Okay, hier die beiden Ergebnisse
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01
Ran by Cathérine (administrator) on PUMA on 07-07-2014 14:20:15
Running from C:\Users\Cathérine\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Just Develop It) C:\Program Files (x86)\MyPC Backup\BackupStack.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\HitmanPro.exe
() C:\Program Files (x86)\v01BlockAndSurf\wdBlockAndSurfL.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
() C:\Program Files (x86)\LPT\srpts.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Memeo) C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
() C:\Program Files (x86)\LPT\srptsl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Users\Cathérine\AppData\Roaming\VOPackage\VOsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
() C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
() C:\Users\Cathérine\AppData\Local\fst_de_88\upfst_de_88.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Smartbar) C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.exe
() C:\Program Files (x86)\v01BlockAndSurf\BlockAndSurf.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\fst_de_88\fst_de_88.exe
() C:\Program Files (x86)\watchmi\TvdTray.exe
(D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-131 revA\wirelesscm.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
() C:\Users\Cathérine\AppData\Local\Smartbar\Application\Lrcnta.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\fst_de_89\fst_de_89.exe
() C:\Users\Cathérine\AppData\Local\fst_de_89\upfst_de_89.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
() C:\Users\Cathérine\AppData\Local\LPT\srptm.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452968 2012-03-13] (Realtek Semiconductor)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-02] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2011-04-15] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-04] (CyberLink)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [750160 2014-07-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [fst_de_88] => C:\Program Files (x86)\fst_de_88\fst_de_88.exe [3976160 2014-07-04] ()
HKLM-x32\...\Run: [AnyProtect Scanner] => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [16957952 2014-07-07] (AnyProtect by CMI)
HKLM-x32\...\Run: [fst_de_89] => C:\Program Files (x86)\fst_de_89\fst_de_89.exe [3975136 2014-07-04] ()
HKLM-x32\...\RunOnce: [upfst_de_88.exe] - C:\Users\Cathérine\AppData\Local\fst_de_88\upfst_de_88.exe -runonce [3355128 2014-07-04] ()
HKLM-x32\...\Runonce: [upfst_de_89.exe] - C:\Users\Cathérine\AppData\Local\fst_de_88\upfst_de_89.exe -runonce [X]
HKU\S-1-5-21-726190657-2861911357-3930699267-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-726190657-2861911357-3930699267-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [466656 2014-05-23] (Sony)
HKU\S-1-5-21-726190657-2861911357-3930699267-1001\...\Run: [Browser Infrastructure Helper] => C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.exe [28952 2014-06-11] (Smartbar)
HKU\S-1-5-21-726190657-2861911357-3930699267-1001\...\Run: [BlockAndSurf] => C:\Program Files (x86)\v01BlockAndSurf\BlockAndSurf.exe [131072 2014-07-07] ()
AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~2.DLL => C:\Program Files (x86)\SupTab\SearchProtect64.dll [105072 2014-06-19] (Skytech Co., Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\SupTab\SEARCH~1.DLL => C:\Program Files (x86)\SupTab\SearchProtect32.dll [92272 2014-06-19] (Skytech Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\watchmi tray.lnk
ShortcutTarget: watchmi tray.lnk -> C:\Windows\Installer\{F0559C5E-7912-4391-B1A0-6B975F0E5064}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe (Acresso Software Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files (x86)\D-Link\DWA-131 revA\wirelesscm.exe (D-Link Corp.)
Startup: C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDTt8PVUCrSqw53S759wflyNSQanEqYfnjPS7r6wdtHJzErjYjWNP_8LJhMYYoB2PpMZBFZ1vdJyqyy6K8NybmE_Sy5LItcx6un4ke4suFqO5YRENXjHe8jjRSPn2VKSO3ithR14lbiucQ0WRn17Pr6qMGoQAoPB0B8KexrBogLLvi59RA,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDTt8PVUCrSqw53S759wflyNSQanEqYfnjPS7r6wdtHJzErjYjWNP_8LJhMYYoB2PpMZBFZ1vdJyqyy6K8NybmE_Sy5LItcx6un4ke4suFqO5YRENXjHe8jjRSPn2VKSO3ithR14lbiucQ0WRn17Pr6qMGoQAoPB0B8KexrBogLLvi59RA,,&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDTt8PVUCrSqw53S759wflyNSQanEqYfnjPS7r6wdtHJzErjYjWNP_8LJhMYYoB2PpMZBFZ1vdJyqyy6K8NybmE_Sy5LItcx6un4ke4suFqO5YRENXjHe8jjRSPn2VKSO3ithR14lbiucQ0WRn17Pr6qMGoQAoPErxJ3nS1Tc0ENGsPZBw,,&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDTt8PVUCrSqw53S759wflyNSQanEqYfnjPS7r6wdtHJzErjYjWNP_8LJhMYYoB2PpMZBFZ1vdJyqyy6K8NybmE_Sy5LItcx6un4ke4suFqO5YRENXjHe8jjRSPn2VKSO3ithR14lbiucQ0WRn17Pr6qMGoQAoPB0B8KexrBogLLvi59RA,,&q={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8&q={searchTerms}
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Yahoo Community Smartbar (by Linkury)Engine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Yahoo Community Smartbar (by Linkury)Engine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: BlockAndSurf - {A3A24936-AE9E-3C21-9C0F-42BFD7FD8EE4} - C:\Program Files (x86)\v01BlockAndSurf\174.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Yahoo Community Smartbar (by Linkury) - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 83.169.185.33 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Cathérine\AppData\Roaming\Mozilla\Firefox\Profiles\zr47yj73.default
FF NewTab: hxxp://www.sweet-page.com/newtab/?type=nt&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
FF DefaultSearchEngine: sweet-page
FF SelectedSearchEngine: sweet-page
FF Homepage: hxxp://www.sweet-page.com/?type=hp&ts=1404729474&from=cor&uid=ST2000DL003-9VT166_5YD7EZT8XXXX5YD7EZT8
FF Keyword.URL: hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRbkHo3StK217RbjR1YFa37oBy_U-nTnTbDTt8PVUCrSqw53S759wflyNSQanEqYfnjPS7r6wdtHJzErjYjWNP_8LJhMYYoB2PpMZBFZ1vdJyqyy6K8NybmE_Sy5LItcx6un4ke4suFqO5YRENXjHe8jjRSPn2VKSO3ithR14lbiucQ0WRn17Pr6qMGoQAoPB0B8KexrBogLLvi59RA,,&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.4.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF user.js: detected! => C:\Users\Cathérine\AppData\Roaming\Mozilla\Firefox\Profiles\zr47yj73.default\user.js
FF SearchPlugin: C:\Users\Cathérine\AppData\Roaming\Mozilla\Firefox\Profiles\zr47yj73.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Users\Cathérine\AppData\Roaming\Mozilla\Firefox\Profiles\zr47yj73.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-26]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF HKCU\...\Firefox\Extensions: [{4C842449-468F-EBE0-C048-234CDBC616EC}] - C:\Program Files (x86)\v01BlockAndSurf\174.xpi
FF Extension: BlockAndSurf - C:\Program Files (x86)\v01BlockAndSurf\174.xpi [2014-07-07]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (No Name) - C:\Users\Cathérine\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmkjneookggmljgfilgemfeefneiibdi [2014-07-07]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-03] (Avira Operations GmbH & Co. KG)
R2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36424 2014-06-18] (Just Develop It)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-07] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-07-07] (globalUpdate) [File not signed]
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-06-30] (SurfRight B.V.)
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [757872 2014-06-19] (Cherished Technololgy LIMITED)
R2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [33560 2014-06-11] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 NewPlayerUpdaterService; C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe [11776 2014-05-05] () [File not signed]
R2 servervo; C:\Users\Cathérine\AppData\Roaming\VOPackage\VOsrv.exe [75264 2014-07-07] () [File not signed]
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2012-01-31] () [File not signed]
R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [535936 2014-07-07] (Fuyu LIMITED)
R2 WlanWpsSvc; C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe [167936 2008-06-26] () [File not signed]
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-06-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-26] (Avira Operations GmbH & Co. KG)
R3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-07-07] ()
R2 webinstr; C:\Windows\system32\Drivers\webinstr.sys [57528 2014-06-26] (Corsica)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-07-07 14:18 - 2014-07-07 14:18 - 00032512 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2014-07-07 13:52 - 2014-07-07 13:52 - 00000480 _____ () C:\Users\Cathérine\Downloads\defogger_disable.log
2014-07-07 13:52 - 2014-07-07 13:52 - 00000000 _____ () C:\Users\Cathérine\defogger_reenable
2014-07-07 13:51 - 2014-07-07 13:51 - 00380416 _____ () C:\Users\Cathérine\Downloads\Gmer-19357.exe
2014-07-07 13:51 - 2014-07-07 13:51 - 00050477 _____ () C:\Users\Cathérine\Downloads\Defogger.exe
2014-07-07 13:37 - 2014-07-07 13:37 - 00591320 _____ (ClickMeIn Limited) C:\Users\Cathérine\AppData\Local\nst8D73.tmp
2014-07-07 12:56 - 2014-07-07 14:16 - 00001092 _____ () C:\Users\Cathérine\Desktop\Continue VuuPC Installation.lnk
2014-07-07 12:54 - 2014-07-07 12:54 - 00010042 _____ () C:\AdwCleaner[R3].txt
2014-07-07 12:53 - 2014-07-07 12:53 - 00000000 ____D () C:\ProgramData\374311380
2014-07-07 12:51 - 2014-07-07 12:51 - 00051119 _____ () C:\Users\Cathérine\Downloads\Addition.txt
2014-07-07 12:50 - 2014-07-07 14:20 - 00023009 _____ () C:\Users\Cathérine\Downloads\FRST.txt
2014-07-07 12:49 - 2014-07-07 14:20 - 00000000 ____D () C:\FRST
2014-07-07 12:48 - 2014-07-07 14:15 - 00000430 _____ () C:\Windows\Tasks\BlockAndSurf Update.job
2014-07-07 12:48 - 2014-07-07 14:14 - 00000408 _____ () C:\Windows\Tasks\BlockAndSurf_wd.job
2014-07-07 12:48 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\v01BlockAndSurf
2014-07-07 12:48 - 2014-07-07 12:48 - 00003086 _____ () C:\Windows\System32\Tasks\BlockAndSurf Update
2014-07-07 12:48 - 2014-07-07 12:48 - 00003004 _____ () C:\Windows\System32\Tasks\BlockAndSurf_wd
2014-07-07 12:48 - 2014-07-07 12:48 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-07-07 12:48 - 2014-06-26 07:24 - 00057528 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-07-07 12:47 - 2014-07-07 14:18 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\fst_de_89
2014-07-07 12:47 - 2014-07-07 14:18 - 00000000 ____D () C:\Program Files (x86)\fst_de_89
2014-07-07 12:46 - 2014-07-07 12:46 - 02084352 _____ (Farbar) C:\Users\Cathérine\Downloads\FRST64.exe
2014-07-07 12:38 - 2014-07-07 14:14 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-07-07 12:38 - 2014-07-07 14:14 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-07-07 12:38 - 2014-07-07 14:14 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-07-07 12:38 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-07-07 12:38 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2014-07-07 12:38 - 2014-07-07 14:12 - 00000378 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-07-07 12:38 - 2014-07-07 13:52 - 00002836 _____ () C:\Windows\System32\Tasks\APSnotifierPP1
2014-07-07 12:38 - 2014-07-07 13:52 - 00002834 _____ () C:\Windows\System32\Tasks\APSnotifierPP3
2014-07-07 12:38 - 2014-07-07 13:52 - 00002834 _____ () C:\Windows\System32\Tasks\APSnotifierPP2
2014-07-07 12:38 - 2014-07-07 13:38 - 00001049 _____ () C:\Users\Cathérine\Desktop\AnyProtect.lnk
2014-07-07 12:38 - 2014-07-07 12:38 - 00002960 _____ () C:\Users\Cathérine\AppData\Roaming\aps.scan.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00001232 _____ () C:\Users\Cathérine\AppData\Roaming\aps.scan.quick.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00000324 _____ () C:\Users\Cathérine\AppData\Roaming\aps.uninstall.scan.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\SupTab
2014-07-07 12:38 - 2014-07-07 12:38 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-07 12:37 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\AnyProtectEx
2014-07-07 12:37 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\sweet-page
2014-07-07 12:37 - 2014-07-04 13:23 - 00575887 _____ (ClickMeIn Limited) C:\Users\Cathérine\AppData\Local\AnyProtectScannerSetup.exe
2014-07-07 12:31 - 2014-07-07 12:31 - 00003252 _____ () C:\Windows\System32\Tasks\Optimizer Pro Schedule
2014-07-07 12:31 - 2014-07-07 12:31 - 00000000 ____D () C:\Users\Cathérine\Documents\Optimizer Pro
2014-07-07 12:27 - 2014-07-07 14:14 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\com
2014-07-07 12:26 - 2014-07-07 14:15 - 00000906 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-07 12:26 - 2014-07-07 14:14 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\LPT
2014-07-07 12:26 - 2014-07-07 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-07-07 12:26 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files\suprasavings
2014-07-07 12:26 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-07-07 12:26 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-07-07 12:26 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\VOPackage
2014-07-07 12:26 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-07-07 12:26 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\newplayer
2014-07-07 12:26 - 2014-07-07 12:31 - 00000910 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-07 12:26 - 2014-07-07 12:26 - 00003908 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-07-07 12:26 - 2014-07-07 12:26 - 00003654 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-07-07 12:26 - 2014-07-07 12:26 - 00002498 _____ () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00002436 _____ () C:\Users\Cathérine\Desktop\Search.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00001117 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\Smartbar
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\globalUpdate
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-07-07 12:25 - 2014-07-07 14:19 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\fst_de_88
2014-07-07 12:25 - 2014-07-07 14:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FrEeSoFtOdAy
2014-07-07 12:25 - 2014-07-07 14:16 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-07-07 12:25 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\fst_de_88
2014-07-07 12:25 - 2014-07-07 14:13 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-07-07 12:25 - 2014-07-07 12:25 - 00001973 _____ () C:\Users\Cathérine\Desktop\Sync Folder.lnk
2014-07-07 12:25 - 2014-07-07 12:25 - 00001091 _____ () C:\Users\Cathérine\Desktop\MyPC Backup.lnk
2014-07-07 12:25 - 2014-07-07 12:25 - 00000000 ____D () C:\Program Files\003
2014-07-07 12:22 - 2014-07-07 12:22 - 01258080 _____ () C:\Users\Cathérine\Downloads\Player_Setup.exe
2014-07-04 10:52 - 2014-07-07 14:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-30 15:58 - 2014-06-30 15:58 - 00002216 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-06-30 15:58 - 2014-06-30 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-06-30 15:57 - 2014-06-30 15:57 - 00895120 _____ (Google Inc.) C:\Users\Cathérine\Downloads\GoogleEarthSetup.exe
2014-06-26 09:36 - 2014-06-26 09:39 - 00013614 _____ () C:\Windows\DPINST.LOG
2014-06-26 09:36 - 2014-06-26 09:36 - 00002030 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-18 09:04 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-18 09:04 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-18 09:04 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-18 09:04 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-18 09:04 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-18 09:04 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-18 09:04 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-18 09:04 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-18 09:04 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-18 09:04 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-18 09:04 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-18 09:04 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-18 09:04 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-18 09:04 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-18 09:04 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-18 09:04 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-18 09:04 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-18 09:04 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-18 09:04 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-18 09:04 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-18 09:04 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-18 09:04 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-18 09:04 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-18 09:04 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-18 09:04 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-18 09:04 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-18 09:04 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-18 09:04 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-18 09:04 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-18 09:04 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-18 09:04 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-18 09:04 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-18 09:04 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-18 09:04 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-18 09:04 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-18 09:04 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-18 09:04 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-18 09:04 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-18 09:04 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-18 09:04 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-18 09:04 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-18 09:04 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-18 09:04 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-18 09:04 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-18 09:04 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-18 09:04 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-18 09:04 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-18 09:04 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-18 09:04 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-18 09:04 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-18 09:04 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-18 09:04 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-17 19:56 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-17 19:56 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-17 19:56 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-17 19:56 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-17 19:55 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-17 19:55 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-17 19:55 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-17 19:55 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-17 19:55 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-17 19:55 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-17 19:55 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-17 19:55 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-17 19:52 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-17 19:52 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-17 19:46 - 2014-07-07 14:14 - 00000593 _____ () C:\Windows\setupact.log
2014-06-17 19:46 - 2014-06-17 19:46 - 00023512 _____ () C:\Windows\PFRO.log
2014-06-17 19:46 - 2014-06-17 19:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 13:22 - 2014-06-17 13:46 - 00000000 ____D () C:\Users\Cathérine\Desktop\Sony
2014-06-17 13:12 - 2014-06-17 13:12 - 00001935 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-06-17 13:12 - 2014-06-17 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-17 13:12 - 2014-06-17 13:12 - 00000000 ____D () C:\Program Files\McAfee Security Scan
==================== One Month Modified Files and Folders =======
2014-07-07 14:20 - 2014-07-07 12:50 - 00023009 _____ () C:\Users\Cathérine\Downloads\FRST.txt
2014-07-07 14:20 - 2014-07-07 12:49 - 00000000 ____D () C:\FRST
2014-07-07 14:20 - 2013-06-11 13:25 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-07 14:19 - 2014-07-07 12:25 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\fst_de_88
2014-07-07 14:19 - 2014-01-22 17:08 - 01814815 _____ () C:\Windows\WindowsUpdate.log
2014-07-07 14:18 - 2014-07-07 14:18 - 00032512 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2014-07-07 14:18 - 2014-07-07 12:47 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\fst_de_89
2014-07-07 14:18 - 2014-07-07 12:47 - 00000000 ____D () C:\Program Files (x86)\fst_de_89
2014-07-07 14:18 - 2014-07-07 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FrEeSoFtOdAy
2014-07-07 14:16 - 2014-07-07 12:56 - 00001092 _____ () C:\Users\Cathérine\Desktop\Continue VuuPC Installation.lnk
2014-07-07 14:16 - 2014-07-07 12:25 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-07-07 14:15 - 2014-07-07 12:48 - 00000430 _____ () C:\Windows\Tasks\BlockAndSurf Update.job
2014-07-07 14:15 - 2014-07-07 12:26 - 00000906 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-07-07 14:15 - 2012-12-07 16:59 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-07 14:14 - 2014-07-07 12:48 - 00000408 _____ () C:\Windows\Tasks\BlockAndSurf_wd.job
2014-07-07 14:14 - 2014-07-07 12:48 - 00000000 ____D () C:\Program Files (x86)\v01BlockAndSurf
2014-07-07 14:14 - 2014-07-07 12:38 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP3.job
2014-07-07 14:14 - 2014-07-07 12:38 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP2.job
2014-07-07 14:14 - 2014-07-07 12:38 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-07-07 14:14 - 2014-07-07 12:38 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-07-07 14:14 - 2014-07-07 12:37 - 00000000 ____D () C:\Program Files (x86)\AnyProtectEx
2014-07-07 14:14 - 2014-07-07 12:27 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\com
2014-07-07 14:14 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\LPT
2014-07-07 14:14 - 2014-07-07 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-07-07 14:14 - 2014-07-07 12:26 - 00000000 ____D () C:\Program Files\suprasavings
2014-07-07 14:14 - 2014-07-07 12:26 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-07-07 14:14 - 2014-07-07 12:26 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-07-07 14:14 - 2014-07-07 12:25 - 00000000 ____D () C:\Program Files (x86)\fst_de_88
2014-07-07 14:14 - 2014-07-04 10:52 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-07 14:14 - 2014-06-17 19:46 - 00000593 _____ () C:\Windows\setupact.log
2014-07-07 14:14 - 2012-12-08 21:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-07 14:14 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-07 14:13 - 2014-07-07 12:38 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2014-07-07 14:13 - 2014-07-07 12:37 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\sweet-page
2014-07-07 14:13 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\VOPackage
2014-07-07 14:13 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-07-07 14:13 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\newplayer
2014-07-07 14:13 - 2014-07-07 12:25 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-07-07 14:13 - 2012-12-08 22:37 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\vlc
2014-07-07 14:13 - 2012-12-07 17:02 - 00000000 ____D () C:\Users\Cathérine
2014-07-07 14:13 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-07 14:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-07-07 14:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-07-07 14:12 - 2014-07-07 12:38 - 00000378 _____ () C:\Windows\Tasks\APSnotifierPP1.job
2014-07-07 13:59 - 2012-12-07 16:59 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-07 13:52 - 2014-07-07 13:52 - 00000480 _____ () C:\Users\Cathérine\Downloads\defogger_disable.log
2014-07-07 13:52 - 2014-07-07 13:52 - 00000000 _____ () C:\Users\Cathérine\defogger_reenable
2014-07-07 13:52 - 2014-07-07 12:38 - 00002836 _____ () C:\Windows\System32\Tasks\APSnotifierPP1
2014-07-07 13:52 - 2014-07-07 12:38 - 00002834 _____ () C:\Windows\System32\Tasks\APSnotifierPP3
2014-07-07 13:52 - 2014-07-07 12:38 - 00002834 _____ () C:\Windows\System32\Tasks\APSnotifierPP2
2014-07-07 13:51 - 2014-07-07 13:51 - 00380416 _____ () C:\Users\Cathérine\Downloads\Gmer-19357.exe
2014-07-07 13:51 - 2014-07-07 13:51 - 00050477 _____ () C:\Users\Cathérine\Downloads\Defogger.exe
2014-07-07 13:38 - 2014-07-07 12:38 - 00001049 _____ () C:\Users\Cathérine\Desktop\AnyProtect.lnk
2014-07-07 13:37 - 2014-07-07 13:37 - 00591320 _____ (ClickMeIn Limited) C:\Users\Cathérine\AppData\Local\nst8D73.tmp
2014-07-07 13:29 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-07 13:29 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-07 13:13 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-07 12:54 - 2014-07-07 12:54 - 00010042 _____ () C:\AdwCleaner[R3].txt
2014-07-07 12:53 - 2014-07-07 12:53 - 00000000 ____D () C:\ProgramData\374311380
2014-07-07 12:51 - 2014-07-07 12:51 - 00051119 _____ () C:\Users\Cathérine\Downloads\Addition.txt
2014-07-07 12:48 - 2014-07-07 12:48 - 00003086 _____ () C:\Windows\System32\Tasks\BlockAndSurf Update
2014-07-07 12:48 - 2014-07-07 12:48 - 00003004 _____ () C:\Windows\System32\Tasks\BlockAndSurf_wd
2014-07-07 12:48 - 2014-07-07 12:48 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-07-07 12:48 - 2014-07-07 12:48 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-07-07 12:46 - 2014-07-07 12:46 - 02084352 _____ (Farbar) C:\Users\Cathérine\Downloads\FRST64.exe
2014-07-07 12:38 - 2014-07-07 12:38 - 00002960 _____ () C:\Users\Cathérine\AppData\Roaming\aps.scan.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00001232 _____ () C:\Users\Cathérine\AppData\Roaming\aps.scan.quick.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00000324 _____ () C:\Users\Cathérine\AppData\Roaming\aps.uninstall.scan.results
2014-07-07 12:38 - 2014-07-07 12:38 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\SupTab
2014-07-07 12:38 - 2014-07-07 12:38 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-07-07 12:31 - 2014-07-07 12:31 - 00003252 _____ () C:\Windows\System32\Tasks\Optimizer Pro Schedule
2014-07-07 12:31 - 2014-07-07 12:31 - 00000000 ____D () C:\Users\Cathérine\Documents\Optimizer Pro
2014-07-07 12:31 - 2014-07-07 12:26 - 00000910 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-07-07 12:26 - 2014-07-07 12:26 - 00003908 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-07-07 12:26 - 2014-07-07 12:26 - 00003654 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-07-07 12:26 - 2014-07-07 12:26 - 00002498 _____ () C:\Users\Cathérine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00002436 _____ () C:\Users\Cathérine\Desktop\Search.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00001117 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\Smartbar
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\globalUpdate
2014-07-07 12:26 - 2014-07-07 12:26 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-07-07 12:25 - 2014-07-07 12:25 - 00001973 _____ () C:\Users\Cathérine\Desktop\Sync Folder.lnk
2014-07-07 12:25 - 2014-07-07 12:25 - 00001091 _____ () C:\Users\Cathérine\Desktop\MyPC Backup.lnk
2014-07-07 12:25 - 2014-07-07 12:25 - 00000000 ____D () C:\Program Files\003
2014-07-07 12:22 - 2014-07-07 12:22 - 01258080 _____ () C:\Users\Cathérine\Downloads\Player_Setup.exe
2014-07-04 13:23 - 2014-07-07 12:37 - 00575887 _____ (ClickMeIn Limited) C:\Users\Cathérine\AppData\Local\AnyProtectScannerSetup.exe
2014-07-04 10:43 - 2012-12-08 23:21 - 00000000 ____D () C:\Users\Cathérine\Desktop\Filme
2014-07-04 10:27 - 2012-12-08 22:15 - 00000000 ____D () C:\Users\Cathérine\Documents\UseNeXT
2014-07-04 10:27 - 2012-12-08 22:15 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\UseNeXT
2014-07-03 20:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-07-03 19:36 - 2013-03-25 16:50 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-30 15:58 - 2014-06-30 15:58 - 00002216 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-06-30 15:58 - 2014-06-30 15:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-06-30 15:58 - 2012-12-07 19:44 - 00000000 ____D () C:\Users\Cathérine\AppData\Local\Google
2014-06-30 15:58 - 2012-12-07 16:59 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-30 15:57 - 2014-06-30 15:57 - 00895120 _____ (Google Inc.) C:\Users\Cathérine\Downloads\GoogleEarthSetup.exe
2014-06-30 15:54 - 2012-12-07 16:59 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-30 15:54 - 2012-12-07 16:59 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-26 09:46 - 2012-12-07 17:19 - 00000000 ____D () C:\Users\Cathérine\AppData\Roaming\SoftGrid Client
2014-06-26 09:39 - 2014-06-26 09:36 - 00013614 _____ () C:\Windows\DPINST.LOG
2014-06-26 09:36 - 2014-06-26 09:36 - 00002030 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-26 09:36 - 2014-05-18 21:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-06-26 09:36 - 2011-07-18 23:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-26 07:24 - 2014-07-07 12:48 - 00057528 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-06-18 09:04 - 2011-05-16 16:04 - 00699884 _____ () C:\Windows\system32\perfh007.dat
2014-06-18 09:04 - 2011-05-16 16:04 - 00149766 _____ () C:\Windows\system32\perfc007.dat
2014-06-18 09:04 - 2009-07-14 07:13 - 01622236 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-17 20:05 - 2014-05-02 20:15 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-17 19:59 - 2012-12-10 21:08 - 00000000 ____D () C:\Users\Cathérine\Desktop\Musik
2014-06-17 19:53 - 2013-03-25 16:50 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-17 19:46 - 2014-06-17 19:46 - 00023512 _____ () C:\Windows\PFRO.log
2014-06-17 19:46 - 2014-06-17 19:46 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 14:04 - 2013-07-15 11:52 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-17 14:03 - 2011-07-18 22:31 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-17 13:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-17 13:46 - 2014-06-17 13:22 - 00000000 ____D () C:\Users\Cathérine\Desktop\Sony
2014-06-17 13:12 - 2014-06-17 13:12 - 00001935 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-06-17 13:12 - 2014-06-17 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-17 13:12 - 2014-06-17 13:12 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-17 13:12 - 2013-01-13 16:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-10 18:59 - 2012-12-08 23:37 - 00015120 _____ () C:\Users\Cathérine\Desktop\Filmbibliothek.xlsx
2014-06-08 11:13 - 2014-06-17 19:52 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-17 19:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
Some content of TEMP:
====================
C:\Users\Cathérine\AppData\Local\Temp\avgnt.exe
C:\Users\Cathérine\AppData\Local\Temp\BackupSetup.exe
C:\Users\Cathérine\AppData\Local\Temp\optprosetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-07-03 20:26
==================== End Of Log ============================ --- --- ---
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01
Ran by Cathérine at 2014-07-07 14:21:12
Running from C:\Users\Cathérine\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.2.0.2070 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Anno 1701 (HKLM-x32\...\{A2433A63-5F5D-40E5-B529-9123C2B3E734}) (Version: 1.02 - Sunflowers)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.5.450 - Avira)
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
BlockAndSurf (HKLM-x32\...\EE23210E-F588-A06F-CCE1-3B48D7F4EF69) (Version: - BlockAndSurf-software) <==== ATTENTION
CANON iMAGE GATEWAY MyCamera Download Plugin (HKLM-x32\...\MyCamera Download Plugin) (Version: 3.1.1.2 - Canon Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.9.0.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.8.0.7 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.6.0.1 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.7.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.10 (HKLM-x32\...\DPP) (Version: 3.10.2.0 - Canon Inc.)
Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 1.0.0.204 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.10.2.0 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (HKLM-x32\...\EOS Video Snapshot Task) (Version: 1.0.0.10 - Canon Inc.)
Canon Utilities Movie Uploader for YouTube (HKLM-x32\...\MovieUploaderForYouTube) (Version: 1.2.0.7 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.9.0.0 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.7.0.24 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.5.0.9 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.26 - Piriform)
COMPUTERBILD Vorteil-Center (HKLM-x32\...\{B7E68A6D-1C9B-4F18-B021-949115021714}) (Version: 1.1.23 - J3S)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3624 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1327 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 7.0.0.1327 - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (HKLM-x32\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.5310 - CyberLink Corp.)
CyberLink PowerRecover (x32 Version: 5.5.5310 - CyberLink Corp.) Hidden
CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.2821 - CyberLink Corp.)
CyberLink WaveEditor (x32 Version: 1.0.1.2821 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.42.130 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
D-Link DWA-131 Wireless N Nano USB Adapter (HKLM-x32\...\{D9198056-A296-4583-A790-C0E73694CFE8}) (Version: - D-Link)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.1.8.725 - DVDVideoSoft Ltd.)
FreeSoftToday 014.89 (HKLM-x32\...\FreeSoftToday_is1) (Version: - FrEeSoFtOdAy) <==== ATTENTION
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GeoGebra 4.2 (HKLM-x32\...\GeoGebra 4.2) (Version: 4.2.18.0 - International GeoGebra Institute)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 12.0.742.91 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.220 - SurfRight B.V.)
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{D2D05FDB-4EDA-462D-8DB6-E0B9AD4FA25F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Hilfe (HKLM-x32\...\{FDE820DD-CC88-4395-AD5C-801365B8F316}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Installer (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - ) <==== ATTENTION
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation)
LPT System Updater Service (x32 Version: 1.0.0.0 - LPT) Hidden <==== ATTENTION
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Media Go (HKLM-x32\...\{7547239C-FA8A-4FA4-84A6-31EAC0777E1B}) (Version: 2.7.341 - Sony)
Media Go Network Downloader (HKLM-x32\...\{73FA7631-3015-4EEC-A002-09488C47A07C}) (Version: 1.5.19.0 - Sony)
Media Go Video Playback Engine 2.4.104.12040 (HKLM-x32\...\{7C5AEEE1-6D7C-8922-4548-7BF9096077EC}) (Version: 2.4.104.12040 - Sony)
Medion Home Cinema (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.3216 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.3216 - CyberLink Corp.) Hidden
Memeo Instant Backup (HKLM-x32\...\{8E666407-AC41-46a2-9692-6C7BFCBFDD37}) (Version: 4.60.0.7943 - Memeo Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Age of Empires (HKLM-x32\...\Age of Empires) (Version: - )
Microsoft Age of Empires Expansion (HKLM-x32\...\Age of Empires Expansion 1.0) (Version: - )
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (HKLM-x32\...\Age of Empires II: The Conquerors Expansion 1.0) (Version: - )
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPC Backup (HKLM\...\MyPC Backup) (Version: - JDi Backup Ltd) <==== ATTENTION
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NewPlayer (HKLM-x32\...\NewPlayer) (Version: v2.1.1.9 - ) <==== ATTENTION
NVIDIA Control Panel 301.39 (Version: 301.39 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 301.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 301.39 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.16.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.16.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.75.420 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0507 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.12.0507 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0507 - NVIDIA Corporation)
NVIDIA Update 1.8.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.8.15 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.8.15 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.1.3.2637 - Electronic Arts, Inc.)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6591 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.25.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.25.0 - Renesas Electronics Corporation) Hidden
simplitec simplicheck (HKLM-x32\...\{EC3825A1-02C6-4A83-8CA4-3F97A25CD37B}) (Version: 1.2.6.0 - simplitec GmbH)
Sony PC Companion 2.10.211 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.211 - Sony)
Spelling Dictionaries Support For Adobe Reader X (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-A00000000004}) (Version: 10.0.0 - Adobe Systems Incorporated)
Studie zur Verbesserung von HP Officejet Pro 8600 Produkten (HKLM\...\{B9824225-2055-4700-BCD4-64B25EC88264}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
suprasavings (HKLM\...\suprasavings) (Version: 2.0.1 - suprasavings) <==== ATTENTION
sweet-page uninstall (HKLM-x32\...\sweet-page uninstall) (Version: - sweet-page) <==== ATTENTION
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
UseNeXT (HKLM-x32\...\UseNeXT_is1) (Version: - Tangysoft Ltd.)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
VirtualDJ Home FREE (HKLM-x32\...\{B515962D-C979-44AC-9912-F7BB499B4B2C}) (Version: 7.3 - Atomix Productions)
VLC media player 2.0.4 (HKLM\...\VLC media player) (Version: 2.0.4 - VideoLAN)
watchmi (HKLM-x32\...\{F0559C5E-7912-4391-B1A0-6B975F0E5064}) (Version: 3.0.0 - Axel Springer Digital TV Guide GmbH)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WindowsMangerProtect20.0.0.502 (HKLM-x32\...\WindowsMangerProtect) (Version: 20.0.0.502 - WindowsProtect LIMITED)
XMedia Recode Version 3.1.7.9 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.9 - XMedia Recode)
Yahoo Community Smartbar (HKLM-x32\...\{3BC7022B-CDE0-4664-9AB6-E3EC25CE644A}) (Version: 11.63.66.17714 - Linkury Inc.) <==== ATTENTION
Yahoo Community Smartbar Engine (HKCU\...\{bd93b2f3-fb43-4519-9f19-d5a6ea5722c0}) (Version: 11.63.66.17714 - Linkury Inc.) <==== ATTENTION
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
==================== Restore Points =========================
05-06-2014 14:08:05 Geplanter Prüfpunkt
13-06-2014 13:42:26 Geplanter Prüfpunkt
17-06-2014 12:02:41 Windows Update
17-06-2014 18:05:20 Windows Update
18-06-2014 07:07:21 Windows Update
26-06-2014 07:38:11 Sony PC Companion
03-07-2014 18:33:33 Geplanter Prüfpunkt
07-07-2014 12:11:32 Wiederherstellungsvorgang
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {45B5DEA7-1E64-4FBC-BB26-3B0FC7CA63B8} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect <==== ATTENTION
Task: {4E3F0EF1-B875-4810-8C4A-49C9D61270C2} - System32\Tasks\BlockAndSurf_wd => C:\Program Files (x86)\v01BlockAndSurf\wdBlockAndSurfL.exe [2014-07-07] () <==== ATTENTION
Task: {5C637942-1518-4309-BB3F-BFF782206B16} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28] (Hewlett-Packard)
Task: {5D7480DC-F666-47F8-B380-6463B86819E4} - System32\Tasks\HPCustParticipation HP Officejet Pro 8600 => C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {5DCFEAE5-8E8B-457D-A993-6A8833A6BF82} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-18] (Adobe Systems Incorporated)
Task: {7981DE5E-635E-43FE-A86F-EAD81F755E2E} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {7C282959-E145-43EE-9A20-030308E8A4F2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-07] (Google Inc.)
Task: {7C319828-C279-4524-8D25-D6D96A93DB3E} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-07-07] (AnyProtect by CMI) <==== ATTENTION
Task: {8161EAF4-2138-4FDC-B7C0-544502D904AC} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe <==== ATTENTION
Task: {8773FEE2-FC6C-4900-BFFF-70212414EB19} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-07] (globalUpdate) <==== ATTENTION
Task: {8C5BB2FE-6BE0-415A-8613-4B11300DB235} - System32\Tasks\BlockAndSurf Update => C:\Program Files (x86)\v01BlockAndSurf\v01BlockAndSurfD49.exe [2014-07-07] () <==== ATTENTION
Task: {9C8B8B0C-51D4-4711-95C3-92575F57761C} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {A4BE5F76-11A0-49AD-BBCB-19DF3B8A90A0} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {A95D805D-0326-46D7-A1DA-13692F08935E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-12-19] (Piriform Ltd)
Task: {B2084342-D64B-4084-8387-2D530EF910CC} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-07-07] (AnyProtect by CMI) <==== ATTENTION
Task: {B55EFC2A-FE9C-4F6A-8872-D58DFD4076B7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-07] (Google Inc.)
Task: {C6B98FBF-904C-4C3F-B89C-8B7A50AD4727} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {D7EA314B-CE92-4D97-BAE1-B0B2DD6EAD82} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-07-07] (AnyProtect by CMI) <==== ATTENTION
Task: {DC2AB26D-14DC-4B39-8F1F-2A5862FF3A01} - System32\Tasks\{27D74F07-C63D-442E-8C5C-8642F18D7325} => C:\Program Files (x86)\Electronic Arts\Die Sims 3\Game\Bin\Sims3Launcher.exe [2012-09-28] (Electronic Arts, Inc.)
Task: {DEBC167C-C0AE-49D6-B801-D086937DF2A6} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-07-07] (globalUpdate) <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\BlockAndSurf Update.job => C:\Program Files (x86)\v01BlockAndSurf\v01BlockAndSurfD49.exe <==== ATTENTION
Task: C:\Windows\Tasks\BlockAndSurf_wd.job => C:\Program Files (x86)\v01BlockAndSurf\wdBlockAndSurfL.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-05-29 21:29 - 2012-05-05 00:18 - 00085824 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-12-07 17:00 - 2012-12-07 17:00 - 01102336 _____ () C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.66.0__db937bc2d44ff139\System.Data.SQLite.dll
2014-06-18 12:17 - 2014-06-18 12:17 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2014-07-07 12:48 - 2014-07-07 12:48 - 00101376 _____ () C:\Program Files (x86)\v01BlockAndSurf\wdBlockAndSurfL.exe
2014-06-11 15:28 - 2014-06-11 15:28 - 00033560 _____ () C:\Program Files (x86)\LPT\srpts.exe
2014-06-11 15:28 - 2014-06-11 15:28 - 00035608 _____ () C:\Program Files (x86)\LPT\srptsl.exe
2014-05-05 14:07 - 2014-05-05 14:07 - 00011776 _____ () C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
2014-07-07 12:26 - 2014-07-07 12:26 - 00075264 _____ () C:\Users\Cathérine\AppData\Roaming\VOPackage\VOsrv.exe
2012-01-31 12:24 - 2012-01-31 12:24 - 00070144 _____ () C:\Program Files (x86)\watchmi\TvdService.exe
2012-12-07 17:00 - 2012-12-07 17:00 - 00059904 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Remote\3.0.0.8__f722db7bec59a14b\Tvd.Remote.dll
2012-12-07 17:00 - 2012-12-07 17:00 - 00034304 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Tools\3.0.0.8__f722db7bec59a14b\Tvd.Tools.dll
2012-12-07 17:00 - 2012-12-07 17:00 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\FingerPrint\1.0.0.0__a62e68e935d72fa6\FingerPrint.dll
2012-12-07 17:00 - 2012-12-07 17:00 - 00079360 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Reporting\3.0.0.8__f722db7bec59a14b\Tvd.Reporting.dll
2012-12-07 17:00 - 2012-12-07 17:00 - 00153088 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Aprico\3.0.0.8__f722db7bec59a14b\Tvd.Aprico.dll
2012-12-08 20:36 - 2008-06-26 20:09 - 00167936 _____ () C:\Program Files (x86)\D-Link\DWA-131 revA\WlanWpsSvc.exe
2014-07-07 12:25 - 2014-07-04 14:27 - 03355128 _____ () C:\Users\Cathérine\AppData\Local\fst_de_88\upfst_de_88.exe
2014-07-07 12:48 - 2014-07-07 12:48 - 00131072 _____ () C:\Program Files (x86)\v01BlockAndSurf\BlockAndSurf.exe
2014-07-07 12:25 - 2014-07-04 15:00 - 03976160 _____ () C:\Program Files (x86)\fst_de_88\fst_de_88.exe
2012-01-31 12:24 - 2012-01-31 12:24 - 01070592 _____ () C:\Program Files (x86)\watchmi\TvdTray.exe
2012-01-31 12:24 - 2012-01-31 12:24 - 00004608 _____ () C:\Program Files (x86)\watchmi\de\TvdTray.resources.dll
2014-05-18 21:45 - 2013-10-31 12:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2014-06-11 15:27 - 2014-06-11 15:27 - 00024344 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Lrcnta.exe
2014-07-07 12:47 - 2014-07-04 15:02 - 03975136 _____ () C:\Program Files (x86)\fst_de_89\fst_de_89.exe
2014-07-07 12:47 - 2014-07-04 14:27 - 03354616 _____ () C:\Users\Cathérine\AppData\Local\fst_de_89\upfst_de_89.exe
2014-06-11 15:28 - 2014-06-11 15:28 - 00023832 _____ () C:\Users\Cathérine\AppData\Local\LPT\srptm.exe
2014-06-11 15:28 - 2014-06-11 15:28 - 00043288 _____ () C:\Program Files (x86)\LPT\srptc.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00018200 _____ () C:\Program Files (x86)\LPT\Smartbar.Common.dll
2014-06-11 15:29 - 2014-06-11 15:29 - 00060184 _____ () C:\Program Files (x86)\LPT\srut.dll
2014-05-18 21:45 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2014-05-18 21:45 - 2013-09-13 11:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2014-05-18 21:45 - 2013-05-20 12:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2014-05-18 21:45 - 2010-01-11 16:44 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00045848 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00070936 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srau.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00166680 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 02337048 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00067864 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\spbl.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00156952 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00015128 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\siem.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00066840 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\sppsm.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00697624 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00015640 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00079640 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00027928 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-06-11 15:29 - 2014-06-11 15:29 - 00060184 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srut.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00030488 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srsbs.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00066328 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00150296 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\smti.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00032024 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srom.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00031512 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\smtu.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00040216 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\smta.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00046872 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srbu.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00024856 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\sgml.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00062744 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00025368 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srpdm.dll
2014-06-11 15:27 - 2014-06-11 15:27 - 00044312 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-06-11 15:27 - 2014-06-11 15:27 - 00025880 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00036120 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-06-11 15:28 - 2014-06-11 15:28 - 00256280 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\srns.dll
2010-08-04 00:39 - 2010-08-04 00:39 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2010-08-04 00:39 - 2010-08-04 00:39 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2012-12-08 20:36 - 2009-08-06 17:15 - 00376832 _____ () C:\Program Files (x86)\D-Link\DWA-131 revA\WlanDll.dll
2014-06-11 15:27 - 2014-06-11 15:27 - 00034072 _____ () C:\Users\Cathérine\AppData\Local\Smartbar\Application\lrcnt.dll
2014-07-04 10:52 - 2014-07-04 10:52 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-05-18 18:20 - 2014-05-18 18:20 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
2014-02-15 14:30 - 2014-02-15 14:30 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\00a0b4a9df6e4abf30ae2af3624a77ce\IsdiInterop.ni.dll
2012-05-29 21:27 - 2012-02-02 01:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/07/2014 02:19:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 5.6.2014.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1aa8
Startzeit: 01cf99dd8e413c80
Endzeit: 0
Anwendungspfad: C:\Users\Cathérine\Downloads\FRST64.exe
Berichts-ID: f1d8945c-05d0-11e4-9a3d-c89cdcec471c
Error: (07/07/2014 02:16:17 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0x80070005.
Error: (07/07/2014 02:15:30 PM) (Source: MemeoBackgroundService) (EventID: 0) (User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
--- Ende der internen Ausnahmestapelüberwachung ---
bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration. bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)
Error: (07/07/2014 01:54:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Name des fehlerhaften Moduls: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000011aa
ID des fehlerhaften Prozesses: 0x255c
Startzeit der fehlerhaften Anwendung: 0xGmer-19357.exe0
Pfad der fehlerhaften Anwendung: Gmer-19357.exe1
Pfad des fehlerhaften Moduls: Gmer-19357.exe2
Berichtskennung: Gmer-19357.exe3
Error: (07/07/2014 01:52:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Name des fehlerhaften Moduls: Gmer-19357.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000011aa
ID des fehlerhaften Prozesses: 0x3a90
Startzeit der fehlerhaften Anwendung: 0xGmer-19357.exe0
Pfad der fehlerhaften Anwendung: Gmer-19357.exe1
Pfad des fehlerhaften Moduls: Gmer-19357.exe2
Berichtskennung: Gmer-19357.exe3
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 30.0.0.5269, Zeitstempel: 0x53914233
Name des fehlerhaften Moduls: mozalloc.dll, Version: 30.0.0.5269, Zeitstempel: 0x53911393
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000141b
ID des fehlerhaften Prozesses: 0x14c8
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: RSHP.exe, Version: 2.0.3.398, Zeitstempel: 0x5396dda5
Name des fehlerhaften Moduls: DpInterface32.dll, Version: 3.0.2.3482, Zeitstempel: 0x535f638f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0009b48e
ID des fehlerhaften Prozesses: 0x4a8
Startzeit der fehlerhaften Anwendung: 0xRSHP.exe0
Pfad der fehlerhaften Anwendung: RSHP.exe1
Pfad des fehlerhaften Moduls: RSHP.exe2
Berichtskennung: RSHP.exe3
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: RSHP.exe, Version: 2.0.3.398, Zeitstempel: 0x5396dda5
Name des fehlerhaften Moduls: DpInterface32.dll, Version: 3.0.2.3482, Zeitstempel: 0x535f638f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0009b48e
ID des fehlerhaften Prozesses: 0xb3c
Startzeit der fehlerhaften Anwendung: 0xRSHP.exe0
Pfad der fehlerhaften Anwendung: RSHP.exe1
Pfad des fehlerhaften Moduls: RSHP.exe2
Berichtskennung: RSHP.exe3
Error: (07/07/2014 00:35:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: regsvr32.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bca28
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002e066
ID des fehlerhaften Prozesses: 0x1a4c
Startzeit der fehlerhaften Anwendung: 0xregsvr32.exe0
Pfad der fehlerhaften Anwendung: regsvr32.exe1
Pfad des fehlerhaften Moduls: regsvr32.exe2
Berichtskennung: regsvr32.exe3
Error: (07/07/2014 00:26:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: regsvr32.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bca28
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002e066
ID des fehlerhaften Prozesses: 0xa4
Startzeit der fehlerhaften Anwendung: 0xregsvr32.exe0
Pfad der fehlerhaften Anwendung: regsvr32.exe1
Pfad des fehlerhaften Moduls: regsvr32.exe2
Berichtskennung: regsvr32.exe3
System errors:
=============
Error: (07/07/2014 02:16:41 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (07/07/2014 02:12:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
Error: (07/07/2014 00:07:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (07/03/2014 07:30:35 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/30/2014 04:13:37 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
Error: (06/30/2014 03:48:23 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/26/2014 09:46:00 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
Error: (06/26/2014 09:34:48 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/18/2014 09:01:23 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/18/2014 08:58:44 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT-AUTORITÄT)
Description: Fehler bei der CBS-Clientinitialisierung. Letzter Fehler: 0x8007045b
Microsoft Office Sessions:
=========================
Error: (07/07/2014 02:19:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: FRST64.exe5.6.2014.11aa801cf99dd8e413c800C:\Users\Cathérine\Downloads\FRST64.exef1d8945c-05d0-11e4-9a3d-c89cdcec471c
Error: (07/07/2014 02:16:17 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Geplanter Prüfpunkt0x80070005
Error: (07/07/2014 02:15:30 PM) (Source: MemeoBackgroundService) (EventID: 0) (User: )
Description: Problem starting Memeo Background Service :Ausnahmefehler "System.Reflection.TargetInvocationException: Ein Aufrufziel hat einen Ausnahmefehler verursacht. ---> System.Security.Principal.IdentityNotMappedException: Manche oder alle Identitätsverweise konnten nicht übersetzt werden.
bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel.StartListening(Object data)
bei System.Runtime.Remoting.Channels.Ipc.IpcServerChannel..ctor(IDictionary properties, IServerChannelSinkProvider sinkProvider, CommonSecurityDescriptor securityDescriptor)
bei System.Runtime.Remoting.Channels.Ipc.IpcChannel..ctor(IDictionary properties, IClientChannelSinkProvider clientSinkProvider, IServerChannelSinkProvider serverSinkProvider)
--- Ende der internen Ausnahmestapelüberwachung ---
bei System.RuntimeMethodHandle._InvokeConstructor(Object[] args, SignatureStruct& signature, IntPtr declaringType)
bei System.Reflection.RuntimeConstructorInfo.Invoke(BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
bei System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes)
bei System.Runtime.Remoting.RemotingConfigHandler.CreateChannelFromConfigEntry(ChannelEntry entry)
bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureChannels(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)" bei der Remotekonfiguration. bei System.Runtime.Remoting.RemotingConfigHandler.ConfigureRemoting(RemotingXmlConfigFileData configData, Boolean ensureSecurity)
bei System.Runtime.Remoting.RemotingConfiguration.Configure(String filename, Boolean ensureSecurity)
bei RemoteServerService.MemeoBackgroundService.OnStart(String[] args)
Error: (07/07/2014 01:54:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Gmer-19357.exe2.1.19357.052e7ea83Gmer-19357.exe2.1.19357.052e7ea83c0000005000011aa255c01cf99da270e6dd9C:\Users\Cathérine\Downloads\Gmer-19357.exeC:\Users\Cathérine\Downloads\Gmer-19357.exe67afc267-05cd-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 01:52:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Gmer-19357.exe2.1.19357.052e7ea83Gmer-19357.exe2.1.19357.052e7ea83c0000005000011aa3a9001cf99d9e42bb712C:\Users\Cathérine\Downloads\Gmer-19357.exeC:\Users\Cathérine\Downloads\Gmer-19357.exe2733db70-05cd-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe30.0.0.526953914233mozalloc.dll30.0.0.526953911393800000030000141b14c801cf99cf8a33cccaC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll2adb0185-05c4-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: RSHP.exe2.0.3.3985396dda5DpInterface32.dll3.0.2.3482535f638fc00000050009b48e4a801cf99d0ec9226ebC:\Program Files (x86)\SupTab\RSHP.exeC:\Program Files (x86)\SupTab\DpInterface32.dll2ad81b55-05c4-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 00:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: RSHP.exe2.0.3.3985396dda5DpInterface32.dll3.0.2.3482535f638fc00000050009b48eb3c01cf99d0ec93ad8bC:\Program Files (x86)\SupTab\RSHP.exeC:\Program Files (x86)\SupTab\DpInterface32.dll2ad7f445-05c4-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 00:35:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: regsvr32.exe6.1.7600.163854a5bca28ntdll.dll6.1.7601.18247521ea8e7c00000050002e0661a4c01cf99cf2348f51dC:\Windows\SysWOW64\regsvr32.exeC:\Windows\SysWOW64\ntdll.dll6204dcdd-05c2-11e4-9fa0-c89cdcec471c
Error: (07/07/2014 00:26:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: regsvr32.exe6.1.7600.163854a5bca28ntdll.dll6.1.7601.18247521ea8e7c00000050002e066a401cf99cde19f56aeC:\Windows\SysWOW64\regsvr32.exeC:\Windows\SysWOW64\ntdll.dll1f5eec91-05c1-11e4-9fa0-c89cdcec471c
==================== Memory info ===========================
Percentage of memory in use: 43%
Total physical RAM: 6120.19 MB
Available physical RAM: 3486 MB
Total Pagefile: 12238.55 MB
Available Pagefile: 9404.82 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: (Boot) (Fixed) (Total:1811.92 GB) (Free:1349.42 GB) NTFS
Drive d: (Recover) (Fixed) (Total:50 GB) (Free:29.59 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 87DCD6A1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=-253492199424) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)
==================== End Of Log ============================ |