FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-01-2014
Ran by Heunisch (administrator) on HEUNISCH-PC on 21-01-2014 16:00:45
Running from C:\Users\Heunisch\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\ssonsvr.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\concentr.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Dropbox, Inc.) C:\Users\Heunisch\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\wfcrun32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13601312 2008-11-21] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\Windows\system32\NvMcTray.dll [92704 2008-11-21] (NVIDIA Corporation)
HKLM\...\Run: [ConnectionCenter] - C:\Program Files\Citrix\ICA Client\concentr.exe [300400 2010-03-10] (Citrix Systems, Inc.)
HKLM\...\Run: [LexwareInfoService] - C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe [339240 2008-11-03] (Lexware GmbH & Co. KG)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [371200 2011-02-23] (shbox.de)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2010-01-19] (Synaptics Incorporated)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-06-24] (Google Inc.)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation)
AppInit_DLLs: c:\progra~2\bprote~1\22453~1.59\protec~1.dll => File Not Found
Startup: C:\Users\Heunisch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Heunisch\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Heunisch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Inhaltsverzeichnis.onetoc2 ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x809A1E7648E3CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
FireFox:
========
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Heunisch\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-04]
CHR Extension: (Google-Suche) - C:\Users\Heunisch\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-04]
CHR Extension: (FastestFox \u2013 Schneller browsen) - C:\Users\Heunisch\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm [2013-09-11]
CHR Extension: (Google Wallet) - C:\Users\Heunisch\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Google Mail) - C:\Users\Heunisch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-07-04]
CHR StartMenuInternet: Google Chrome - C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-26] (Avira Operations GmbH & Co. KG)
S4 resetWinService; C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe [70656 2008-10-29] ()
S4 STRATO HiDrive Service; C:\Program Files\STRATO AG\STRATO HiDrive\STRATO HiDrive Service.exe [32768 2011-11-15] (STRATO)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-02-23] (Avira GmbH)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [25984 2011-01-08] (The OpenVPN Project)
S3 WINIO; C:\Windows\system32\WinIo.sys [0 2012-10-11] ()
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-21 16:00 - 2014-01-21 16:01 - 00010720 _____ C:\Users\Heunisch\Desktop\FRST.txt
2014-01-21 16:00 - 2014-01-21 16:00 - 00000000 ____D C:\FRST
2014-01-21 15:59 - 2014-01-21 16:00 - 01222144 _____ (Farbar) C:\Users\Heunisch\Desktop\FRST.exe
==================== One Month Modified Files and Folders =======
2014-01-21 16:01 - 2014-01-21 16:00 - 00010720 _____ C:\Users\Heunisch\Desktop\FRST.txt
2014-01-21 16:00 - 2014-01-21 16:00 - 00000000 ____D C:\FRST
2014-01-21 16:00 - 2014-01-21 15:59 - 01222144 _____ (Farbar) C:\Users\Heunisch\Desktop\FRST.exe
2014-01-21 15:59 - 2012-07-04 16:33 - 00000000 ____D C:\Users\Heunisch\AppData\Roaming\Dropbox
2014-01-21 15:58 - 2012-07-04 16:35 - 00000000 ___RD C:\Users\Heunisch\Dropbox
2014-01-21 15:58 - 2012-06-27 06:42 - 00140548 _____ C:\ProgramData\nvModes.dat
2014-01-21 15:58 - 2012-06-27 06:42 - 00140548 _____ C:\ProgramData\nvModes.001
2014-01-21 15:54 - 2006-11-02 13:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-21 15:54 - 2006-11-02 13:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-21 15:50 - 2012-07-04 15:01 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1664387651-909563359-2123299-1000UA.job
2014-01-21 15:14 - 2012-06-16 18:15 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-21 14:59 - 2008-01-21 02:35 - 01568710 _____ C:\Windows\WindowsUpdate.log
2014-01-21 11:54 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 21:46 - 2006-11-02 14:01 - 00032558 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-20 18:54 - 2013-01-10 18:39 - 00000000 ____D C:\2a61818cbe541d44c311e6
2014-01-20 18:45 - 2012-11-18 12:19 - 00000000 ____D C:\a79b7045f095b45b50c741f980759a28
2014-01-20 18:32 - 2012-07-04 15:09 - 00000000 ____D C:\e66c8a02481f3bb054c0680107ec5a
2014-01-20 18:23 - 2012-06-27 07:18 - 00002735 _____ C:\Users\Heunisch\Desktop\Microsoft Office Outlook 2007.lnk
2014-01-19 09:54 - 2009-08-20 17:22 - 00000000 ____D C:\Users\Heunisch\Documents\Meine Scans
2014-01-19 09:45 - 2009-04-09 07:51 - 00000000 ____D C:\Users\Heunisch\AppData\Roaming\Image Zone Express
2014-01-19 09:43 - 2006-11-02 11:23 - 00000254 _____ C:\Windows\win.ini
2014-01-19 09:05 - 2012-07-04 16:34 - 00000000 ____D C:\Users\Heunisch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-15 22:04 - 2012-06-27 07:10 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 22:02 - 2013-08-17 22:05 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 22:00 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-01-13 13:22 - 2012-06-16 12:24 - 00000680 _____ C:\Users\Heunisch\AppData\Local\d3d9caps.dat
2014-01-13 13:21 - 2008-01-21 08:16 - 01453910 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-13 13:19 - 2006-11-02 13:52 - 00103639 _____ C:\Windows\setupact.log
2014-01-12 11:47 - 2012-06-29 19:34 - 00002633 _____ C:\Users\Heunisch\Desktop\Microsoft Office Excel 2007.lnk
2014-01-12 11:30 - 2012-06-29 19:34 - 00002631 _____ C:\Users\Heunisch\Desktop\Microsoft Office Word 2007.lnk
2014-01-09 17:24 - 2009-08-01 12:44 - 00000000 ____D C:\Users\Heunisch\Johannes
2013-12-27 11:05 - 2009-04-13 10:40 - 00000000 ____D C:\Users\Heunisch\Privat
2013-12-27 09:40 - 2009-04-13 08:11 - 00000000 ____D C:\Users\Heunisch\AMV
2013-12-27 09:30 - 2009-04-13 08:32 - 00000000 ___RD C:\Users\Heunisch\Bilder
Some content of TEMP:
====================
C:\Users\Heunisch\AppData\Local\Temp\avgnt.exe
C:\Users\Heunisch\AppData\Local\Temp\GetCC.dll
C:\Users\Heunisch\AppData\Local\Temp\Installer.exe
C:\Users\Heunisch\AppData\Local\Temp\plus-hd-2-5-de.exe
C:\Users\Heunisch\AppData\Local\Temp\SendMsg.dll
C:\Users\Heunisch\AppData\Local\Temp\vbmz10.exe
C:\Users\Heunisch\AppData\Local\Temp\_is1B50.exe
C:\Users\Heunisch\AppData\Local\Temp\_is7C54.exe
C:\Users\Heunisch\AppData\Local\Temp\{38A2EF6F-6C2B-490D-9FFB-771A0C4FFE43}-GoogleToolbarInstaller_updater_signed.exe
C:\Users\Heunisch\AppData\Local\Temp\{5B8759DA-20B5-4E71-8F13-1862626D9687}-26.0.1410.43_chrome_installer.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-21 12:09
==================== End Of Log ============================ --- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 21-01-2014
Ran by Heunisch at 2014-01-21 16:02:15
Running from C:\Users\Heunisch\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
5600 (Version: 82.0.242.000 - Hewlett-Packard) Hidden
5600_Help (Version: 82.0.242.000 - Hewlett-Packard) Hidden
5600Trb (Version: 82.0.242.000 - Hewlett-Packard) Hidden
7-Zip 9.20 (Version: - )
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 - Deutsch (Version: 9.5.5 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (Version: 82.0.242.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (Version: 82.0.242.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Apple Application Support (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
Avira Free Antivirus (Version: 14.0.2.286 - Avira)
Azurewave Wireless LAN (Version: 1.00.0000 - RaLink)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
BufferChm (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Citrix Online Plug-in (DV) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Citrix Online Plug-in (HDX) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Citrix Online Plug-in (PNA) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Citrix Online Plug-in (SSON) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Citrix Online Plug-in (USB) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Citrix Online Plug-in (Version: 12.0.0.6410 - Citrix Systems, Inc.)
Citrix Online Plug-in (Web) (Version: 12.0.0.6410 - Citrix Systems, Inc.) Hidden
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)
Copy (Version: 82.0.188.000 - Hewlett-Packard) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Destinations (Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DocProc (Version: 8.1.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)
DScaler 5 Mpeg Decoders (Version: - )
ElsterFormular (Version: 14.4.12044 - Landesfinanzdirektion Thüringen)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Fax (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Free PDF to Word Doc Converter v1.1 (Version: 1.1 - www.hellopdf.com)
FreePDF (Remove only) (Version: - )
Google Chrome (HKCU Version: 32.0.1700.76 - Google Inc.)
GPL Ghostscript (Version: 9.04 - Artifex Software Inc.)
HP Customer Participation Program 8.0 (Version: 8.0 - HP)
HP Imaging Device Functions 8.0 (Version: 8.0 - HP)
HP OCR Software 8.0 (Version: 8.0 - HP)
HP Photosmart Essential (Version: 1.12.0.46 - HP)
HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B (Version: 8.0 - HP)
HP Solution Center 8.0 (Version: 8.0 - HP)
HP Update (Version: 4.000.005.006 - Hewlett-Packard)
HPProductAssistant (Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 2.1.3.0000 - Ihr Firmenname)
iTunes (Version: 11.0.5.5 - Apple Inc.)
Java 7 Update 10 (Version: 7.0.100 - Oracle)
Java Auto Updater (Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Lexware buchhalter 2010 (Version: 15.10.00.0010 - Lexware GmbH & Co. KG)
Lexware Elster (Version: 8.21.00.0001 - Lexware GmbH & Co. KG)
Lexware Info Service (Version: 2.61.00.0033 - Lexware GmbH & Co. KG)
MarketResearch (Version: 82.0.174.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MuseScore 1.2 MuseScore score typesetter (Version: 1.2.0 - Werner Schweer and Others)
NVIDIA Drivers (Version: - NVIDIA Corporation)
OpenSource AVI Splitter (remove only) (Version: - )
OpenSource DTS/AC3/DD+ Source Filter (remove only) (Version: - )
OpenSource Flash Video Splitter (remove only) (Version: - )
PandaPDFConverter (Version: - PandaPDFConverter)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000 - Realtek)
Realtek USB 2.0 Card Reader (Version: 6.0.6000.20111 - Realtek Semiconductor Corp.)
RedMon - Redirection Port Monitor (Version: - )
RENESIS® Player Browser Plugins (Version: 1.1.1 - examotion® GmbH)
Scan (Version: 8.1.0.0 - Hewlett-Packard) Hidden
Servicepack Datumsaktualisierung (Version: 1.00.00.0005 - Haufe-Lexware)
Servicepack Datumsaktualisierung (Version: 1.00.00.0005 - Haufe-Lexware) Hidden
SolutionCenter (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0 - Adobe Systems Incorporated)
Status (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Steuersoft EStPlus NX (Version: 18101 - Steuersoft GmbH)
STRATO HiDrive (remove only) (Version: - STRATO AG)
Synaptics Pointing Device Driver (Version: 14.0.19.0 - Synaptics Incorporated)
Toolbox (Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (Version: 82.0.188.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 1.00.0000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
VideoPerformer (Version: - PerformerSoft LLC) <==== ATTENTION
VR-NetWorld (Version: - )
WebReg (Version: 82.0.173.000 - Hewlett-Packard) Hidden
==================== Restore Points =========================
21-01-2014 11:30:56 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {6646C3B5-4F94-4450-A62F-FBFCEDB1A0F1} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {A0CF0940-619D-44BC-8BF8-A9A5C443AC02} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {BDD05AAE-C971-49EB-966C-ADFC685D413F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1664387651-909563359-2123299-1000UA => C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24] (Google Inc.)
Task: {C665D5DD-2FEB-4D75-8995-1D17F8D77747} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {DB20B4C8-9512-46AE-8AE3-F14FE8703D04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {E9CB41AB-6310-43ED-B176-57ADA6723A63} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1664387651-909563359-2123299-1000Core => C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-24] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1664387651-909563359-2123299-1000Core.job => C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1664387651-909563359-2123299-1000UA.job => C:\Users\Heunisch\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-04-21 20:44 - 2013-04-21 20:44 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 20:44 - 2013-04-21 20:44 - 01242952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Heunisch\AppData\Roaming\Dropbox\bin\libcef.dll
2014-01-19 09:59 - 2014-01-11 11:29 - 04055320 _____ () C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-19 09:59 - 2014-01-11 11:29 - 00399640 _____ () C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-19 09:59 - 2014-01-11 11:28 - 01634584 _____ () C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2014-01-19 09:59 - 2014-01-11 11:29 - 13615896 _____ () C:\Users\Heunisch\AppData\Local\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/21/2014 11:56:01 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/20/2014 09:45:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6577501
Error: (01/20/2014 09:45:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6577501
Error: (01/20/2014 09:45:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/20/2014 09:45:50 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6576487
Error: (01/20/2014 09:45:50 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6576487
Error: (01/20/2014 09:45:50 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/20/2014 09:45:49 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6575473
Error: (01/20/2014 09:45:49 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6575473
Error: (01/20/2014 09:45:49 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
System errors:
=============
Error: (01/21/2014 11:56:03 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (01/20/2014 07:18:09 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (01/20/2014 06:54:11 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (01/20/2014 06:52:35 PM) (Source: Print) (User: NT-AUTORITÄT)
Description: Das Dokument Laurenzi, SK.pdf konnte nicht gedruckt werden und wurde aufgrund einer Beschädigung an der gespoolten Datei gelöscht. Der zugewiesene Treiber ist "Brother HL-5030". Versuchen Sie erneut, das Dokument zu drucken.
Error: (01/20/2014 06:41:00 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (01/20/2014 06:31:38 PM) (Source: Print) (User: NT-AUTORITÄT)
Description: Das Dokument Laurenzi, SK.pdf im Besitz von Heunisch konnte nicht auf dem Drucker Brother HL-5030 gedruckt werden. Versuchen Sie erneut, das Dokument zu drucken, oder starten Sie den Druckspooler erneut.
Datentyp: NT EMF 1.008. Größe der Spooldatei in Bytes: 589824. Anzahl der gedruckten Bytes: 0. Gesamtanzahl der Seiten des Dokuments: 1. Anzahl der gedruckten Seiten: 0. Clientcomputer: \\HEUNISCH-PC. Vom Druckprozessor zurückgegebener Win32-Fehlercode: Laurenzi, SK.pdf0. Laurenzi, SK.pdf1
Error: (01/20/2014 06:22:50 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
Error: (01/20/2014 05:34:41 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (01/20/2014 05:34:10 PM) (Source: atapi) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (01/20/2014 05:34:10 PM) (Source: atapi) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2012-12-29 14:03:40.903
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-29 14:03:40.711
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-29 14:03:37.199
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-29 14:03:37.031
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-29 14:03:36.861
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-29 14:03:36.693
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-28 11:57:10.461
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-28 11:57:10.161
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-28 11:57:06.788
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-28 11:57:06.599
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\ProgramData\bProtectorForWindows\2.2.453.59\protector.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 43%
Total physical RAM: 3065.95 MB
Available physical RAM: 1745.55 MB
Total Pagefile: 6362.19 MB
Available Pagefile: 4946.23 MB
Total Virtual: 2047.88 MB
Available Virtual: 1900.57 MB
==================== Drives ================================
Drive c: (BOOT) (Fixed) (Total:278.07 GB) (Free:126.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVER) (Fixed) (Total:20 GB) (Free:8.83 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: 10E38D74)
Partition 1: (Active) - (Size=278 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=20 GB) - (Type=0C)
==================== End Of Log ============================ Danke schon mal bis dahin! |