24 - 2014-02-12 18:24 - 60220980 _____ () C:\Users\HPHHH\Downloads\achtung_experiment_-_16_-_strampeln_fuer_strom.mp4
2014-02-12 11:19 - 2014-02-12 09:51 - 00023417 ____H () C:\Users\HPHHH\Desktop\~WRL0003.tmp
2014-02-11 20:48 - 2013-08-03 09:49 - 00000000 ____D () C:\Windows\Minidump
2014-02-11 20:33 - 2011-04-26 16:28 - 00000000 ___RD () C:\Users\HPHHH\Dropbox
2014-02-11 20:09 - 2014-02-11 20:09 - 00003340 _____ () C:\Windows\System32\Tasks\RegHunterStartup
2014-02-11 20:08 - 2014-02-11 20:08 - 00001165 _____ () C:\Users\Public\Desktop\RegHunter.lnk
2014-02-11 20:08 - 2014-02-11 14:25 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-11 19:49 - 2014-02-11 19:49 - 00004516 _____ () C:\spyhunter.log
2014-02-11 19:47 - 2014-02-06 14:51 - 00000000 ____D () C:\ProgramData\Bimesoft
2014-02-11 19:35 - 2013-12-10 10:34 - 00000000 ____D () C:\Program Files (x86)\Tensons
2014-02-11 18:58 - 2011-05-02 14:12 - 00004104 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 18:58 - 2011-05-02 14:12 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-11 18:50 - 2014-02-11 18:49 - 00016682 _____ () C:\sh4_service.log
2014-02-11 15:08 - 2011-09-02 15:05 - 00000000 ____D () C:\Users\HPHHH\folien
2014-02-11 14:47 - 2009-07-14 08:44 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-11 14:47 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-02-11 14:35 - 2013-04-19 15:58 - 00000000 ____D () C:\Users\HPHHH\Desktop\festplatte
2014-02-11 14:25 - 2014-02-11 14:25 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer (1).exe
2014-02-11 14:25 - 2014-02-11 14:25 - 00003326 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-11 14:25 - 2014-02-11 14:25 - 00002256 _____ () C:\Users\HPHHH\Desktop\SpyHunter.lnk
2014-02-11 14:25 - 2014-02-11 14:25 - 00000000 ____D () C:\sh4ldr
2014-02-11 14:25 - 2014-02-11 14:22 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-11 14:22 - 2014-02-11 14:21 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\HPHHH\Downloads\SpyHunter-Installer.exe
2014-02-11 12:22 - 2014-01-09 12:35 - 00000000 ____D () C:\Users\HPHHH\Desktop\tonaufnahmen
2014-02-11 09:49 - 2013-08-21 15:18 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-11 09:49 - 2011-03-21 18:37 - 00000000 ____D () C:\ProgramData\Skype
2014-02-11 09:44 - 2014-02-11 09:44 - 00179984 _____ (Kaspersky Lab) C:\Users\HPHHH\Downloads\kss12.0.1.117mlg_en-de_ru-de_fr-de_de-de.exe
2014-02-10 18:20 - 2013-03-12 15:51 - 00000000 ____D () C:\Users\Public\Documents\My DAZ 3D Library
2014-02-10 14:50 - 2014-02-10 14:50 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\Avira
2014-02-10 14:48 - 2014-02-10 14:48 - 00002028 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-10 14:48 - 2014-02-10 14:48 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-10 14:47 - 2014-02-10 14:46 - 129598176 _____ () C:\Users\HPHHH\Downloads\avira_free344_antivirus_de.exe
2014-02-10 12:39 - 2011-11-19 17:28 - 00000000 ____D () C:\Users\HPHHH\P5JavaClientSettings
2014-02-10 12:37 - 2014-02-01 11:14 - 00000000 ____D () C:\Users\HPHHH\Downloads\formular_aktuelle_modue
2014-02-09 10:00 - 2010-10-06 01:29 - 00000000 ____D () C:\ProgramData\PDFC
2014-02-08 17:44 - 2014-02-08 17:44 - 00055148 _____ () C:\Users\HPHHH\Downloads\julia_nowak.vcf
2014-02-06 15:55 - 2014-02-06 15:55 - 01987005 _____ (Bimesoft) C:\Users\HPHHH\Downloads\SurfOffline_Standard.exe
2014-02-06 14:50 - 2014-02-06 14:49 - 02088353 _____ (Bimesoft) C:\Users\HPHHH\Downloads\SurfOffline_Professional.exe
2014-02-06 13:51 - 2014-02-06 13:51 - 02551605 _____ () C:\Users\HPHHH\Desktop\laackteamglobal101anwendungen.pptm
2014-02-06 11:46 - 2014-02-06 11:46 - 00000100 ____H () C:\Users\HPHHH\Desktop\.~lock.Abrechnung_Laack.ods#
2014-02-05 19:13 - 2012-09-18 11:32 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 19:13 - 2012-09-18 11:32 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 19:13 - 2012-09-18 11:32 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-01 16:04 - 2013-08-27 08:48 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2013
2014-02-01 11:14 - 2014-02-01 11:14 - 00028833 _____ () C:\Users\HPHHH\Downloads\formular_aktuelle_modue.zip
2014-01-30 10:38 - 2012-12-01 12:28 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-01-30 10:38 - 2012-12-01 12:28 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-29 19:26 - 2014-01-29 19:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-29 19:26 - 2014-01-29 19:25 - 00005765 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-29 19:26 - 2012-04-03 06:57 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-28 09:35 - 2013-12-13 10:01 - 00026936 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-01-28 09:35 - 2013-12-13 10:01 - 00022328 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-01-28 09:35 - 2013-10-19 14:55 - 00038200 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll
2014-01-28 09:35 - 2013-10-19 14:55 - 00030520 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll
2014-01-28 09:35 - 2013-08-27 08:49 - 00035640 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-01-26 16:25 - 2009-07-14 06:13 - 00850618 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-26 03:57 - 2014-01-26 03:57 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\RegistryHelperLM.ocx
2014-01-26 03:55 - 2014-01-26 03:55 - 00389120 _____ (SafeApp Software, LLC) C:\Windows\SysWOW64\DiskCleanerLM.ocx
2014-01-23 17:47 - 2014-01-23 17:47 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\EuroTalk
2014-01-18 15:54 - 2014-01-18 15:54 - 00000969 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-01-18 15:54 - 2014-01-18 15:53 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-01-17 12:57 - 2014-01-17 12:57 - 00000000 ____D () C:\Users\HPHHH\AppData\Roaming\ing-saal
2014-01-16 21:22 - 2013-09-09 12:14 - 00001021 _____ () C:\Users\HPHHH\Desktop\Dropbox.lnk
Some content of TEMP:
====================
C:\Users\HPHHH\AppData\Local\Temp\avgnt.exe
C:\Users\HPHHH\AppData\Local\Temp\DiskCleanerSetupCS_2_1_0.exe
C:\Users\HPHHH\AppData\Local\Temp\Quarantine.exe
C:\Users\HPHHH\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-10 17:34
==================== End Of Log ============================ --- --- ---
--- --- ---
--- --- ---
FRST Additions Logfile: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-02-2014 01
Ran by HPHHH at 2014-02-15 21:54:48
Running from C:\Users\HPHHH\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Acrobat X Pro - English, Français, Deutsch (x32 Version: 10.1.8 - Adobe Systems)
Adobe AIR (x32 Version: 3.7.0.1860 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.7.0.1860 - Adobe Systems Incorporated) Hidden
Adobe Content Viewer (x32 Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Content Viewer (x32 Version: 1.4.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5.5 Master Collection (x32 Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.3.133 - Adobe Systems, Inc.)
Adobe Story (x32 Version: 1.0.571 - Adobe Systems Incorporated)
Adobe Story (x32 Version: 1.0.571 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (x32 Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.230 - Adobe Systems Incorporated.) Hidden
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
ANIWZCS2 Service (x32 Version: - )
Apple Application Support (x32 Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Ashampoo Registry Cleaner v.1.0.0 (x32 Version: 1.0.0 - Ashampoo GmbH & Co. KG)
ASUS nVidia Driver (x32 Version: 1.00.0000 - ASUSTek) Hidden
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)
Bing-Desktop (x32 Version: 1.3.347.0 - Microsoft Corporation)
Brontok Removal Tool [1] (x32 Version: build_1.0.0.150_rev_3314_date_09:49:21 10-02-14 - Security Stronghold)
Camtasia Studio 7 (x32 Version: 7.0.0 - TechSmith Corporation)
CDBurnerXP (x32 Version: 4.4.0.3018 - CDBurnerXP)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation)
Corel PaintShop Pro X6 (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Disk Cleaner (x32 Version: - SafeApp Software, LLC)
D-Link Wireless G DWL-G122_DWA-110 (x32 Version: - D-Link)
Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 4.1.4030 - Hewlett-Packard)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 4.1.4030 - Hewlett-Packard) Hidden
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287 - Skype Limited)
File Type Assistant (x32 Version: - Trusted Software) <==== ATTENTION
FileZilla Client 3.7.1 (x32 Version: 3.7.1 - FileZilla Project)
Final Media Player 2011 (x32 Version: - Bitberry Software)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.27.0 - MAGIX AG)
Free Convert MP4 to AVI FLV MPEG WMV MOV Converter 5.8 (x32 Version: - Xillvideo Software, Inc.)
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Earth Plug-in (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
GoToMeeting 6.0.0.1259 (HKCU Version: 6.0.0.1259 - CitrixOnline)
HP Advisor (x32 Version: 3.4.10262.3295 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.4 - Hewlett-Packard) Hidden
HP Deskjet 3050A J611 series Basic Device Software (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP Deskjet 3050A J611 series Help (x32 Version: 140.0.2.2 - Hewlett Packard)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 25.0.571.0 - Hewlett-Packard Co.)
HP LaserJet Professional CP1020 Series (x32 Version: - Hewlett-Packard)
HP MediaSmart Music (x32 Version: 4.1.4301 - Hewlett-Packard)
HP MediaSmart Music (x32 Version: 4.1.4301 - Hewlett-Packard) Hidden
HP MediaSmart Photo (x32 Version: 4.1.4211 - Hewlett-Packard)
HP MediaSmart Photo (x32 Version: 4.1.4211 - Hewlett-Packard) Hidden
HP MediaSmart SmartMenu (Version: 3.1.1.12 - Hewlett-Packard)
HP MediaSmart Video (x32 Version: 4.1.4214 - Hewlett-Packard)
HP MediaSmart Video (x32 Version: 4.1.4214 - Hewlett-Packard) Hidden
HP Photo Creations (x32 Version: 1.0.0.5192 - HP Photo Creations)
HP Setup (x32 Version: 8.1.4186.3400 - Hewlett-Packard)
HP Update (x32 Version: 5.003.000.004 - Hewlett-Packard)
HP Vision Hardware Diagnostics (Version: 2.1.2.27173 - Hewlett-Packard)
HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
hppCP1020LaserJetService (x32 Version: 001.007.00319 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 002.007.00397 - Hewlett-Packard) Hidden
ICA (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Intel(R) Graphics Media Accelerator Driver (x32 Version: 8.15.10.2119 - Intel Corporation)
IPM_PSP_COM (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
IPM_PSP_COM64 (Version: 16.1.0.48 - Corel Corporation) Hidden
Ipswitch WS_FTP 12 (x32 Version: 12.3 - Ipswitch)
iTunes (Version: 11.0.4.4 - Apple Inc.)
Java 7 Update 25 (64-bit) (Version: 7.0.250 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 31 (x32 Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kalender-Excel-8.8.1 (x32 Version: 8.8.1 - MSDatec)
Lexmark Software deinstallieren (Version: - Lexmark International, Inc.)
LightScribe System Software (x32 Version: 1.18.15.1 - LightScribe)
MAGIX Screenshare (x32 Version: 4.3.6.1987 - MAGIX AG)
MAGIX Video deluxe 16 Premium Sonderedition Download-Version (x32 Version: 9.0.5.10 - MAGIX AG)
MAGIX Video deluxe 16 Premium Sonderedition Download-Version (x32 Version: 9.0.5.10 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 1.61.0.1400 (x32 Version: 1.61.0.1400 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Default Manager (x32 Version: 2.2.114.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office FrontPage 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office XP Web Components (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft PowerPoint Viewer (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (x32 Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (JTLWAWI) (x32 Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Native Client (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
NetObjects Fusion 11.0 (x32 Version: 11 German - )
No23 Recorder (x32 Version: 2.1.0.3 - No23)
No23 Recorder (x32 Version: 2.1.0.3 - No23) Hidden
Norton Online Backup (x32 Version: 2.1.17869 - Symantec Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
OpenOffice.org 3.3 (x32 Version: 3.3.9567 - OpenOffice.org)
PDF Complete Special Edition (x32 Version: 3.5.111 - PDF Complete, Inc)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDF24 Creator 5.7.0 (x32 Version: - PDF24.org)
PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.)
PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
Power Sound Editor Free (x32 Version: - PowerSE Studio Inc.)
PowerDirector (x32 Version: 8.0.2906 - CyberLink Corp.)
PowerDirector (x32 Version: 8.0.2906 - CyberLink Corp.) Hidden
PSD Viewer (x32 Version: - IdeaMK)
PSPad editor (x32 Version: - Jan Fiala)
PSPPContent (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
PSPPHelp (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
PSPPro64 (Version: 16.1.0.48 - Corel Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6463 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.3025 - CyberLink Corp.) Hidden
RegHunter (Version: 1.3.3.1613 - Enigma Software Group USA, LLC)
Registry Helper (x32 Version: - SafeApp Software, LLC) <==== ATTENTION
RegSeeker (x32 Version: 2.55.0607 - HoverDesk)
Setup (x32 Version: 16.1.0.48 - Corel Corporation) Hidden
Skype Click to Call (x32 Version: 6.11.13348 - Skype Technologies S.A.)
Skype™ 6.1 (x32 Version: 6.1.130 - Skype Technologies S.A.)
Sophos Virus Removal Tool (x32 Version: 2.4 - Sophos Limited)
SpyHunter (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 7 (x32 Version: 7.0.12142 - TeamViewer)
Tools für Microsoft SQL Server 2005 Express Edition (x32 Version: 9.4.5000.00 - Microsoft Corporation) Hidden
TuneUp Utilities 2013 (x32 Version: 13.0.4000.245 - TuneUp Software)
TuneUp Utilities 2013 (x32 Version: 13.0.4000.245 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.4000.245 - TuneUp Software) Hidden
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (x32 Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
Utility (x32 Version: 1.00.0002 - Ihr Firmenname) Hidden
VLC media player 1.1.10 (x32 Version: 1.1.10 - VideoLAN)
Windows 7 Upgrade Advisor (x32 Version: 2.0.5000.0 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (x32 Version: - )
Windows Media Encoder 9 Series (x32 Version: 9.00.2980 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.00 (32-Bit) (x32 Version: 4.00.0 - win.rar GmbH)
WinX Free MOV to MPEG Converter 4.1.9 (x32 Version: - Digiarty Software,Inc.)
YASA MOV to MPEG WMV AVI Converter v3.4 (build 0061) (x32 Version: - )
YoWindow (x32 Version: - )
==================== Restore Points =========================
15-02-2014 08:21:48 Windows Update
15-02-2014 17:35:27 Removed Facebook Video Calling 2.0.0.447
15-02-2014 17:42:45 Removed Facebook Video Calling 1.2.0.287
==================== Hosts content: ==========================
2009-07-14 03:34 - 2014-02-13 11:47 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {0A35591A-D241-4D51-9A40-2F3784BFFB3D} - System32\Tasks\Google Updater and Installer => C:\Users\HPHHH\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {1420DCED-F78A-48F0-82CA-C8D4B75771BA} - \Software Updater No Task File
Task: {1C697F4B-CBE4-4877-8B13-EB30E7B4A7FE} - System32\Tasks\RegHunterStartup => C:\Program Files\Enigma Software Group\RegHunter\RegHunter.exe [2013-08-13] (Enigma Software Group USA, LLC.)
Task: {207CD30F-A588-49E5-9494-CCCF1CE0893E} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2014-01-28] (TuneUp Software)
Task: {27761537-9CB7-4A30-9CD7-523BB5208F6D} - \DealPly No Task File
Task: {303522B6-A9AA-4D52-8978-2849D2ADA52D} - \Software Updater Ui No Task File
Task: {34135976-3EF7-415F-8608-71374515567D} - System32\Tasks\HP-Online-Aktualisierungsprogramm => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2011-03-24] (Hewlett-Packard)
Task: {49068D91-ADAD-471E-A05C-DD2A7D473B4F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000Core => C:\Users\HPHHH\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-20] (Facebook Inc.)
Task: {6404C304-2E26-4593-BAB7-8D104252282A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-02] (Google Inc.)
Task: {6EAA0AE1-1E8E-4403-BF97-9851BB6961CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-02] (Google Inc.)
Task: {701FDF03-9940-4AD5-8B01-ECBD29872A7B} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: {748EC39E-10D2-497F-9C85-BE1F61FAD1FA} - System32\Tasks\AdobeAAMUpdater-1.0-HPHHH-HP-HPHHH => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-09-25] (Adobe Systems Incorporated)
Task: {768BA951-FEB6-4F9C-8F7C-71DD7EE731FC} - \Scheduled Update for Ask Toolbar No Task File
Task: {81A1E85F-DF35-462B-A3AB-D4B0C753CE4F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-06-11] (Hewlett-Packard Company)
Task: {82582BEA-8192-46C2-AA20-26E6155CF364} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08] (Hewlett-Packard Co.)
Task: {8710A6A8-44A9-4035-AAC0-41EE7D231F28} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] ()
Task: {95581DF1-4CB4-4590-969A-13F661F2E0F8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000UA => C:\Users\HPHHH\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-01-20] (Facebook Inc.)
Task: {985329DF-459A-4636-8A44-01756713F6A1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9D25EC30-D0AB-4E96-9F66-438391929394} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-01-09] (Enigma Software Group USA, LLC.)
Task: {A38D0000-D1DF-471A-BBC8-B2D1694AB8A6} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {BCDF164D-1A14-4FEF-9338-0E62052935DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: {C014E007-56B2-41F9-B9E4-48F66EA161E6} - System32\Tasks\Final Media Player Update Checker => C:\Program Files (x86)\FinalMediaPlayer\FMPCheckForUpdates.exe [2011-02-05] (Bitberry Software)
Task: {E46D46DE-7181-497D-A53A-A82595F85230} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2010-06-11] (Hewlett-Packard Company)
Task: {EB3E8C2F-79DD-4D39-9692-DC47185ED2AE} - \FreeDriverScout No Task File
Task: {F828CF24-14D4-4C9D-A0E6-BAD9E4B7F3E0} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {FFD78DD0-4CF7-4B20-ADDD-5BEA9351C655} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-05-25] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000Core.job => C:\Users\HPHHH\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2109268533-3021431479-780890264-1000UA.job => C:\Users\HPHHH\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\Final Media Player Update Checker.job => C:\Program Files (x86)\FinalMediaPlayer\FMPCheckForUpdates.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe
==================== Loaded Modules (whitelisted) =============
2010-01-02 15:42 - 2010-01-02 15:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-04-18 09:57 - 2010-09-28 15:03 - 06619256 _____ () C:\Program Files\ipswitch\WS_FTP 12\res0407.dll
2011-04-11 16:59 - 2011-03-02 11:40 - 00164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2010-01-18 18:21 - 2010-01-18 18:21 - 00568888 _____ () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
2014-02-10 14:48 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-09-03 14:54 - 2013-09-03 14:54 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2011-04-18 09:57 - 2010-09-28 14:53 - 00948496 _____ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\LIBEAY32.dll
2011-04-18 09:57 - 2010-09-28 14:53 - 00153360 _____ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\SSLEAY32.dll
2013-06-18 21:08 - 2013-06-18 21:08 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2014-02-15 21:10 - 2014-02-02 00:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
2014-02-15 21:10 - 2014-02-02 00:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll
2014-02-15 21:10 - 2014-02-02 00:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
2014-02-15 21:10 - 2014-02-02 00:42 - 13616456 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
2014-02-15 21:10 - 2014-02-02 00:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-15 21:10 - 2014-02-02 00:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
AlternateDataStreams: C:\Users\HPHHH\Documents\sisel.eml:OECustomProperty
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"="cmd-brontok.exe"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318} => "default"="DiskDrive"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E967-E325-11CE-BFC1-08002BE10318} => "default"="DiskDrive"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/15/2014 09:30:06 PM) (Source: Registry Helper Service) (User: )
Description: Error: Service started
Error: (02/15/2014 09:29:40 PM) (Source: Disk Cleaner Service) (User: )
Description: Error: Service started
Error: (02/15/2014 08:41:05 PM) (Source: Disk Cleaner Service) (User: )
Description: Error: Service started
Error: (02/15/2014 07:09:21 PM) (Source: Registry Helper Service) (User: )
Description: Error: Service started
Error: (02/15/2014 06:43:50 PM) (Source: MsiInstaller) (User: HPHHH-HP)
Description: Product: Facebook Video Calling 1.2.0.287 -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2738. The arguments are: , ,
Error: (02/15/2014 00:39:43 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index. (HRESULT : 0x80040d03) (0x80040d03)
Error: (02/15/2014 00:39:43 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
Context: Windows Application
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index. (HRESULT : 0x80040d03) (0x80040d03)
Error: (02/15/2014 00:39:43 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.
Context: Windows Application, SystemIndex Catalog
Details:
The registry value cannot be read because the configuration is invalid. Recreate the content index configuration by removing the content index. (HRESULT : 0x80040d03) (0x80040d03)
Error: (02/15/2014 00:38:30 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
Error: (02/15/2014 00:38:30 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=431}. The service will attempt to automatically correct this problem by rebuilding the index.
Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (02/15/2014 09:33:46 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.
Error: (02/15/2014 09:33:16 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.
Error: (02/15/2014 09:32:46 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.
Error: (02/15/2014 09:31:27 PM) (Source: Service Control Manager) (User: )
Description: The Avira Echtzeit-Scanner service terminated with service-specific error %%303.
Error: (02/15/2014 09:29:31 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.
Error: (02/15/2014 09:29:28 PM) (Source: Service Control Manager) (User: )
Description: The Windows Font Cache Service service hung on starting.
Error: (02/15/2014 09:27:48 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 21:25:20 on 15.02.2014 was unexpected.
Error: (02/15/2014 09:24:10 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WerSvc service.
Error: (02/15/2014 00:40:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0816: Update for Windows 7 for x64-based Systems (KB2454826).
Error: (02/15/2014 00:39:54 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053
Microsoft Office Sessions:
=========================
Error: (02/14/2014 04:12:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 29 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/14/2013 05:38:45 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 32986 seconds with 720 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-02-13 11:46:49.253
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2014-02-13 11:46:49.175
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2012-07-22 15:48:45.245
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\massfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2012-07-22 15:48:45.169
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\massfilter.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Percentage of memory in use: 78%
Total physical RAM: 4061.24 MB
Available physical RAM: 880.64 MB
Total Pagefile: 10201.38 MB
Available Pagefile: 6936.94 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:452.78 GB) (Free:206.06 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:12.88 GB) (Free:1.54 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: F3FB1B73)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=453 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=13 GB) - (Type=07 NTFS)
==================== End Of Log ============================ --- --- --- |