| Simone70 | 10.09.2013 17:35 |
Hallo erst mal DAnke für die weitere Hilfe.
Hier die Logs:
adwcleaner ERgebnis: Code:
# AdwCleaner v3.003 - Bericht erstellt am 10/09/2013 um 18:18:13
# Updated 07/09/2013 von Xplode
# Betriebssystem : Windows 7 Professional (32 bits)
# Benutzername : Simone - SIMONEABELMANN
# Gestartet von : C:\Users\Simone70\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Users\Simone70\AppData\Roaming\Mozilla\Firefox\Profiles\ne3h3qw2.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v9.0.8112.16476
-\\ Mozilla Firefox v17.0.1 (de)
[ Datei : C:\Users\Simone70\AppData\Roaming\Mozilla\Firefox\Profiles\ne3h3qw2.default\prefs.js ]
[ Datei : C:\Users\Simone\AppData\Roaming\Mozilla\Firefox\Profiles\koq2fq1z.default\prefs.js ]
-\\ Google Chrome v
[ Datei : C:\Users\Simone70\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ Datei : C:\Users\Simone\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [52706 octets] - [09/09/2013 13:07:45]
AdwCleaner[R1].txt - [1402 octets] - [10/09/2013 18:17:11]
AdwCleaner[S0].txt - [52145 octets] - [09/09/2013 13:08:28]
AdwCleaner[S1].txt - [1325 octets] - [10/09/2013 18:18:13]
########## EOF - \AdwCleaner\AdwCleaner[S1].txt - [1385 octets] ##########
JRT: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.9 (09.07.2013:1)
OS: Windows 7 Professional x86
Ran by Simone on 10.09.2013 at 18:26:06,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2913138760-2999795433-1991814057-1003\Software\SweetIM
~~~ Files
Successfully deleted: [File] "C:\Users\Simone\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\driverscanner.lnk"
Successfully deleted: [File] "C:\Users\Simone\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\speedupmypc.lnk"
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.09.2013 at 18:27:39,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-09-2013 01
Ran by Simone (administrator) on Simone70 on 10-09-2013 18:30:49
Running from C:\Users\Simone70\Downloads
Microsoft Windows 7 Professional (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_f39a6924a795ad94\STacSV.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Validity Sensors, Inc.) C:\Windows\system32\vcsFPService.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_f39a6924a795ad94\aestsrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(NetSupport Ltd) C:\PROGRA~1\NETSUP~1\client32.exe
(Apache Software Foundation) C:\xampp\apache\bin\httpd.exe
(CrypKey (Canada) Ltd.) C:\Windows\system32\crypserv.exe
( ) C:\Windows\system32\dldocoms.exe
(FirebirdSQL Project) C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Users\Simone70\AppData\Local\Mikogo4\Viewer\Service\M4-Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE
() C:\xampp\mysql\bin\mysqld.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSvcm.exe
(NCP engineering GmbH) C:\Program Files\LANCOM\Advanced VPN Client\ncpclcfg.exe
(NCP Engineering GmbH) C:\Program Files\LANCOM\Advanced VPN Client\ncprwsnt.exe
() C:\Program Files\LANCOM\Advanced VPN Client\NCPSEC.EXE
() C:\Users\Simone70\AppData\Local\Mikogo4\Viewer\Service\M4-Capture.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(FirebirdSQL Project) C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Creative Technology Ltd) C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
(NCP engineering GmbH) C:\Program Files\LANCOM\Advanced VPN Client\NcpBudgetGui.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\g2mstart.exe
(Akamai Technologies, Inc.) C:\Users\Simone70\AppData\Local\Akamai\netsession_win.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Akamai Technologies, Inc.) C:\Users\Simone70\AppData\Local\Akamai\netsession_win.exe
(Dropbox, Inc.) C:\Users\Simone70\AppData\Roaming\Dropbox\bin\Dropbox.exe
(sw4you, Siegfried Weckmann) C:\Program Files\Hardcopy\hardcopy.exe
(Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\g2mcomm.exe
(Broadcom Corporation.) c:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\g2mlauncher.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\prevhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1602856 2010-01-08] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2010-04-07] (IDT, Inc.)
HKLM\...\Run: [QuickSet] - C:\Program Files\Dell\QuickSet\QuickSet.exe [3873648 2010-01-15] (Dell Inc.)
HKLM\...\Run: [FreeFallProtection] - C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [726640 2010-08-02] ()
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Broadcom Wireless Manager UI] - C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5249024 2010-11-02] (Dell Inc.)
HKLM\...\Run: [Dell Webcam Central] - C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
HKLM\...\Run: [DpAgent] - C:\Program Files\DigitalPersona\Bin\dpagent.exe [842816 2009-05-13] (DigitalPersona, Inc.)
HKLM\...\Run: [RemoteControl9] - c:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM\...\Run: [PDVD9LanguageShortcut] - c:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-04-14] (CyberLink Corp.)
HKLM\...\Run: [DBRMTray] - C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [206336 2010-05-20] (Microsoft)
HKLM\...\Run: [NcpBudgetGui] - C:\Program Files\LANCOM\Advanced VPN Client\NcpBudgetGui.exe [1026560 2010-05-21] (NCP engineering GmbH)
HKLM\...\Run: [NcpPopup] - C:\Program Files\LANCOM\Advanced VPN Client\ncppopup.exe [1192016 2010-05-21] (NCP engineering GmbH)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [BrMfcWnd] - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1167360 2009-08-03] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] - C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM\...\Run: [AdobeCS6ServiceManager] - C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [TrueImageMonitor.exe] - C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [6405376 2013-03-28] (Acronis)
HKLM\...\Run: [AcronisTibMounterMonitor] - C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105848 2013-01-10] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [413464 2013-02-15] (Acronis)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM\...\RunOnce: [DBRMTray] - C:\Dell\DBRM\Reminder\TrayApp.exe [7168 2010-02-05] (Microsoft)
HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [360448 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
MountPoints2: {010d2d5e-e5e0-11df-869c-806e6f6e6963} - E:\start.exe
HKU\Runtime\...\Policies\system: [LogonHoursAction] 2
HKU\Runtime\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Lsa: [Notification Packages] scecli DPPWDFLT
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Simone70\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Simone\AppData\Roaming\Dropbox\bin\Dropbox.exe (No File)
Startup: C:\Users\Simone70\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hardcopy.LNK
ShortcutTarget: Hardcopy.LNK -> C:\Program Files\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?ocid=EIE9HP&PC=UP50
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com/?ocid=EIE9HP&PC=UP50
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE9DEDE/110
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {C0F38068-0981-4889-AAFB-1D915045DC26} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLSDF8&pc=MDDS&src=IE-SearchBox
SearchScopes: HKCU - {2B2DAECB-4E6C-416A-81A3-AD05C5060C63} URL = hxxp://www.bing.com/search?FORM=UP50DF&PC=UP50&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - c:\Program Files\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg.dll No File
BHO: DigitalPersona Fingerprint Software Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU -No Name - {7E111A5C-3D11-4F56-9463-5310C3C69025} - No File
Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} https://support.dell.com/systemprofiler/SysProExe.CAB
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - c:\Program Files\Trend Micro\Client Server Security Agent\bho\1009\TmIEPlg.dll No File
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Simone\AppData\Roaming\Mozilla\Firefox\Profiles\koq2fq1z.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: FoxyDeal - C:\Users\Simone\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{F58A62EB-38DC-43C4-A539-DC52E135208D}
FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] C:\Program Files\DigitalPersona\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - C:\Program Files\DigitalPersona\Bin\FirefoxExt\
FF HKLM\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] c:\Program Files\Trend Micro\Client Server Security Agent\bho\1009\FirefoxExtension
FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] C:\Program Files\DigitalPersona\Bin\firefoxext
FF Extension: DigitalPersona Extension - C:\Program Files\DigitalPersona\Bin\firefoxext
Chrome:
=======
CHR HomePage: hxxp://www.google.com
========================== Services (Whitelisted) =================
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [831360 2013-02-15] (Acronis)
R2 AdobeActiveFileMonitor9.0; C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [169408 2010-09-30] (Adobe Systems Incorporated)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3816440 2013-05-11] (Acronis)
R2 Akamai; c:\program files\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [622648 2013-09-02] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 Apache2.4; C:\xampp\apache\bin\httpd.exe [22016 2012-08-18] (Apache Software Foundation)
R2 Client32; C:\PROGRA~1\NETSUP~1\client32.exe [16447 2006-02-28] (NetSupport Ltd)
R2 Crypkey License; C:\Windows\System32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.)
R2 dldo_device; C:\Windows\system32\dldocoms.exe [589824 2007-09-10] ( )
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [81920 2010-06-21] (FirebirdSQL Project)
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [2043904 2010-06-21] (FirebirdSQL Project)
R2 M4-Service; C:\Users\Simone70\AppData\Local\Mikogo4\Viewer\Service\M4-Service.exe [1008032 2012-11-12] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 msoidsvc; C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [1590560 2012-05-17] (Microsoft Corp.)
R2 mysql; c:\xampp\mysql\bin\my.ini [5777 2012-12-14] ()
R2 ncpclcfg; C:\Program Files\LANCOM\Advanced VPN Client\ncpclcfg.exe [133712 2010-05-21] (NCP engineering GmbH)
R2 ncprwsnt; C:\Program Files\LANCOM\Advanced VPN Client\ncprwsnt.exe [1118288 2010-06-30] (NCP Engineering GmbH)
R2 NcpSec; C:\Program Files\LANCOM\Advanced VPN Client\NCPSEC.EXE [93184 2010-05-07] ()
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [993848 2011-04-19] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [399416 2011-04-19] (Secunia)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7094592 2013-03-20] (Acronis)
R2 vcsFPService; C:\Windows\system32\vcsFPService.exe [1664304 2010-06-03] (Validity Sensors, Inc.)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [4539392 2010-11-02] (Dell Inc.)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [520576 2012-10-29] (Wacom Technology, Corp.)
==================== Drivers (Whitelisted) ====================
R3 Acceler; C:\Windows\System32\DRIVERS\Accelern.sys [43888 2010-07-09] (ST Microelectronics)
R3 avfwim; C:\Windows\System32\DRIVERS\avfwim.sys [92448 2013-08-06] (Avira GmbH)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-08-06] (Avira Operations GmbH & Co. KG)
R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18424 2010-11-02] (Broadcom Corporation)
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
S3 CtAudDrv; C:\Windows\system32\Drivers\CtAudDrv.sys [134144 2009-05-28] (Creative Technology Ltd.)
S3 gdihook5; C:\Windows\System32\DRIVERS\gdihook5.sys [24633 2006-02-28] (NetSupport Ltd)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] ()
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [11680 2012-10-12] (Windows (R) Win 7 DDK provider)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10.sys [52096 2010-10-01] (Generic USB smartcard reader)
S3 ncpfilt; C:\Windows\System32\DRIVERS\ncplelhp.sys [77808 2010-07-06] (NCP Engineering GmbH)
R3 ncplelhp; C:\Windows\System32\DRIVERS\ncplelhp.sys [77808 2010-07-06] (NCP Engineering GmbH)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [19584 2008-03-17] ()
R1 PCISys; C:\Windows\System32\Drivers\PCISys.sys [32823 2006-02-28] (NetSupport Ltd)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf.sys [15544 2010-09-01] (Secunia)
R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [49152 2009-07-01] (REDC)
R2 rixdpcie; C:\Windows\System32\DRIVERS\rixdpe86.sys [38400 2009-07-05] (REDC)
R0 speedfan; C:\Windows\System32\speedfan.sys [25240 2011-03-18] (Almico Software)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17648 2010-07-09] (ST Microelectronics)
S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [888640 2013-05-11] (Acronis International GmbH)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2013-05-11] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [130488 2013-05-11] (Acronis)
R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2013-05-11] (Acronis International GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2013-05-11] (Acronis International GmbH)
S3 WacHidRouter; C:\Windows\System32\DRIVERS\wachidrouter.sys [69024 2012-10-12] (Wacom Technology)
S3 wacomrouterfilter; C:\Windows\System32\DRIVERS\wacomrouterfilter.sys [13728 2012-10-12] (Wacom Technology)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-10 18:27 - 2013-09-10 18:27 - 00001264 _____ C:\Users\Simone\Desktop\JRT.txt
2013-09-10 18:26 - 2013-09-10 18:26 - 00000000 ____D C:\Windows\ERUNT
2013-09-10 18:10 - 2013-09-10 18:10 - 01037278 _____ C:\Users\Simone70\Downloads\adwcleaner.exe
2013-09-10 18:10 - 2013-09-10 18:10 - 01029490 _____ (Thisisu) C:\Users\Simone70\Downloads\JRT.exe
2013-09-10 07:40 - 2013-09-10 07:40 - 00028757 _____ C:\Users\Simone70\Downloads\Addition.txt
2013-09-10 07:36 - 2013-09-10 07:36 - 01082349 _____ (Farbar) C:\Users\Simone70\Downloads\FRST.exe
2013-09-09 13:07 - 2013-09-10 18:18 - 00000000 ____D C:\AdwCleaner
2013-09-09 13:06 - 2013-09-09 13:06 - 01037278 _____ C:\Users\Simone70\Desktop\adwcleaner.exe
2013-09-09 12:24 - 2013-09-09 12:24 - 96665497 _____ C:\Windows\system32\躬鬔[
2013-09-05 08:09 - 2013-09-05 20:08 - 96185213 _____ C:\Windows\system32\悮⥳m
2013-09-04 10:21 - 2013-09-04 10:21 - 00352048 _____ C:\Windows\Minidump\090413-17097-01.dmp
2013-09-04 08:01 - 2013-09-04 08:01 - 95812354 _____ C:\Windows\system32\﵉᭰Z
2013-09-02 12:04 - 2013-09-02 12:04 - 00009313 _____ C:\Users\Simone70\Downloads\Yamaha-vector-logo-8F4376D8D1-seeklogo.com.zip
2013-09-01 16:44 - 2013-09-01 16:44 - 95198291 _____ C:\Windows\system32\펅i
2013-09-01 12:43 - 2013-09-01 12:43 - 95178560 _____ C:\Windows\system32\㿜㣺g
2013-08-30 20:50 - 2013-08-30 20:50 - 00352048 _____ C:\Windows\Minidump\083013-16582-01.dmp
2013-08-30 09:49 - 2013-08-30 11:49 - 94748418 _____ C:\Windows\system32\㶼㹷f
2013-08-29 20:25 - 2013-08-29 20:25 - 94663095 _____ C:\Windows\system32\⤭h
2013-08-29 14:30 - 2013-08-29 14:30 - 94605346 _____ C:\Windows\system32\偙杣^
2013-08-28 20:48 - 2013-08-28 20:48 - 101009872 _____ C:\Windows\system32\ꔑྡྷ`
2013-08-27 09:38 - 2013-08-27 15:39 - 100448122 _____ C:\Windows\system32\浗叞i
2013-08-27 09:37 - 2013-08-27 09:37 - 00352048 _____ C:\Windows\Minidump\082713-17503-01.dmp
2013-08-26 13:41 - 2013-08-26 19:41 - 100225570 _____ C:\Windows\system32\捆࣬d
2013-08-24 20:55 - 2013-08-24 20:55 - 00344288 _____ C:\Windows\Minidump\082413-14991-01.dmp
2013-08-24 19:40 - 2013-08-24 19:40 - 100041808 _____ C:\Windows\system32\颩}
2013-08-23 09:43 - 2013-08-23 09:43 - 99862753 _____ C:\Windows\system32\⻯䠧g
2013-08-22 19:36 - 2013-08-22 19:36 - 00022366 _____ C:\Users\Simone70\Downloads\fontello-a9d789d3.zip
2013-08-22 18:55 - 2013-08-22 20:55 - 99814594 _____ C:\Windows\system32\뛭䏀`
2013-08-22 18:54 - 2013-08-22 18:54 - 00352048 _____ C:\Windows\Minidump\082213-15756-01.dmp
2013-08-22 13:24 - 2013-08-22 13:24 - 00352048 _____ C:\Windows\Minidump\082213-17331-01.dmp
2013-08-21 20:26 - 2013-08-21 20:26 - 99727755 _____ C:\Windows\system32\縪�6
2013-08-21 20:25 - 2013-08-21 20:25 - 00352048 _____ C:\Windows\Minidump\082113-17082-01.dmp
2013-08-21 10:54 - 2013-08-21 10:54 - 99647885 _____ C:\Windows\system32\黳]
2013-08-20 21:11 - 2013-08-20 21:11 - 00292246 _____ C:\Users\Simone70\Downloads\Lifesciencetexte.html
2013-08-20 20:28 - 2013-08-20 20:28 - 99562272 _____ C:\Windows\system32\Lc
2013-08-20 20:26 - 2013-09-04 10:21 - 416761189 _____ C:\Windows\MEMORY.DMP
2013-08-20 20:26 - 2013-08-20 20:27 - 00352048 _____ C:\Windows\Minidump\082013-19016-01.dmp
2013-08-20 13:29 - 2013-09-10 18:20 - 00002240 _____ C:\Windows\setupact.log
2013-08-20 13:29 - 2013-08-20 13:29 - 00000000 _____ C:\Windows\setuperr.log
2013-08-18 19:20 - 2013-08-18 19:20 - 05118341 _____ C:\Users\Simone70\Downloads\Fotolia_42350377_V.zip
2013-08-18 11:18 - 2013-08-18 11:18 - 00000000 ____D C:\Users\Simone\AppData\Roaming\Avira
2013-08-18 11:09 - 2013-08-18 11:09 - 00001415 _____ C:\Users\Simone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-08-18 11:07 - 2013-08-18 11:07 - 00000000 ____D C:\Users\Simone\AppData\Roaming\WTablet
2013-08-17 17:12 - 2013-08-17 17:12 - 00026081 _____ C:\Users\Simone70\Downloads\Architects_Daughter.zip
==================== One Month Modified Files and Folders =======
2013-09-10 18:30 - 2013-09-10 18:30 - 00000000 ____D C:\FRST
2013-09-10 18:28 - 2009-07-14 06:34 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-10 18:28 - 2009-07-14 06:34 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-10 18:27 - 2013-09-10 18:27 - 00001264 _____ C:\Users\Simone\Desktop\JRT.txt
2013-09-10 18:27 - 2012-12-12 14:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-10 18:26 - 2013-09-10 18:26 - 00000000 ____D C:\Windows\ERUNT
2013-09-10 18:23 - 2012-04-11 10:05 - 00000000 ____D C:\Users\Simone70\AppData\Roaming\Dropbox
2013-09-10 18:22 - 2012-04-11 10:07 - 00000000 ___RD C:\Users\Simone70\Dropbox
2013-09-10 18:20 - 2013-08-20 13:29 - 00002240 _____ C:\Windows\setupact.log
2013-09-10 18:20 - 2010-11-12 12:31 - 00000000 ____D C:\Program Files\Common Files\Akamai
2013-09-10 18:20 - 2010-11-10 00:52 - 00077872 _____ C:\Windows\error.log
2013-09-10 18:19 - 2010-11-10 11:22 - 00000008 _____ C:\Windows\system32\pcisys.ntk
2013-09-10 18:19 - 2010-11-10 00:52 - 00017145 _____ C:\Windows\errord.log
2013-09-10 18:19 - 2009-07-14 06:55 - 01420818 _____ C:\Windows\WindowsUpdate.log
2013-09-10 18:18 - 2013-09-09 13:07 - 00000000 ____D C:\AdwCleaner
2013-09-10 18:10 - 2013-09-10 18:10 - 01037278 _____ C:\Users\Simone70\Downloads\adwcleaner.exe
2013-09-10 18:10 - 2013-09-10 18:10 - 01029490 _____ (Thisisu) C:\Users\Simone70\Downloads\JRT.exe
2013-09-10 07:40 - 2013-09-10 07:40 - 00028757 _____ C:\Users\Simone70\Downloads\Addition.txt
2013-09-10 07:36 - 2013-09-10 07:36 - 01082349 _____ (Farbar) C:\Users\Simone70\Downloads\FRST.exe
2013-09-09 14:56 - 2011-11-10 00:21 - 00000000 ____D C:\Users\Simone70\AppData\Local\Akamai
2013-09-09 13:09 - 2011-10-24 20:54 - 00000000 ____D C:\Users\Simone\AppData\Roaming\Uniblue
2013-09-09 13:08 - 2011-10-24 20:54 - 00000000 ____D C:\ProgramData\Uniblue
2013-09-09 13:08 - 2011-10-24 20:54 - 00000000 ____D C:\Program Files\Uniblue
2013-09-09 13:06 - 2013-09-09 13:06 - 01037278 _____ C:\Users\Simone70\Desktop\adwcleaner.exe
2013-09-09 12:38 - 2009-07-14 06:53 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-09 12:33 - 2010-11-10 10:01 - 00000000 ____D C:\Users\Simone70\AppData\Local\Adobe
2013-09-09 12:24 - 2013-09-09 12:24 - 96665497 _____ C:\Windows\system32\躬鬔[
2013-09-09 12:24 - 2012-03-02 09:32 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-09 12:23 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-06 07:15 - 2012-03-02 09:32 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-06 06:47 - 2012-06-03 10:30 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-05 20:08 - 2013-09-05 08:09 - 96185213 _____ C:\Windows\system32\悮⥳m
2013-09-04 10:21 - 2013-09-04 10:21 - 00352048 _____ C:\Windows\Minidump\090413-17097-01.dmp
2013-09-04 10:21 - 2013-08-20 20:26 - 416761189 _____ C:\Windows\MEMORY.DMP
2013-09-04 10:21 - 2010-11-10 10:03 - 00000000 ____D C:\Windows\Minidump
2013-09-04 08:01 - 2013-09-04 08:01 - 95812354 _____ C:\Windows\system32\﵉᭰Z
2013-09-03 21:18 - 2011-05-13 22:22 - 00000488 __RSH C:\ProgramData\ntuser.pol
2013-09-02 16:30 - 2010-11-01 19:46 - 00454910 _____ C:\Windows\PFRO.log
2013-09-02 16:28 - 2011-10-24 21:05 - 00007588 _____ C:\Users\Simone\AppData\Local\Resmon.ResmonCfg
2013-09-02 16:22 - 2012-01-08 13:25 - 00000000 ____D C:\ProgramData\MySQL
2013-09-02 16:22 - 2012-01-08 13:25 - 00000000 ____D C:\Program Files\MySQL
2013-09-02 16:07 - 2013-08-06 13:59 - 00088840 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-02 16:06 - 2013-05-06 06:22 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-09-02 16:04 - 2012-08-31 10:20 - 00000000 ____D C:\Program Files\Microsoft Lync
2013-09-02 15:46 - 2010-11-02 02:00 - 00000000 ____D C:\ProgramData\Adobe
2013-09-02 15:46 - 2010-11-02 02:00 - 00000000 ____D C:\Program Files\Adobe
2013-09-02 15:45 - 2010-11-02 02:00 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-02 15:32 - 2012-06-03 10:23 - 00000000 ____D C:\Windows\pss
2013-09-02 15:03 - 2012-08-31 10:21 - 00000000 ____D C:\Users\Simone70\Tracing
2013-09-02 12:04 - 2013-09-02 12:04 - 00009313 _____ C:\Users\Simone70\Downloads\Yamaha-vector-logo-8F4376D8D1-seeklogo.com.zip
2013-09-01 16:44 - 2013-09-01 16:44 - 95198291 _____ C:\Windows\system32\펅i
2013-09-01 12:43 - 2013-09-01 12:43 - 95178560 _____ C:\Windows\system32\㿜㣺g
2013-08-30 20:50 - 2013-08-30 20:50 - 00352048 _____ C:\Windows\Minidump\083013-16582-01.dmp
2013-08-30 12:41 - 2010-11-25 12:07 - 00000000 ____D C:\Users\Simone70\AppData\Roaming\FileZilla
2013-08-30 11:49 - 2013-08-30 09:49 - 94748418 _____ C:\Windows\system32\㶼㹷f
2013-08-29 20:25 - 2013-08-29 20:25 - 94663095 _____ C:\Windows\system32\⤭h
2013-08-29 14:30 - 2013-08-29 14:30 - 94605346 _____ C:\Windows\system32\偙杣^
2013-08-28 20:48 - 2013-08-28 20:48 - 101009872 _____ C:\Windows\system32\ꔑྡྷ`
2013-08-27 15:39 - 2013-08-27 09:38 - 100448122 _____ C:\Windows\system32\浗叞i
2013-08-27 09:37 - 2013-08-27 09:37 - 00352048 _____ C:\Windows\Minidump\082713-17503-01.dmp
2013-08-26 19:41 - 2013-08-26 13:41 - 100225570 _____ C:\Windows\system32\捆࣬d
2013-08-25 19:35 - 2013-04-21 13:19 - 00001456 _____ C:\Users\Simone70\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2013-08-24 20:55 - 2013-08-24 20:55 - 00344288 _____ C:\Windows\Minidump\082413-14991-01.dmp
2013-08-24 19:40 - 2013-08-24 19:40 - 100041808 _____ C:\Windows\system32\颩}
2013-08-23 09:43 - 2013-08-23 09:43 - 99862753 _____ C:\Windows\system32\⻯䠧g
2013-08-22 21:11 - 2012-08-30 18:43 - 00000000 ____D C:\Users\Simone70\AppData\Roaming\Skype
2013-08-22 20:55 - 2013-08-22 18:55 - 99814594 _____ C:\Windows\system32\뛭䏀`
2013-08-22 19:36 - 2013-08-22 19:36 - 00022366 _____ C:\Users\Simone70\Downloads\fontello-a9d789d3.zip
2013-08-22 18:54 - 2013-08-22 18:54 - 00352048 _____ C:\Windows\Minidump\082213-15756-01.dmp
2013-08-22 13:24 - 2013-08-22 13:24 - 00352048 _____ C:\Windows\Minidump\082213-17331-01.dmp
2013-08-21 20:26 - 2013-08-21 20:26 - 99727755 _____ C:\Windows\system32\縪�6
2013-08-21 20:25 - 2013-08-21 20:25 - 00352048 _____ C:\Windows\Minidump\082113-17082-01.dmp
2013-08-21 10:54 - 2013-08-21 10:54 - 99647885 _____ C:\Windows\system32\黳]
2013-08-20 21:47 - 2012-06-03 10:30 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-08-20 21:47 - 2011-05-13 23:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-08-20 21:11 - 2013-08-20 21:11 - 00292246 _____ C:\Users\Simone70\Downloads\Lifesciencetexte.html
2013-08-20 20:28 - 2013-08-20 20:28 - 99562272 _____ C:\Windows\system32\Lc
2013-08-20 20:27 - 2013-08-20 20:26 - 00352048 _____ C:\Windows\Minidump\082013-19016-01.dmp
2013-08-20 13:36 - 2013-08-06 14:37 - 00066144 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-20 13:36 - 2013-08-06 13:59 - 00136672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-20 13:29 - 2013-08-20 13:29 - 00000000 _____ C:\Windows\setuperr.log
2013-08-19 20:44 - 2011-05-17 14:51 - 00000000 ____D C:\Program Files\WYSIWYG Web Builder 7
2013-08-19 19:49 - 2010-11-02 01:53 - 01644114 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-18 19:20 - 2013-08-18 19:20 - 05118341 _____ C:\Users\Simone70\Downloads\Fotolia_42350377_V.zip
2013-08-18 11:18 - 2013-08-18 11:18 - 00000000 ____D C:\Users\Simone\AppData\Roaming\Avira
2013-08-18 11:11 - 2012-08-31 10:20 - 00000000 ____D C:\Users\Simone\Tracing
2013-08-18 11:10 - 2011-05-13 22:55 - 00142568 _____ C:\Users\Simone\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-18 11:09 - 2013-08-18 11:09 - 00001415 _____ C:\Users\Simone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-08-18 11:07 - 2013-08-18 11:07 - 00000000 ____D C:\Users\Simone\AppData\Roaming\WTablet
2013-08-17 17:12 - 2013-08-17 17:12 - 00026081 _____ C:\Users\Simone70\Downloads\Architects_Daughter.zip
2013-08-15 03:05 - 2013-07-17 07:37 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:01 - 2010-11-09 21:57 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-12 17:25 - 2011-10-04 08:06 - 00000000 ____D C:\ProgramData\Roxio
2013-08-11 11:12 - 2011-07-15 11:20 - 00000000 ____D C:\ProgramData\tmp
2013-08-11 11:06 - 2011-07-15 11:20 - 00001105 _____ C:\Users\Public\Desktop\CEWE FOTOSCHAU.lnk
2013-08-11 11:06 - 2011-07-15 11:20 - 00001090 _____ C:\Users\Public\Desktop\dm-Fotowelt.lnk
Files to move or delete:
====================
C:\Users\Simone\AppData\Local\Temp\Quarantine.exe
C:\Users\Simone\AppData\Local\Temp\_is4278.exe
C:\Users\Simone\AppData\Local\Temp\_isEB16.exe
C:\Users\Simone\AppData\Local\Temp\_isFBB7.exe
C:\Users\Simone\AppData\Local\Temp\_isFC92.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-01 11:28
==================== End Of Log ============================
--- --- ---
Addition: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-09-2013 01
Ran by Simone at 2013-09-10 18:31:55
Running from C:\Users\Simone70\Downloads
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
"Durchstarten mit Ponky - Mathe 1+2" (Version: 2.00)
AccelerometerP11 (Version: 2.00.10.11)
Adobe AIR (Version: 3.7.0.2090)
Adobe Content Viewer (Version: 1.4.0)
Adobe Download Assistant (Version: 1.0.5)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Help Manager (Version: 4.0.244)
Adobe Illustrator CS6 (Version: 16.0)
Adobe InDesign CS6 (Version: 8.0)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Advanced Audio FX Engine (Version: 1.12.05)
Akamai NetSession Interface Service
AllDup 3.3.14 (Version: 3.3.14)
Amicron-Faktura 10.0 © Amicron Software
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
AVM FRITZ!fax für FRITZ!Box
AVS Audio Converter 7
AVS Audio Editor 7.1
AVS Audio Recorder version 4.0
AVS Screen Capture version 2.0.1
AVS Update Manager 1.0
AVS Video Converter 8
AVS Video Editor 6
AVS Video Recorder 2.5
AVS4YOU Software Navigator 1.4
Bonjour (Version: 3.0.0.10)
Brother BRAdmin Light 1.18.0000 (Version: 1.18.0000)
Brother MFC-5895CW (Version: 1.00)
Brother MFL-Pro Suite MFC-5895CW (Version: 1.0.2.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CrystalDiskInfo 4.1.3 (Version: 4.1.3)
CyberLink PowerDVD 9.5 (Version: 9.5.0.2829)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Backup and Recovery Manager (Version: 1.3)
Dell Edoc Viewer (Version: 1.0.0)
Dell Touchpad (Version: 15.0.2.0)
Dell Webcam Central (Version: 1.40.05)
DigitalPersona Personal 4.01 (Version: 4.01.3765)
dm-Fotowelt (Version: 5.0.4)
DW WLAN Card Utility (Version: 5.60.48.35)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
ElsterFormular-Upgrade (Version: 14.3.11574)
FileHippo.com Update Checker
FileZilla Client 3.5.3 (Version: 3.5.3)
Firebird 2.0.6.13266 (win32) (Version: 2.0.6.13266)
GetDataBack for NTFS (Version: 4.00.000)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.153)
Hardcopy (C:\Program Files\Hardcopy) (Version: 2010.10.01)
iCloud (Version: 1.0.2.17)
Intel(R) Management Engine Components (Version: 6.0.0.1179)
iTunes (Version: 11.0.0.163)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java(TM) 6 Update 24 (Version: 6.0.240)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 14.0.8089.726)
LANCOM Advanced VPN Client (Version: 2.23)
Lexware Info Service (Version: 2.80.00.0007)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
McAfee Security Scan Plus (Version: 3.0.318.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Labs Forgotten Attachment Detector (Version: 1.0.0609.0)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Online Services-Anmeldeassistent (Version: 7.250.4303.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Mozilla Firefox 17.0.1 (x86 de) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 17.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MySQL Connector C 6.0.2 (Version: 6.0.2)
MySQL Connector C++ 1.1.0 (Version: 1.1.0)
MySQL Connector J (Version: 5.1.15.0)
MySQL Connector Net 6.4.4 (Version: 6.4.4)
MySQL Connector/ODBC 5.1 (Version: 5.1.8)
MySQL Workbench 5.2 CE (Version: 5.2.35)
NetSupport Manager (Version: NetSupport Manager 9.50)
NVIDIA Drivers (Version: 1.10.62.40)
PDF Settings CS6 (Version: 11.0)
PDF Split And Merge Basic (Version: 2.2.2)
PhotoFiltre
Picasa 3 (Version: 3.9)
PST Walker Evaluation 4.63
QuickSet32 (Version: 1.3.3)
QuickSteuer 2012 DB (Version: 18.07.00.0006)
QuickTime (Version: 7.71.80.42)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE 10.3 (Version: 10.3)
Roxio Creator DE 10.3 (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio Update Manager (Version: 6.0.0)
R-Studio 3.0 (Version: 3.0.123023)
R-Studio 5.3 (Version: 5.3.132958)
Safari (Version: 5.34.52.7)
ScanSoft PaperPort 11 (Version: 11.2.0000)
Secunia PSI (2.0.0.3003)
Skype™ 5.10 (Version: 5.10.116)
SlimDX Redistributable (June 2010) (Version: 2.0.10.43)
SpeedFan (remove only)
Stellar Phoenix Windows Data Recovery V4.1
TeamViewer 8 (Version: 8.0.17396)
True Image 2013 (Version: 16.0.6514)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Validity Sensors DDK (Version: 3.1.379)
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.21022)
Wacom Tablett (Version: 6.3.4-3)
WebTablet FB Plugin 32 bit (Version: 2.1.0.2)
WIDCOMM Bluetooth Software (Version: 6.2.1.900)
Windows Live Anmelde-Assistent (Version: 5.000.818.5)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Fotogalerie (Version: 14.0.8081.709)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Live-Uploadtool (Version: 14.0.8014.1029)
XAMPP 1.8.1
==================== Restore Points =========================
01-09-2013 09:36:30 Geplanter Prüfpunkt
02-09-2013 13:35:35 Removed QuickSteuer 2011 DB.
02-09-2013 13:54:19 QuickSteuer Wissens-Center 2012 wird entfernt
02-09-2013 13:58:51 Removed Microsoft Silverlight
02-09-2013 14:00:11 Microsoft Lync 2010 wird entfernt
02-09-2013 14:21:46 Removed MySQL Installer
02-09-2013 14:22:55 Removed Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
09-09-2013 10:37:35 Avira Internet Security - 09.09.2013 12:37
==================== Hosts content: ==========================
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {018AA692-3212-4B21-9FE7-11DAE2B93105} - System32\Tasks\AdobeAAMUpdater-1.0-Simone70-Simone70 => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {04E5B394-F766-45CD-90C0-DA0B1695ABB5} - System32\Tasks\{04E9AE96-7B7A-4704-98D6-39193F03A535} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2009-2010\Steuer.exe
Task: {0D9B5D92-3A22-486D-A887-3AA21597CF27} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {0E5259F8-BF9E-44A0-A92E-E160606E8049} - System32\Tasks\{8311F2EE-8558-4F72-8D97-325DABD6B729} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2009-2010\Steuer.exe
Task: {24F33BC1-0B87-4F7B-9B99-6D58C6F5FFD1} - System32\Tasks\{37FE3A6D-2B0F-43EC-BB7B-267695FF3D93} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2008-2009\Steuer2009.exe
Task: {2851FBE6-451E-4C61-B0CF-4773EB9854B4} - System32\Tasks\{05EAEE1D-6820-446B-8E12-BB187952B263} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2008-2009\Steuer2009.exe
Task: {28863743-23F7-4E13-85DE-C8B8C6F1C42B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {33EAD533-8D80-4717-8567-97E0F31BEC4D} - System32\Tasks\{92787595-FAF6-4D64-9CCA-8EE75DB32222} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2009-2010\Steuer.exe
Task: {46D66C00-FC34-4F69-A92A-A17696639E23} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-20] (Adobe Systems Incorporated)
Task: {5F46CF80-DAF9-4C27-95AF-1A303D02C2DD} - System32\Tasks\{887E7FAC-9217-474A-84E3-0C4F64F4DA6A} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2008-2009\Steuer2009.exe
Task: {5FA35A52-A2C5-4130-A48C-05224D3D5440} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {7D1A7967-1F11-4346-86FF-AC0DA1012EFF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-02] (Google Inc.)
Task: {8445DE9D-A78D-433F-BEA6-C5D2349267CD} - System32\Tasks\{D1DAD3C0-BF27-4D96-8694-9092B9629CC2} => C:\Program Files\DATA BECKER\Steuer-Sparpaket 2008-2009\Steuer2009.exe
Task: {A55690B3-6A30-4625-986A-86CD1729D3C0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-03-02] (Google Inc.)
Task: {B08C2017-658D-4A8C-A273-4FEA618CD483} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
Task: {FEE1CBA5-2D55-460B-9085-B15FE3755757} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-08-04] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2009-05-13 00:50 - 2009-05-13 00:50 - 00494656 _____ (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpoFeedb.dll
2010-11-10 15:18 - 2010-04-21 11:00 - 00058368 _____ () C:\Program Files\Hardcopy\HcDLL2_30_Win32.dll
2012-12-17 19:53 - 2012-10-29 09:14 - 00963456 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2012-12-17 19:53 - 2012-10-29 09:14 - 01628032 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2010-11-02 04:37 - 2010-01-08 06:45 - 00173352 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2010-11-02 04:37 - 2010-01-08 06:45 - 00161064 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2010-11-01 19:49 - 2010-04-07 14:35 - 03354624 _____ (IDT, Inc.) C:\Program Files\IDT\WDM\STLang.dll
2010-11-02 04:37 - 2010-04-07 14:35 - 00527872 _____ (IDT, Inc.) C:\Windows\system32\stapi32.dll
2010-11-02 04:39 - 2010-06-03 19:55 - 00086016 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2009-05-13 00:50 - 2009-05-13 00:50 - 00359488 _____ (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpoSet.dll
2010-11-02 02:08 - 2009-06-23 03:15 - 00235008 _____ (Creative Technology Ltd) C:\Program Files\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
2010-11-02 02:08 - 2009-06-24 00:16 - 00065536 _____ (Creative Technology Ltd.) C:\Program Files\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
2009-07-14 02:03 - 2009-07-14 03:14 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2009-07-14 01:51 - 2009-07-14 03:14 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\vidcap.ax
2009-07-14 02:03 - 2009-07-14 03:14 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\kswdmcap.ax
2009-05-13 00:50 - 2009-05-13 00:50 - 00334912 _____ (DigitalPersona, Inc.) C:\Windows\system32\DPFPApi.DLL
2009-05-13 00:50 - 2009-05-13 00:50 - 00240704 _____ (DigitalPersona, Inc.) C:\Windows\system32\DPCLBACK.dll
2009-05-13 00:50 - 2009-05-13 00:50 - 00670784 _____ (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpOCache.dll
2010-11-10 11:00 - 2010-06-09 13:45 - 00097792 _____ () C:\Program Files\LANCOM\Advanced VPN Client\ncpmif32.dll
2010-11-10 11:00 - 2002-06-28 12:16 - 00151552 _____ () C:\Program Files\LANCOM\Advanced VPN Client\ncpcfg.dll
2010-11-10 11:00 - 2009-10-21 14:29 - 00139264 _____ () C:\Program Files\LANCOM\Advanced VPN Client\ncpdlg.dll
2010-11-10 11:00 - 2010-02-02 18:23 - 00249344 _____ (NCP engineering GmbH) C:\Program Files\LANCOM\Advanced VPN Client\ncpmon3.dll
2010-11-10 11:00 - 2010-05-21 12:45 - 00090704 _____ (NCP engineering GmbH) C:\Program Files\LANCOM\Advanced VPN Client\ncpclcfg.dll
2011-11-25 23:50 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2011-11-25 23:51 - 2008-12-14 10:11 - 00163840 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BRMFCWNDGer.dll
2013-03-27 18:53 - 2013-03-27 18:53 - 00121152 _____ (Acronis) C:\Program Files\Acronis\TrueImageHome\afcdpapi.dll
2013-01-23 16:09 - 2013-01-23 16:09 - 00399680 _____ (Acronis) C:\Program Files\Common Files\Acronis\SnapAPI\snapapi.dll
2013-03-28 00:37 - 2013-03-28 00:37 - 13627872 _____ () C:\Program Files\Acronis\TrueImageHome\ti_managers.dll
2013-03-27 21:31 - 2013-03-27 21:31 - 00028480 _____ (Acronis) C:\Program Files\Common Files\Acronis\Home\thread_pool.dll
2013-03-27 21:33 - 2013-03-27 21:33 - 00289088 _____ (Acronis) C:\Program Files\Common Files\Acronis\Home\libssl10.dll
2013-03-27 21:23 - 2013-03-27 21:23 - 01329472 _____ (Acronis) C:\Program Files\Common Files\Acronis\Home\libcrypto10.dll
2013-03-20 19:31 - 2013-03-20 19:31 - 00280896 _____ (Acronis) C:\Program Files\Common Files\Acronis\Home\sync_agent_api.dll
2013-03-28 00:32 - 2013-03-28 00:32 - 00076096 _____ (Acronis) C:\Program Files\Common Files\Acronis\Home\rpc_client.dll
2013-03-14 17:51 - 2013-03-14 17:51 - 03566664 _____ (Acronis International GmbH) C:\Program Files\Common Files\Acronis\TrueImageHome\tdrpapi.dll
2013-01-10 13:31 - 2013-01-10 13:31 - 00342488 _____ (Acronis) C:\Program Files\Common Files\Acronis\TibMounter\tib_mounter.dll
2012-07-24 15:50 - 2012-07-24 15:50 - 01750400 _____ (Acronis) C:\Program Files\Common Files\Acronis\TibMounter\fox.dll
2013-01-10 13:43 - 2013-01-10 13:43 - 00014360 _____ () C:\Program Files\Common Files\Acronis\TibMounter\icudt38.dll
2012-07-24 15:47 - 2012-07-24 15:47 - 00032640 _____ (Acronis) C:\Program Files\Common Files\Acronis\TibMounter\thread_pool.dll
2011-11-25 23:51 - 2009-03-06 13:51 - 00770048 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\brccDCtl.dll
2011-11-25 23:51 - 2008-10-21 20:41 - 00159744 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\brccger.dll
2011-11-25 23:51 - 2008-07-22 22:24 - 05390336 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\brccimg.dll
2011-11-25 23:51 - 2009-05-11 14:48 - 00372736 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\brccFCtl.dll
2009-05-13 00:50 - 2009-05-13 00:50 - 01748032 _____ (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpFbview.dll
2009-10-20 16:12 - 2009-10-20 16:12 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2010-11-10 15:18 - 2010-09-30 10:14 - 00055296 _____ () C:\Program Files\Hardcopy\hardcopy_03.dll
2012-09-20 13:01 - 2012-09-20 13:01 - 15933352 _____ (Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\g2m.dll
2012-09-20 13:01 - 2012-09-20 13:01 - 01360824 _____ (Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\G2MResource_de.dll
2011-11-25 23:51 - 2008-02-05 20:17 - 00176128 ____N (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BroSNMP.dll
2009-07-14 01:53 - 2009-07-14 03:14 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\irprops.cpl
2012-11-14 01:32 - 2012-11-14 01:32 - 03558400 _____ (wxWidgets development team) C:\Users\Simone70\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 24978944 _____ () C:\Users\Simone70\AppData\Roaming\Dropbox\bin\libcef.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 09956864 _____ (The ICU Project) C:\Users\Simone70\AppData\Roaming\Dropbox\bin\icudt.dll
2010-11-10 15:18 - 2010-09-30 10:04 - 00779264 _____ () C:\Program Files\Hardcopy\HcDllS.dll
2012-09-20 13:01 - 2012-09-20 13:01 - 00260544 _____ (Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\G2MOutlookAddin.dll
2012-09-20 13:01 - 2012-09-20 13:01 - 00205240 _____ (Citrix Online, a division of Citrix Systems, Inc.) C:\Users\Simone70\AppData\Local\Citrix\GoToMeeting\1010\G2MIMessenger.dll
2013-03-28 00:53 - 2013-03-28 00:53 - 02670136 _____ (Acronis) C:\Program Files\Acronis\TrueImageHome\tishell.dll
2013-03-27 22:36 - 2013-03-27 22:36 - 00021312 _____ () C:\Program Files\Acronis\TrueImageHome\ti_managers_proxy_stub.dll
2012-12-12 14:01 - 2012-12-12 14:01 - 02397152 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2012-12-12 14:01 - 2012-12-12 14:01 - 00810976 _____ (sqlite.org) C:\Program Files\Mozilla Firefox\mozsqlite3.dll
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
Name: PCI GDIHOOK5
Description: PCI GDIHOOK5
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Productive Computer Insight
Service: gdihook5
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Dell 968 AIO Printer
Description: Dell 968 AIO Printer
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Dell
Service: usbscan
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/10/2013 06:32:05 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:32:05.424]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:32:04 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:32:04.514]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:30:56 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:30:56.415]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:30:55 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:30:55.510]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:29:47 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:29:47.410]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:29:46 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:29:46.504]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:28:38 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:28:38.405]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:28:37 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:28:37.499]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:27:29 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:27:29.400]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:27:28 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/09/10 18:27:28.494]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
System errors:
=============
Microsoft Office Sessions:
=========================
Error: (09/10/2013 06:32:05 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:32:05.424]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:32:04 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:32:04.514]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:30:56 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:30:56.415]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:30:55 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:30:55.510]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:29:47 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:29:47.410]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:29:46 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:29:46.504]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:28:38 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:28:38.405]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:28:37 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:28:37.499]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:27:29 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:27:29.400]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
Error: (09/10/2013 06:27:28 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2013/09/10 18:27:28.494]: [00004000]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[169.254.120.125]
==================== Memory info ===========================
Percentage of memory in use: 58%
Total physical RAM: 2742.6 MB
Available physical RAM: 1143.76 MB
Total Pagefile: 5483.47 MB
Available Pagefile: 3423.07 MB
Total Virtual: 2047.88 MB
Available Virtual: 1891.02 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:235.36 GB) (Free:119.46 GB) NTFS
Drive d: (Daten) (Fixed) (Total:220.58 GB) (Free:14.8 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: FC925462)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=235 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=221 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
AdwCleaner auf deinen Desktop.
