OK - nachfolgend die Files im Treat.
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Laura at 2013-11-06 14:54:46
Running from C:\Users\Laura\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {3F839487-C7A2-C958-E30C-E2825BA31FB5}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {84E27563-E198-C6D6-D9BC-D9F020245508}
==================== Installed Programs ======================
64 Bit HP CIO Components Installer (Version: 6.2.1)
Adobe Flash Player 10 ActiveX (x32 Version: 10.1.53.64)
Adobe Flash Player 10 Plugin (x32 Version: 10.1.53.64)
Adobe Reader 9.1 - Deutsch (x32 Version: 9.1.0)
Advanced Audio FX Engine (x32 Version: 1.12.05)
ATI AVIVO64 Codecs (Version: 11.6.0.50601)
ATI Catalyst Install Manager (Version: 3.0.778.0)
BufferChm (x32 Version: 130.0.331.000)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0601.2152.37421)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0601.2152.37421)
Catalyst Control Center InstallProxy (x32 Version: 2010.0601.2152.37421)
Catalyst Control Center Localization All (x32 Version: 2010.0601.2152.37421)
CCC Help Chinese Standard (x32 Version: 2010.0601.2151.37421)
CCC Help Chinese Traditional (x32 Version: 2010.0601.2151.37421)
CCC Help Danish (x32 Version: 2010.0601.2151.37421)
CCC Help Dutch (x32 Version: 2010.0601.2151.37421)
CCC Help English (x32 Version: 2010.0601.2151.37421)
CCC Help Finnish (x32 Version: 2010.0601.2151.37421)
CCC Help French (x32 Version: 2010.0601.2151.37421)
CCC Help German (x32 Version: 2010.0601.2151.37421)
CCC Help Italian (x32 Version: 2010.0601.2151.37421)
CCC Help Japanese (x32 Version: 2010.0601.2151.37421)
CCC Help Korean (x32 Version: 2010.0601.2151.37421)
CCC Help Norwegian (x32 Version: 2010.0601.2151.37421)
CCC Help Portuguese (x32 Version: 2010.0601.2151.37421)
CCC Help Russian (x32 Version: 2010.0601.2151.37421)
CCC Help Spanish (x32 Version: 2010.0601.2151.37421)
CCC Help Swedish (x32 Version: 2010.0601.2151.37421)
ccc-core-static (x32 Version: 2010.0601.2152.37421)
ccc-utility64 (Version: 2010.0601.2152.37421)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Conduit Engine (x32 Version: )
Copy (x32 Version: 130.0.366.000)
Dell DataSafe Local Backup - Support Software (x32 Version: 9.4.60)
Dell DataSafe Local Backup (x32 Version: 9.4.60)
Dell Dock (Version: 2.0)
Dell Dock (x32)
Dell Getting Started Guide (x32 Version: 1.00.0000)
Dell Support Center (Support Software) (x32 Version: 2.5.09100)
Dell Webcam Central (x32 Version: 1.40.05)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.372.000)
Die Sims 2 (x32)
Die Sims™ 2 Vier Jahreszeiten (x32)
DJ_AIO_06_F2400_SW_Min (x32 Version: 130.0.373.000)
Dropbox (HKCU Version: 2.0.22)
DVDVideoSoftTB DE Toolbar (x32 Version: 6.9.0.16)
DVDVideoSoftTB Toolbar (x32 Version: )
DW WLAN Card Utility (Version: 5.60.48.35)
F2400 (x32 Version: 130.0.373.000)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Free Audio CD Burner version 1.4.8 (x32)
Free YouTube to MP3 Converter version 3.11.30.903 (x32 Version: 3.11.30.903)
Google Chrome (x32 Version: 30.0.1599.101)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 6.6.1124.846)
Google Update Helper (x32 Version: 1.3.21.165)
GPBaseService2 (x32 Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Print Projects 1.0 (Version: 1.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 4.000.011.006)
HPPhotoGadget (x32 Version: 130.0.282.000)
hpPrintProjects (x32 Version: 130.0.303.000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
hpWLPGInstaller (x32 Version: 130.0.303.000)
ICQ Toolbar (x32 Version: 3.0.0)
ICQ7.2 (x32 Version: 7.2)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Rapid Storage Technology (x32 Version: 9.6.4.1002)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Java(TM) 6 Update 18 (64-bit) (Version: 6.0.180)
Java(TM) 6 Update 20 (64-bit) (Version: 6.0.200)
Junk Mail filter update (x32 Version: 14.0.8089.726)
Kies (x32 Version: 1.4)
Live! Cam Avatar Creator (x32 Version: 4.6.3009.1)
MarketResearch (x32 Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (x32 Version: 2.0.48.0)
Microsoft Office PowerPoint Viewer 2007 (German) (x32 Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (x32 Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (x32 Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (x32 Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox (3.6.12) (x32 Version: 3.6.12 (de))
MSVCRT (x32 Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
My Scene(TM) EROBERT Hollywood (x32)
PC Connectivity Solution (x32 Version: 8.47.7.0)
PhotoScape (x32)
Picasa 3 (x32 Version: 3.8)
Quickset64 (Version: 10.5.0)
Roxio Burn (x32 Version: 1.01)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.1600.0)
Scan (x32 Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Skype Toolbars (x32 Version: 5.0.4137)
Skype™ 5.10 (x32 Version: 5.10.116)
SmartWebPrinting (x32 Version: 130.0.373.000)
softonic-de3 Toolbar (x32 Version: 6.2.3.0)
SolutionCenter (x32 Version: 130.0.373.000)
Status (x32 Version: 130.0.373.000)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.376.000)
TuneUp Utilities 2012 (x32 Version: 12.0.3600.73)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73)
Uninstall 1.0.0.1 (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
VLC media player 1.1.4 (x32 Version: 1.1.4)
WebReg (x32 Version: 130.0.132.017)
WIDCOMM Bluetooth Software (Version: 6.2.1.1100)
WildTangent-Spiele (x32 Version: 1.0.0.71)
Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (03/24/2010 6.3.0.2501) (Version: 03/24/2010 6.3.0.2501)
Windows Live Anmelde-Assistent (x32 Version: 5.000.818.5)
Windows Live Call (x32 Version: 14.0.8064.0206)
Windows Live Communications Platform (x32 Version: 14.0.8064.206)
Windows Live Essentials (x32 Version: 14.0.8089.0726)
Windows Live Essentials (x32 Version: 14.0.8089.726)
Windows Live Fotogalerie (x32 Version: 14.0.8081.709)
Windows Live Mail (x32 Version: 14.0.8089.0726)
Windows Live Messenger (x32 Version: 14.0.8089.0726)
Windows Live Movie Maker (x32 Version: 14.0.8091.0730)
Windows Live Sync (x32 Version: 14.0.8089.726)
Windows Live Toolbar (x32 Version: 14.0.8064.206)
Windows Live Writer (x32 Version: 14.0.8089.0726)
Windows Live-Uploadtool (x32 Version: 14.0.8014.1029)
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Yahoo! Toolbar (x32)
==================== Restore Points =========================
02-08-2013 17:00:36 Windows Update
08-08-2013 14:30:38 Windows Update
06-11-2013 08:14:43 Removed Java(TM) 6 Update 22
06-11-2013 08:15:40 Installed Java 7 Update 45
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0D54E938-CD48-4ED3-A2B1-507117C1AE12} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {25821F63-F7E8-4A7B-9B96-AB362EF26B0D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001Core => C:\Users\Laura\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: {603C4706-FC99-40A0-8EFC-60EA525E4212} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {8110AF55-5C3E-4337-B915-8D416BD22D5C} - System32\Tasks\{EAC1A8DB-EDE0-4BD8-B43B-97A0972D1E4A} => E:\MSOffice2007\OFFICE12\setup.exe [2006-10-31] (Microsoft Corporation)
Task: {9DB90E47-70E9-4E99-9EF8-AED242D3C2B9} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012 => C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe [2012-05-29] (TuneUp Software)
Task: {C1E833E2-A210-489A-822F-47F3FCC7EF6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-06] (Google Inc.)
Task: {EF48E030-77E5-4CE6-86D1-149EBA60CF09} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001UA => C:\Users\Laura\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)
Task: {F7638760-8630-4090-86B0-992F62FB982D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-06] (Google Inc.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001Core.job => C:\Users\Laura\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001UA.job => C:\Users\Laura\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2009-12-29 20:19 - 2009-12-29 20:19 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2013-09-04 20:35 - 2013-09-04 20:35 - 00472576 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\a408568532c8d635559ed2685e19f0ef\VistaBridgeLibrary.ni.dll
2010-03-08 17:02 - 2010-03-08 17:02 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-06-02 03:50 - 2010-06-02 03:50 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Laura\AppData\Roaming\Dropbox\bin\libcef.dll
2013-11-06 09:36 - 2013-11-06 09:36 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\6e0e5d6d7d5fe4e011335c395f6a8031\IsdiInterop.ni.dll
2010-10-06 13:12 - 2010-06-08 16:44 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/06/2013 01:09:12 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1". Fehler in Manifest- oder Richtliniendatei "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" in Zeile WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition: WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (11/06/2013 11:56:39 AM) (Source: TOASTER.EXE) (User: )
Description: An Unhandled Exception occured.
Die Datei "C:\Users\Laura\AppData\local\\softthinks\scheduler.xml" ist bereits vorhanden.
bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
bei System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
bei System.IO.File.Copy(String sourceFileName, String destFileName)
bei Toaster.SchedulerReader.read()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
bei Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
bei Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
bei System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
bei System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
Error: (11/06/2013 10:20:01 AM) (Source: DataSafe.exe) (User: )
Description: An Unhandled Exception occured.
System.Runtime.InteropServices.COMException (0x80040154): Die COM-Klassenfactory für die Komponente mit CLSID {FA9DF45C-1CD3-4197-A066-CAB0078BB55B} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80040154.
bei STUICore.RecoveryPartition.getRPLetter()
bei DataSafe.Net.StartHelper.start(StartInfo& startInfo, Thread splashTread)
bei DataSafe.Net.Program.Main(String[] Args)
Error: (11/06/2013 09:10:14 AM) (Source: TOASTER.EXE) (User: )
Description: An Unhandled Exception occured.
Die Datei "C:\Users\Laura\AppData\local\\softthinks\scheduler.xml" ist bereits vorhanden.
bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
bei System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
bei System.IO.File.Copy(String sourceFileName, String destFileName)
bei Toaster.SchedulerReader.read()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
bei Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
bei Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
bei System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
bei System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
Error: (10/30/2013 09:28:30 AM) (Source: Application Hang) (User: )
Description: Programm ICQ.exe, Version 7.2.0.3525 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 650
Startzeit: 01ce9911f25a35ce
Endzeit: 344
Anwendungspfad: C:\Program Files (x86)\ICQ7.2\ICQ.exe
Berichts-ID: e14e8382-40db-11e3-8445-df1036d231ba
Error: (10/12/2013 02:37:48 PM) (Source: Application Hang) (User: )
Description: Programm OneClick.exe, Version 12.0.3600.73 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2268
Startzeit: 01cec69b159def02
Endzeit: 538
Anwendungspfad: C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe
Berichts-ID: 6a6d16f3-3343-11e3-8445-df1036d231ba
Error: (10/08/2013 02:49:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: swg.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x4cabdb21
Ausnahmecode: 0xc0000005
Fehleroffset: 0x08c2a58e
ID des fehlerhaften Prozesses: 0x3450
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
System errors:
=============
Error: (11/06/2013 02:55:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:54:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:54:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:53:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:53:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:52:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:52:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:51:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:51:17 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Error: (11/06/2013 02:50:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%126
Microsoft Office Sessions:
=========================
Error: (11/06/2013 01:09:12 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"c:\program files (x86)\windows live\photo gallery\MovieMaker.Exec:\program files (x86)\windows live\photo gallery\WLMFDS.DLL8
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.ExeC:\Program Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL8
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.ExeC:\Program Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL8
Error: (11/06/2013 00:01:48 PM) (Source: SideBySide)(User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.ExeC:\Program Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL8
Error: (11/06/2013 11:56:39 AM) (Source: TOASTER.EXE)(User: )
Description: An Unhandled Exception occured.
Die Datei "C:\Users\Laura\AppData\local\\softthinks\scheduler.xml" ist bereits vorhanden.
bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
bei System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
bei System.IO.File.Copy(String sourceFileName, String destFileName)
bei Toaster.SchedulerReader.read()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
bei Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
bei Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
bei System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
bei System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
Error: (11/06/2013 10:20:01 AM) (Source: DataSafe.exe)(User: )
Description: An Unhandled Exception occured.
System.Runtime.InteropServices.COMException (0x80040154): Die COM-Klassenfactory für die Komponente mit CLSID {FA9DF45C-1CD3-4197-A066-CAB0078BB55B} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80040154.
bei STUICore.RecoveryPartition.getRPLetter()
bei DataSafe.Net.StartHelper.start(StartInfo& startInfo, Thread splashTread)
bei DataSafe.Net.Program.Main(String[] Args)
Error: (11/06/2013 09:10:14 AM) (Source: TOASTER.EXE)(User: )
Description: An Unhandled Exception occured.
Die Datei "C:\Users\Laura\AppData\local\\softthinks\scheduler.xml" ist bereits vorhanden.
bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
bei System.IO.File.InternalCopy(String sourceFileName, String destFileName, Boolean overwrite)
bei System.IO.File.Copy(String sourceFileName, String destFileName)
bei Toaster.SchedulerReader.read()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.IsFsbScheduledNow()
bei Toaster.Notifications.FullSystemBackup.FsbHelper.CheckReminder()
bei Toaster.Helper.CheckReminders(ObservableCollection`1 notificationHelpers)
bei Toaster.MainWindowViewModel.NotificationsTimerTick(Object sender, EventArgs e)
bei System.Windows.Threading.DispatcherTimer.FireTick(Object unused)
bei System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
bei System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)
Error: (10/30/2013 09:28:30 AM) (Source: Application Hang)(User: )
Description: ICQ.exe7.2.0.352565001ce9911f25a35ce344C:\Program Files (x86)\ICQ7.2\ICQ.exee14e8382-40db-11e3-8445-df1036d231ba
Error: (10/12/2013 02:37:48 PM) (Source: Application Hang)(User: )
Description: OneClick.exe12.0.3600.73226801cec69b159def02538C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe6a6d16f3-3343-11e3-8445-df1036d231ba
Error: (10/08/2013 02:49:41 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7swg.dll_unloaded0.0.0.04cabdb21c000000508c2a58e345001cec42d1d345547C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEswg.dll7a60ea6c-3020-11e3-8445-df1036d231ba
==================== Memory info ===========================
Percentage of memory in use: 58%
Total physical RAM: 3958.69 MB
Available physical RAM: 1638.6 MB
Total Pagefile: 7915.56 MB
Available Pagefile: 5183.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:93.14 GB) (Free:42.02 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Daten) (Fixed) (Total:488.28 GB) (Free:483.53 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 596 GB) (Disk ID: 9AE8D6C8)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=93 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=488 GB) - (Type=OF Extended)
==================== End Of Log ============================
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Laura (administrator) on LAURA-PC on 06-11-2013 20:46:22
Running from C:\Users\Laura\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\Windows\SysWOW64\dgdersvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(ICQ, LLC.) C:\Program Files (x86)\ICQ7.2\ICQ.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Dropbox, Inc.) C:\Users\Laura\AppData\Roaming\Dropbox\bin\Dropbox.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\quickset.exe [3179288 2010-01-06] (Dell Inc.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-06-18] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2010-03-17] (Synaptics Incorporated)
HKLM\...\Run: [Broadcom Wireless Manager UI] - C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [5712896 2010-02-03] (Dell Inc.)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1281512 2013-01-27] (Microsoft Corporation)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] - "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [559616 2011-10-10] (Dell)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-01-06] (Google Inc.)
HKCU\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe [3365176 2010-10-27] (Samsung Electronics Co., Ltd.)
HKCU\...\Run: [ICQ] - C:\Program Files (x86)\ICQ7.2\ICQ.exe [133432 2011-01-05] (ICQ, LLC.)
HKCU\...\Run: [Facebook Update] - C:\Users\Laura\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-13] (Facebook Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-06-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DellSupportCenter] - C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064 2009-05-21] (SupportSoft, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-11-06] (Avira Operations GmbH & Co. KG)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Laura\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
URLSearchHook: HKLM-x32 - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
URLSearchHook: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
URLSearchHook: HKLM-x32 - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
URLSearchHook: HKCU - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKCU - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
URLSearchHook: HKCU - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
URLSearchHook: HKCU - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
URLSearchHook: HKCU - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
URLSearchHook: HKCU - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - DefaultScope {057B639C-42CC-4E9A-9D99-0ADAED5CAB7C} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7MOOI_de
SearchScopes: HKCU - {057B639C-42CC-4E9A-9D99-0ADAED5CAB7C} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7MOOI_de
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
BHO-x32: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
BHO-x32: softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM-x32 - softonic-de3 Toolbar - {cc05a3e3-64c3-4af2-bfc1-af0d66b69065} - C:\Program Files (x86)\softonic-de3\tbsoft.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVDV.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM-x32 - DVDVideoSoftTB DE Toolbar - {0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff} - C:\Program Files (x86)\DVDVideoSoftTB_DE\prxtbDVDV.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {CC05A3E3-64C3-4AF2-BFC1-AF0D66B69065} - No File
Toolbar: HKCU - No Name - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No File
Toolbar: HKCU - No Name - {30F9B915-B755-4826-820B-08FBA6BD249D} - No File
Toolbar: HKCU - No Name - {0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Laura\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Conduit Engine - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\engine@conduit.com
FF Extension: Plasmoo Search Engine - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\engine@plasmoo.com
FF Extension: DVDVideoSoftTB DE - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\{0027da2d-c9f2-4b0b-ae05-e2cd1bdb6cff}
FF Extension: DVDVideoSoftTB Toolbar - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
FF Extension: DVDVideoSoft Menu - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: softonic-de3 Community Toolbar - C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\hltbsdz9.default\Extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065}
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: hxxp://plasmoo.com
CHR RestoreOnStartup: "hxxp://plasmoo.com"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll No File
CHR Plugin: (Google Gears 0.5.33.0) - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\gears.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.220.4) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U22) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.2.183.39\npGoogleOneClick8.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\npctrl.dll No File
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (DvdVideoSoft Free Youtube Download) - C:\Users\Laura\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-11-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-11-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-11-06] (Avira Operations GmbH & Co. KG)
R2 dgdersvc; C:\Windows\SysWOW64\dgdersvc.exe [95568 2010-10-25] (Devguru Co., Ltd.)
R2 ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [247096 2010-09-06] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143072 2012-05-29] (TuneUp Software)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128 2010-02-03] (Dell Inc.)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-11-06] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-11-06] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-06] (Avira Operations GmbH & Co. KG)
R3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20568 2009-12-22] (Devguru Co., Ltd)
R3 dgderdrv; C:\Windows\SysWow64\drivers\dgderdrv.sys [18120 2010-10-25] (Devguru Co., Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [128000 2009-09-19] (MCCI Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-05-08] (TuneUp Software)
S1 nddwrzyi; \??\C:\Windows\system32\drivers\nddwrzyi.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-06 20:45 - 2013-11-06 20:45 - 00000472 _____ C:\Users\Laura\Desktop\defogger_disable.log
2013-11-06 20:45 - 2013-11-06 20:45 - 00000000 ____D C:\Users\Laura\AppData\Roaming\Avira
2013-11-06 20:45 - 2013-11-06 20:45 - 00000000 _____ C:\Users\Laura\defogger_reenable
2013-11-06 20:44 - 2013-11-06 16:58 - 00050477 _____ C:\Users\Laura\Desktop\Defogger.exe
2013-11-06 20:39 - 2013-11-06 20:39 - 00001996 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-11-06 20:39 - 2013-11-06 20:39 - 00000000 ____D C:\ProgramData\Avira
2013-11-06 20:39 - 2013-11-06 20:39 - 00000000 ____D C:\Program Files (x86)\Avira
2013-11-06 20:39 - 2013-11-06 12:25 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-06 20:39 - 2013-11-06 12:25 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-06 20:39 - 2013-11-06 12:25 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-06 14:54 - 2013-11-06 14:55 - 00028609 _____ C:\Users\Laura\Desktop\1Addition.txt
2013-11-06 14:52 - 2013-11-06 14:52 - 00000000 ____D C:\FRST
2013-11-06 13:31 - 2013-11-06 13:28 - 01957098 _____ (Farbar) C:\Users\Laura\Desktop\FRST64.exe
2013-11-06 12:01 - 2013-11-06 12:01 - 00000000 __RSD C:\Users\Laura\Documents\My Stationery
2013-11-06 09:16 - 2013-11-06 09:16 - 00000000 ____D C:\ProgramData\Oracle
2013-11-06 09:16 - 2013-11-06 09:15 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-06 09:15 - 2013-11-06 09:15 - 00000000 ____D C:\Program Files (x86)\Java
==================== One Month Modified Files and Folders =======
2013-11-06 20:45 - 2013-11-06 20:45 - 00000472 _____ C:\Users\Laura\Desktop\defogger_disable.log
2013-11-06 20:45 - 2013-11-06 20:45 - 00000000 ____D C:\Users\Laura\AppData\Roaming\Avira
2013-11-06 20:45 - 2013-11-06 20:45 - 00000000 _____ C:\Users\Laura\defogger_reenable
2013-11-06 20:45 - 2011-01-05 16:44 - 00000000 ____D C:\Users\Laura
2013-11-06 20:45 - 2010-10-06 12:40 - 01791886 _____ C:\Windows\WindowsUpdate.log
2013-11-06 20:44 - 2009-07-14 05:45 - 00013664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-06 20:44 - 2009-07-14 05:45 - 00013664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-06 20:43 - 2010-10-06 15:29 - 00654400 _____ C:\Windows\system32\perfh007.dat
2013-11-06 20:43 - 2010-10-06 15:29 - 00130240 _____ C:\Windows\system32\perfc007.dat
2013-11-06 20:43 - 2009-07-14 06:13 - 00777466 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-06 20:42 - 2012-12-14 18:39 - 00000000 ___RD C:\Users\Laura\Dropbox
2013-11-06 20:42 - 2012-12-14 18:37 - 00000000 ____D C:\Users\Laura\AppData\Roaming\Dropbox
2013-11-06 20:39 - 2013-11-06 20:39 - 00001996 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-11-06 20:39 - 2013-11-06 20:39 - 00000000 ____D C:\ProgramData\Avira
2013-11-06 20:39 - 2013-11-06 20:39 - 00000000 ____D C:\Program Files (x86)\Avira
2013-11-06 20:37 - 2011-01-06 12:59 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-06 20:37 - 2011-01-05 16:48 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-11-06 20:37 - 2011-01-05 16:48 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-11-06 20:37 - 2010-10-06 13:34 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-11-06 20:36 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-06 20:36 - 2009-07-14 05:51 - 00092951 _____ C:\Windows\setupact.log
2013-11-06 20:35 - 2010-12-25 10:38 - 00104468 _____ C:\Windows\PFRO.log
2013-11-06 16:58 - 2013-11-06 20:44 - 00050477 _____ C:\Users\Laura\Desktop\Defogger.exe
2013-11-06 16:29 - 2011-09-16 23:55 - 00001138 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001UA.job
2013-11-06 16:29 - 2011-01-06 12:59 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-06 14:55 - 2013-11-06 14:54 - 00028609 _____ C:\Users\Laura\Desktop\1Addition.txt
2013-11-06 14:52 - 2013-11-06 14:52 - 00000000 ____D C:\FRST
2013-11-06 13:48 - 2011-01-05 17:15 - 00000000 ____D C:\Users\Laura\AppData\Roaming\ICQ
2013-11-06 13:28 - 2013-11-06 13:31 - 01957098 _____ (Farbar) C:\Users\Laura\Desktop\FRST64.exe
2013-11-06 13:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-06 12:25 - 2013-11-06 20:39 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-06 12:25 - 2013-11-06 20:39 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-06 12:25 - 2013-11-06 20:39 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-06 12:01 - 2013-11-06 12:01 - 00000000 __RSD C:\Users\Laura\Documents\My Stationery
2013-11-06 09:16 - 2013-11-06 09:16 - 00000000 ____D C:\ProgramData\Oracle
2013-11-06 09:15 - 2013-11-06 09:16 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-06 09:15 - 2013-11-06 09:15 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-06 09:15 - 2013-11-06 09:15 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-05 12:28 - 2011-09-16 23:55 - 00001116 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1772773647-172457383-241920096-1001Core.job
2013-10-18 18:00 - 2011-01-20 20:35 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-08 14:51 - 2011-01-06 12:59 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-08 14:51 - 2011-01-06 12:59 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
Some content of TEMP:
====================
C:\Users\Laura\AppData\Local\Temp\-rpzwhje.dll
C:\Users\Laura\AppData\Local\Temp\0a50e25a83046228c11dcaa7eeed09bb.exe
C:\Users\Laura\AppData\Local\Temp\a0ipqtd7.dll
C:\Users\Laura\AppData\Local\Temp\AskSLib.dll
C:\Users\Laura\AppData\Local\Temp\AutoRun.exe
C:\Users\Laura\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Laura\AppData\Local\Temp\First15.exe
C:\Users\Laura\AppData\Local\Temp\GLF7536.tmp.tbDVDV.dll
C:\Users\Laura\AppData\Local\Temp\GLFEAE0.tmp.ConduitEngineSetup.exe
C:\Users\Laura\AppData\Local\Temp\GLFEAE0.tmp.tbsoft.dll
C:\Users\Laura\AppData\Local\Temp\GLFF3C6.tmp.ConduitEngine.dll
C:\Users\Laura\AppData\Local\Temp\GoogleChromeInstaller.exe
C:\Users\Laura\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Laura\AppData\Local\Temp\lvhre3nl.dll
C:\Users\Laura\AppData\Local\Temp\pygvxy6k.dll
C:\Users\Laura\AppData\Local\Temp\softonic-de3.exe
C:\Users\Laura\AppData\Local\Temp\VP6Install.exe
C:\Users\Laura\AppData\Local\Temp\VP6VFW.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-06 13:04
==================== End Of Log ============================
--- --- ---
defogger_disable.log Code:
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 20:45 on 06/11/2013 (Laura)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
gmer.txt Code:
GMER Logfile:
Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-11-06 21:02:54
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 SAMSUNG_ rev.2AK1 596,17GB
Running: ntn2cchg.exe; Driver: C:\Users\Laura\AppData\Local\Temp\ugloapob.sys
---- Kernel code sections - GMER 2.1 ----
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 560 fffff80002feb000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 607 fffff80002feb02f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]
---- User code sections - GMER 2.1 ----
.text C:\Windows\SysWOW64\dgdersvc.exe[1256] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000773c1465 2 bytes [3C, 77]
.text C:\Windows\SysWOW64\dgdersvc.exe[1256] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000773c14bb 2 bytes [3C, 77]
.text ... * 2
.text C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE[2112] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000773c1465 2 bytes [3C, 77]
.text C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE[2112] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000773c14bb 2 bytes [3C, 77]
.text ... * 2
.text C:\Users\Laura\AppData\Roaming\Dropbox\bin\Dropbox.exe[4172] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 69 00000000773c1465 2 bytes [3C, 77]
.text C:\Users\Laura\AppData\Roaming\Dropbox\bin\Dropbox.exe[4172] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 155 00000000773c14bb 2 bytes [3C, 77]
.text ... * 2
---- Threads - GMER 2.1 ----
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [888:1036] 000007fefb4f2a7c
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations ?????n???????????,?e?e?e?e?e?f?h?k?h?f?j?j?h?i?j?k?k?k?m?k?m?m?n?n?n?n?r?t?x?t?x???x?{?|?|?x?????????l???l???????????????l?????????????????????????????????????????????????????????????????????????????????????????????m?????????????????????????????m???????????m?????????????????????????|?|?x???????????????????h?k?h?f?????????j?k?k?k?????????????????r????? j?????????????????atiumd64.dll?atiumd64.dll?atidxx64.dll?atidxx64.dll???????j?????????????????atiumdag.dll?atiumdag.dll?atidxx32.dll?atidxx32.dll??4????6??????6??????????atio6axx.dll?atio6axx.dll??g.d???????????t???????d???????????????????d???&??????????????????????????????????????????????????????????????????????LocalSystem?ra???????????????????????????????????????j???????e??????????Samsung Electronics Co., Ltd. ?ardm??iges MTP-Ger?t)?????????????????????????????????????j???????????????j??????????????????????????0-?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\5cac4ce74de8
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\5cac4ce74de8 (not active ControlSet)
---- EOF - GMER 2.1 ----
--- --- ---
|
So funktioniert es:
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
